├── TRIVY.txt
├── ansible
├── arango.sh
├── context.xml
├── docker-compose.sh
├── grafana.sh
├── helm.sh
├── jenkins.sh
├── jfrog.sh
├── kops.sh
├── kubecolor
├── loki & promtail
├── metric-server.sh
├── mini-al.sh
├── mysql.sh
├── nagioscore.sh
├── nagiosplugin.sh
├── netflix.sh
├── netflix.yml
├── nexus.sh
├── nginx-ip-block
├── nodeexporter.sh
├── pegion-ubuntu.sh
├── pegion.sh
├── portainer.sh
├── prometheus.sh
├── sonar.sh
├── swiggy.sh
├── terraform.sh
├── terraformer
├── terrform-ubuntu
├── tomcat-users.xml
├── tomcat.sh
├── tomcat.yml
├── trivy
├── ubuntu-docker.sh
├── ubuntu-kops.sh
└── ubuntu-minikube.sh


/TRIVY.txt:
--------------------------------------------------------------------------------
1 | TRIVY INSTALLATION:
2 | 
3 | wget https://github.com/aquasecurity/trivy/releases/download/v0.18.3/trivy_0.18.3_Linux-64bit.tar.gz
4 | tar zxvf trivy_0.18.3_Linux-64bit.tar.gz
5 | sudo mv trivy /usr/local/bin/
6 | vim .bashrc
7 | export PATH=$PATH:/usr/local/bin/
8 | source .bashrc 
9 | 


--------------------------------------------------------------------------------
/ansible:
--------------------------------------------------------------------------------
 1 | SETUP:
 2 | Create 5 servers (1=ansible 2=dev 2=test)
 3 | Connect all servers to mobaxterm
 4 | 
 5 | ALL SERVERS:
 6 | sudo -i
 7 | 1. hostnamectl set-hostname ansible/dev-1/dev-2/test-1/test-2
 8 | sudo -i
 9 | 
10 | 2. passwd root
11 | 3. vim /etc/ssh/sshd_config (uncomment: 38 , no=yes: 63)
12 | 4. systemctl restart sshd
13 | 5. systemctl status sshd
14 | 
15 | ANSIBLE SERVER:
16 | amazon-linux-extras install ansible2 -y
17 | yum install python python-pip python-dlevel -y
18 | vim /etc/ansible/hosts   (inventory file)  (below: 12 th line)
19 | 
20 | [dev]
21 | 172.31.81.244
22 | 172.31.93.180
23 | 
24 | [test]
25 | 172.31.91.255
26 | 172.31.93.101
27 | 
28 | vim /etc/ansible/ansible.cfg (uncomment 14, 22)
29 | 
30 | ssh-keygen  -- > enter 4 times
31 | ssh-copy-id root@private_ip of dev-1 -- > yes -- > password 
32 | ssh private_ip of dev-1
33 | ctrl + d
34 | 
35 | ssh-copy-id root@private_ip of dev-2 -- > yes -- > password 
36 | ssh private_ip of dev-2
37 | ctrl + d
38 | 
39 | ssh-copy-id root@private_ip of test-1 -- > yes -- > password 
40 | ssh private_ip of test-1
41 | ctrl + d
42 | 
43 | ssh-copy-id root@private_ip of test-2 -- > yes -- > password 
44 | ssh private_ip of test-2
45 | ctrl + d
46 | 


--------------------------------------------------------------------------------
/arango.sh:
--------------------------------------------------------------------------------
1 | echo 'deb https://download.arangodb.com/arangodb34/DEBIAN/ /' | sudo tee /etc/apt/sources.list.d/arangodb.list
2 | wget -q https://download.arangodb.com/arangodb34/DEBIAN/Release.key -O- | sudo apt-key add -
3 | sudo apt update -y
4 | sudo apt -y install apt-transport-https
5 | sudo apt -y install arangodb3
6 | sudo systemctl start arangodb3
7 | sudo systemctl status arangodb3
8 | sudo arangosh
9 | 


--------------------------------------------------------------------------------
/context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!--
 3 |   Licensed to the Apache Software Foundation (ASF) under one or more
 4 |   contributor license agreements.  See the NOTICE file distributed with
 5 |   this work for additional information regarding copyright ownership.
 6 |   The ASF licenses this file to You under the Apache License, Version 2.0
 7 |   (the "License"); you may not use this file except in compliance with
 8 |   the License.  You may obtain a copy of the License at
 9 | 
10 |       http://www.apache.org/licenses/LICENSE-2.0
11 | 
12 |   Unless required by applicable law or agreed to in writing, software
13 |   distributed under the License is distributed on an "AS IS" BASIS,
14 |   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 |   See the License for the specific language governing permissions and
16 |   limitations under the License.
17 | -->
18 | <Context antiResourceLocking="false" privileged="true" >
19 |   <CookieProcessor className="org.apache.tomcat.util.http.Rfc6265CookieProcessor"
20 |                    sameSiteCookies="strict" />
21 |   <Manager sessionAttributeValueClassNameFilter="java\.lang\.(?:Boolean|Integer|Long|Number|String)|org\.apache\.catalina\.filters\.CsrfPreventionFilter\$LruCache(?:\$1)?|java\.util\.(?:Linked)?HashMap"/>
22 | </Context>
23 | 


--------------------------------------------------------------------------------
/docker-compose.sh:
--------------------------------------------------------------------------------
1 | sudo curl -L "https://github.com/docker/compose/releases/download/1.29.1/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
2 | ls /usr/local/bin/
3 | sudo ln -s /usr/local/bin/docker-compose /usr/bin/docker-compose
4 | sudo chmod +x /usr/local/bin/docker-compose
5 | docker-compose version
6 | 


--------------------------------------------------------------------------------
/grafana.sh:
--------------------------------------------------------------------------------
1 | sudo apt-get install -y adduser libfontconfig1
2 | wget https://dl.grafana.com/enterprise/release/grafana-enterprise_9.4.7_amd64.deb
3 | sudo dpkg -i grafana-enterprise_9.4.7_amd64.deb
4 | sudo /bin/systemctl daemon-reload
5 | sudo /bin/systemctl enable grafana-server
6 | sudo /bin/systemctl start grafana-server
7 | sudo /bin/systemctl status grafana-server --no-pager
8 | 


--------------------------------------------------------------------------------
/helm.sh:
--------------------------------------------------------------------------------
1 | curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3
2 | chmod 700 get_helm.sh
3 | ./get_helm.sh
4 | helm version
5 | 


--------------------------------------------------------------------------------
/jenkins.sh:
--------------------------------------------------------------------------------
 1 | #STEP-1: INSTALLING GIT 
 2 | yum install git  -y
 3 | 
 4 | #STEP-2: GETTING THE REPO (jenkins.io --> download -- > redhat)
 5 | sudo wget -O /etc/yum.repos.d/jenkins.repo \
 6 |     https://pkg.jenkins.io/redhat-stable/jenkins.repo
 7 | sudo rpm --import https://pkg.jenkins.io/redhat-stable/jenkins.io-2023.key
 8 | 
 9 | #STEP-3: DOWNLOAD JAVA11 AND JENKINS
10 | yum install java-17-amazon-corretto -y
11 | yum install jenkins -y
12 | 
13 | #STEP-4: RESTARTING JENKINS (when we download service it will on stopped state)
14 | systemctl start jenkins.service
15 | systemctl enable jenkins.service
16 | systemctl status jenkins.service
17 | 


--------------------------------------------------------------------------------
/jfrog.sh:
--------------------------------------------------------------------------------
1 | #! /bin/bash
2 | wget https://releases.jfrog.io/artifactory/artifactory-rpms/artifactory-rpms.repo -O jfrog-artifactory-rpms.repo
3 | mv jfrog-artifactory-rpms.repo /etc/yum.repos.d/
4 | yum update -y
5 | yum install jfrog-artifactory-oss -y
6 | systemctl start artifactory.service
7 | systemctl status artifactory.service
8 | 


--------------------------------------------------------------------------------
/kops.sh:
--------------------------------------------------------------------------------
 1 | #vim .bashrc
 2 | #export PATH=$PATH:/usr/local/bin/
 3 | #source .bashrc
 4 | 
 5 | 
 6 | #! /bin/bash
 7 | aws configure
 8 | curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
 9 | wget https://github.com/kubernetes/kops/releases/download/v1.25.0/kops-linux-amd64
10 | chmod +x kops-linux-amd64 kubectl
11 | mv kubectl /usr/local/bin/kubectl
12 | mv kops-linux-amd64 /usr/local/bin/kops
13 | 
14 | aws s3api create-bucket --bucket cloudanddevopsbyraham0073456.k8s.local --region us-east-1
15 | aws s3api put-bucket-versioning --bucket cloudanddevopsbyraham0073456.k8s.local --region us-east-1 --versioning-configuration Status=Enabled
16 | export KOPS_STATE_STORE=s3://cloudanddevopsbyraham0073456.k8s.local
17 | kops create cluster --name rahams.k8s.local --zones us-east-1a --master-count=1 --master-size t2.medium --node-count=2 --node-size t2.medium
18 | kops update cluster --name rahams.k8s.local --yes --admin
19 | 


--------------------------------------------------------------------------------
/kubecolor:
--------------------------------------------------------------------------------
1 | wget https://github.com/hidetatz/kubecolor/releases/download/v0.0.25/kubecolor_0.0.25_Linux_x86_64.tar.gz
2 | tar -zxvf kubecolor_0.0.25_Linux_x86_64.tar.gz
3 | ./kubecolor
4 | chmod +x kubecolor
5 | mv kubecolor /usr/local/bin/
6 | kubecolor get po
7 | 


--------------------------------------------------------------------------------
/loki & promtail:
--------------------------------------------------------------------------------
 1 | wget https://raw.githubusercontent.com/grafana/loki/v2.8.0/cmd/loki/loki-local-config.yaml -O loki-config.yaml
 2 | docker run -itd --name loki -v /root/:/mnt/config -p 3100:3100 grafana/loki:2.8.0
 3 | pblicip:3100/ready
 4 | 
 5 | wget https://raw.githubusercontent.com/grafana/loki/v2.8.0/clients/cmd/promtail/promtail-docker-config.yaml -O promtail-config.yaml
 6 | docker run -itd --name promtail -v $(pwd):/mnt/config -v /var/log:/var/log --link loki grafana/promtail:2.8.0 --config.file=/mnt/config/promtail-config.yaml
 7 | 
 8 | datasource -- > add -- > loki -- > http://52.90.35.175:3100 -- > save and test
 9 | explore view
10 | 


--------------------------------------------------------------------------------
/metric-server.sh:
--------------------------------------------------------------------------------
 1 | FOR MINIKUBE:
 2 | kubectl apply -f https://github.com/kubernetes-sigs/metrics-server/releases/latest/download/components.yaml
 3 | minikube addons enable metrics-server #(only for minikube)
 4 | 
 5 | kubectl top nodes
 6 | kubectl top pods
 7 | 
 8 | FOR KOPS:
 9 | kubectl apply -f https://github.com/kubernetes-sigs/metrics-server/releases/latest/download/high-availability-1.21+.yaml
10 | 


--------------------------------------------------------------------------------
/mini-al.sh:
--------------------------------------------------------------------------------
 1 | #vim .bashrc
 2 | #export PATH=$PATH:/usr/local/bin
 3 | #source .bashrc
 4 | 
 5 | yum install docker -y
 6 | systemctl start docker
 7 | systemctl status docker
 8 | curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
 9 | sudo mv kubectl /usr/local/bin/kubectl
10 | sudo chmod +x /usr/local/bin/kubectl
11 | curl -LO https://storage.googleapis.com/minikube/releases/latest/minikube-linux-amd64
12 | sudo install minikube-linux-amd64 /usr/local/bin/minikube
13 | sudo yum install iptables -y
14 | yum install conntrack -y
15 | minikube start --driver=docker --force
16 | minikube status 
17 | 


--------------------------------------------------------------------------------
/mysql.sh:
--------------------------------------------------------------------------------
1 | wget https://repo.percona.com/apt/percona-release_latest.$(lsb_release -sc)_all.deb
2 | sudo dpkg -i percona-release_latest.$(lsb_release -sc)_all.deb
3 | percona-release setup ps80
4 | sudo apt install percona-server-server -y
5 | mysql -u root -p
6 | 


--------------------------------------------------------------------------------
/nagioscore.sh:
--------------------------------------------------------------------------------
 1 | #INSTALLING PREREQUISTES
 2 | apt install wget unzip vim curl gcc openssl build-essential libgd-dev libssl-dev libapache2-mod-php php-gd php apache2 -y
 3 | 
 4 | #INSTALL NAGIOS CORE:
 5 | export VER="4.4.6"
 6 | curl -SL https://github.com/NagiosEnterprises/nagioscore/releases/download/nagios-$VER/nagios-$VER.tar.gz | tar -xzf -
 7 | cd /root/nagios-4.4.6/
 8 | 
 9 | #TO COMPILE:
10 | 
11 | ./configure
12 | 
13 | make all
14 | make install-groups-users
15 | usermod -a -G nagios nagios
16 | make install
17 | make install-init
18 | make install-config
19 | make install-commandmode
20 | make install-webconf
21 | 
22 | a2enmod rewrite cgi
23 | systemctl restart apache2
24 | 
25 | make install-exfoliation
26 | make install-classicui
27 | 


--------------------------------------------------------------------------------
/nagiosplugin.sh:
--------------------------------------------------------------------------------
 1 | VER="2.3.3"
 2 | #TO GET NAGIOS PLUGINS:
 3 | curl -SL https://github.com/nagios-plugins/nagios-plugins/releases/download/release-$VER/nagios-plugins-$VER.tar.gz | tar -xzf -
 4 | cd nagios-plugins-2.3.3/
 5 | ./configure
 6 | make install
 7 | #Create a nagiosadmin account for logging into the Nagios web interface. Note the password you need it while login to Nagios web console.
 8 | sudo htpasswd -c /usr/local/nagios/etc/htpasswd.users nagiosadmin
 9 | sudo service apache2 restart
10 | sudo /usr/local/nagios/bin/nagios -v /usr/local/nagios/etc/nagios.cfg
11 | systemctl enable --now nagios
12 | systemctl status nagios
13 | ~
14 | 


--------------------------------------------------------------------------------
/netflix.sh:
--------------------------------------------------------------------------------
1 | yum install httpd git -y
2 | systemctl start httpd
3 | systemctl status httpd
4 | chkconfig httpd on
5 | cd /var/www/html
6 | git clone https://github.com/CleverProgrammers/pwj-netflix-clone.git
7 | mv pwj-netflix-clone/* .
8 | tail -100f /var/log/httpd/access_log
9 | 


--------------------------------------------------------------------------------
/netflix.yml:
--------------------------------------------------------------------------------
 1 | - hosts: test
 2 |   tasks:
 3 |     - name: installing apache server
 4 |       yum: name=httpd state=present
 5 | 
 6 |     - name: activating apache server
 7 |       service: name=httpd state=started
 8 | 
 9 |     - name: installing git
10 |       yum: name=git state=present
11 | 
12 |     - name: git checkout
13 |       git:
14 |         repo: "https://github.com/CleverProgrammers/pwj-netflix-clone.git"
15 |         dest: "/var/www/html"
16 | 


--------------------------------------------------------------------------------
/nexus.sh:
--------------------------------------------------------------------------------
 1 | sudo yum update -y
 2 | sudo yum install wget -y
 3 | sudo yum install java-17-amazon-corretto-jmods -y
 4 | sudo mkdir /app && cd /app
 5 | sudo wget https://download.sonatype.com/nexus/3/nexus-3.79.1-04-linux-x86_64.tar.gz
 6 | sudo tar -xvf nexus-3.79.1-04-linux-x86_64.tar.gz
 7 | sudo mv nexus-3.79.1-04 nexus
 8 | sudo adduser nexus
 9 | sudo chown -R nexus:nexus /app/nexus
10 | sudo chown -R nexus:nexus /app/sonatype*
11 | sudo sed -i '27  run_as_user="nexus"' /app/nexus/bin/nexus
12 | sudo tee /etc/systemd/system/nexus.service > /dev/null << EOL
13 | [Unit]
14 | Description=nexus service
15 | After=network.target
16 | 
17 | [Service]
18 | Type=forking
19 | LimitNOFILE=65536
20 | User=nexus
21 | Group=nexus
22 | ExecStart=/app/nexus/bin/nexus start
23 | ExecStop=/app/nexus/bin/nexus stop
24 | User=nexus
25 | Restart=on-abort
26 | 
27 | [Install]
28 | WantedBy=multi-user.target
29 | EOL
30 | sudo chkconfig nexus on
31 | sudo systemctl start nexus
32 | sudo systemctl enable nexus
33 | sudo systemctl status nexus
34 | 


--------------------------------------------------------------------------------
/nginx-ip-block:
--------------------------------------------------------------------------------
 1 | #app deployment script
 2 | 
 3 | apt update -y
 4 | apt install nginx git -y
 5 | systemctl start nginx
 6 | git clone https://github.com/devops0014/static-cycle-website-jenkins-docker-.git
 7 | cd static-cycle-website-jenkins-docker-.git
 8 | cp -r * /var/www/html/
 9 | 
10 | #Get the ip:
11 | tail -f /var/log/nginx/access.log  | awk '{print $1}' 
12 | 
13 | 
14 | 
15 | #blockip script
16 | echo "Enter IP to block:"
17 | read abc
18 | 
19 | # Basic IP validation
20 |     sed -i "14i deny $abc/32;" /etc/nginx/nginx.conf
21 |     systemctl restart nginx
22 |     echo "IP $abc blocked."
23 | 


--------------------------------------------------------------------------------
/nodeexporter.sh:
--------------------------------------------------------------------------------
 1 | wget https://github.com/prometheus/node_exporter/releases/download/v1.5.0/node_exporter-1.5.0.linux-amd64.tar.gz
 2 | tar -xf node_exporter-1.5.0.linux-amd64.tar.gz
 3 | sudo mv node_exporter-1.5.0.linux-amd64/node_exporter  /usr/local/bin
 4 | rm -rv node_exporter-1.5.0.linux-amd64*
 5 | sudo useradd -rs /bin/false node_exporter
 6 | 
 7 | sudo cat <<EOF | sudo tee /etc/systemd/system/node_exporter.service
 8 | [Unit]
 9 | Description=Node Exporter
10 | After=network.target
11 | 
12 | [Service]
13 | User=node_exporter
14 | Group=node_exporter
15 | Type=simple
16 | ExecStart=/usr/local/bin/node_exporter
17 | 
18 | [Install]
19 | WantedBy=multi-user.target
20 | EOF
21 | 
22 | sudo cat /etc/systemd/system/node_exporter.service
23 | sudo systemctl daemon-reload  && sudo systemctl enable node_exporter
24 | sudo systemctl start node_exporter.service && sudo systemctl status node_exporter.service --no-pager
25 | 


--------------------------------------------------------------------------------
/pegion-ubuntu.sh:
--------------------------------------------------------------------------------
 1 | #PROMETHEUS
 2 | 
 3 | wget https://github.com/prometheus/prometheus/releases/download/v2.43.0/prometheus-2.43.0.linux-amd64.tar.gz
 4 | tar -xf prometheus-2.43.0.linux-amd64.tar.gz
 5 | sudo mv prometheus-2.43.0.linux-amd64/prometheus prometheus-2.43.0.linux-amd64/promtool /usr/local/bin
 6 | 
 7 | Now, We need to Create directories for configuration files and other prometheus data.
 8 | sudo mkdir /etc/prometheus /var/lib/prometheus
 9 | sudo mv prometheus-2.43.0.linux-amd64/console_libraries /etc/prometheus
10 | ls /etc/prometheus
11 | sudo rm -rvf prometheus-2.43.0.linux-amd64*
12 | 
13 | #sudo vim /etc/hosts
14 | #3.101.56.72  worker-1
15 | #54.193.223.22 worker-2
16 | 
17 | sudo cat <<EOF | sudo tee /etc/prometheus/prometheus.yml
18 | global:
19 |   scrape_interval: 10s
20 | 
21 | scrape_configs:
22 |   - job_name: 'prometheus_metrics'
23 |     scrape_interval: 5s
24 |     static_configs:
25 |       - targets: ['localhost:9090']
26 |   - job_name: 'node_exporter_metrics'
27 |     scrape_interval: 5s
28 |     static_configs:
29 |       - targets: ['localhost:9100','worker-1:9100','worker-2:9100']
30 | EOF
31 | 
32 | 
33 | sudo useradd -rs /bin/false prometheus
34 | sudo chown -R prometheus: /etc/prometheus /var/lib/prometheus
35 | 
36 |  sudo ls -l /etc/prometheus/
37 | sudo cat <<EOF | tee /etc/systemd/system/prometheus.service
38 | [Unit]
39 | Description=Prometheus
40 | After=network.target
41 | 
42 | [Service]
43 | User=prometheus
44 | Group=prometheus
45 | Type=simple
46 | ExecStart=/usr/local/bin/prometheus \
47 |     --config.file /etc/prometheus/prometheus.yml \
48 |     --storage.tsdb.path /var/lib/prometheus/ \
49 |     --web.console.templates=/etc/prometheus/consoles \
50 |     --web.console.libraries=/etc/prometheus/console_libraries
51 | 
52 | [Install]
53 | WantedBy=multi-user.target
54 | EOF
55 | 
56 | sudo ls -l /etc/systemd/system/prometheus.service
57 | sudo systemctl daemon-reload && sudo systemctl enable prometheus
58 | sudo systemctl start prometheus && sudo systemctl status prometheus --no-pager
59 | 
60 | #GRAFANA
61 | sudo apt-get install -y adduser libfontconfig1
62 | wget https://dl.grafana.com/enterprise/release/grafana-enterprise_9.4.7_amd64.deb
63 | sudo dpkg -i grafana-enterprise_9.4.7_amd64.deb
64 | sudo /bin/systemctl daemon-reload
65 | sudo /bin/systemctl enable grafana-server
66 | sudo /bin/systemctl start grafana-server
67 | sudo /bin/systemctl status grafana-server --no-pager
68 | 
69 | #NODE-EXPORTER
70 | wget https://github.com/prometheus/node_exporter/releases/download/v1.5.0/node_exporter-1.5.0.linux-amd64.tar.gz
71 | tar -xf node_exporter-1.5.0.linux-amd64.tar.gz
72 | sudo mv node_exporter-1.5.0.linux-amd64/node_exporter  /usr/local/bin
73 | rm -rv node_exporter-1.5.0.linux-amd64*
74 | sudo useradd -rs /bin/false node_exporter
75 | 
76 | sudo cat <<EOF | sudo tee /etc/systemd/system/node_exporter.service
77 | [Unit]
78 | Description=Node Exporter
79 | After=network.target
80 | 
81 | [Service]
82 | User=node_exporter
83 | Group=node_exporter
84 | Type=simple
85 | ExecStart=/usr/local/bin/node_exporter
86 | 
87 | [Install]
88 | WantedBy=multi-user.target
89 | EOF
90 | 
91 | sudo cat /etc/systemd/system/node_exporter.service
92 | sudo systemctl daemon-reload  && sudo systemctl enable node_exporter
93 | sudo systemctl start node_exporter.service && sudo systemctl status node_exporter.service --no-pager
94 | 


--------------------------------------------------------------------------------
/pegion.sh:
--------------------------------------------------------------------------------
  1 | #prometheus
  2 | wget https://github.com/prometheus/prometheus/releases/download/v2.43.0/prometheus-2.43.0.linux-amd64.tar.gz
  3 | tar -xf prometheus-2.43.0.linux-amd64.tar.gz
  4 | sudo mv prometheus-2.43.0.linux-amd64/prometheus prometheus-2.43.0.linux-amd64/promtool /usr/local/bin
  5 | 
  6 | Now, We need to Create directories for configuration files and other prometheus data.
  7 | sudo mkdir /etc/prometheus /var/lib/prometheus
  8 | sudo mv prometheus-2.43.0.linux-amd64/console_libraries /etc/prometheus
  9 | ls /etc/prometheus
 10 | sudo rm -rvf prometheus-2.43.0.linux-amd64*
 11 | 
 12 | #sudo vim /etc/hosts
 13 | #3.101.56.72  worker-1
 14 | #54.193.223.22 worker-2
 15 | 
 16 | sudo cat <<EOF | sudo tee /etc/prometheus/prometheus.yml
 17 | global:
 18 |   scrape_interval: 10s
 19 | 
 20 | scrape_configs:
 21 |   - job_name: 'prometheus_metrics'
 22 |     scrape_interval: 5s
 23 |     static_configs:
 24 |       - targets: ['localhost:9090']
 25 |   - job_name: 'node_exporter_metrics'
 26 |     scrape_interval: 5s
 27 |     static_configs:
 28 |       - targets: ['localhost:9100','worker-1:9100','worker-2:9100']
 29 | EOF
 30 | 
 31 | 
 32 | sudo useradd -rs /bin/false prometheus
 33 | sudo chown -R prometheus: /etc/prometheus /var/lib/prometheus
 34 | 
 35 |  sudo ls -l /etc/prometheus/
 36 | sudo cat <<EOF | tee /etc/systemd/system/prometheus.service
 37 | [Unit]
 38 | Description=Prometheus
 39 | After=network.target
 40 | 
 41 | [Service]
 42 | User=prometheus
 43 | Group=prometheus
 44 | Type=simple
 45 | ExecStart=/usr/local/bin/prometheus \
 46 |     --config.file /etc/prometheus/prometheus.yml \
 47 |     --storage.tsdb.path /var/lib/prometheus/ \
 48 |     --web.console.templates=/etc/prometheus/consoles \
 49 |     --web.console.libraries=/etc/prometheus/console_libraries
 50 | 
 51 | [Install]
 52 | WantedBy=multi-user.target
 53 | EOF
 54 | 
 55 | sudo ls -l /etc/systemd/system/prometheus.service
 56 | sudo systemctl daemon-reload && sudo systemctl enable prometheus
 57 | sudo systemctl start prometheus && sudo systemctl status prometheus --no-pager
 58 | 
 59 | #GRAFANA
 60 | wget -q -O gpg.key https://rpm.grafana.com/gpg.key
 61 | sudo rpm --import gpg.key
 62 | sudo cat <<EOF | tee /etc/yum.repos.d/grafana.repo
 63 | [grafana]
 64 | name=grafana
 65 | baseurl=https://rpm.grafana.com
 66 | repo_gpgcheck=1
 67 | enabled=1
 68 | gpgcheck=1
 69 | gpgkey=https://rpm.grafana.com/gpg.key
 70 | sslverify=1
 71 | sslcacert=/etc/pki/tls/certs/ca-bundle.crt
 72 | EOF
 73 | 
 74 | exclude=*beta*
 75 | yum install grafana -y
 76 | systemctl start grafana-server.service
 77 | systemctl status grafana-server.service
 78 | 
 79 | #NODEEXPORTER
 80 | wget https://github.com/prometheus/node_exporter/releases/download/v1.5.0/node_exporter-1.5.0.linux-amd64.tar.gz
 81 | tar -xf node_exporter-1.5.0.linux-amd64.tar.gz
 82 | sudo mv node_exporter-1.5.0.linux-amd64/node_exporter  /usr/local/bin
 83 | rm -rv node_exporter-1.5.0.linux-amd64*
 84 | sudo useradd -rs /bin/false node_exporter
 85 | 
 86 | sudo cat <<EOF | sudo tee /etc/systemd/system/node_exporter.service
 87 | [Unit]
 88 | Description=Node Exporter
 89 | After=network.target
 90 | 
 91 | [Service]
 92 | User=node_exporter
 93 | Group=node_exporter
 94 | Type=simple
 95 | ExecStart=/usr/local/bin/node_exporter
 96 | 
 97 | [Install]
 98 | WantedBy=multi-user.target
 99 | EOF
100 | 
101 | sudo cat /etc/systemd/system/node_exporter.service
102 | sudo systemctl daemon-reload  && sudo systemctl enable node_exporter
103 | sudo systemctl start node_exporter.service && sudo systemctl status node_exporter.service --no-pager
104 | 


--------------------------------------------------------------------------------
/portainer.sh:
--------------------------------------------------------------------------------
1 | curl -L https://downloads.portainer.io/ce2-16/portainer-agent-stack.yml -o portainer-agent-stack.yml
2 | docker stack deploy -c portainer-agent-stack.yml portainer
3 | docker ps
4 | 


--------------------------------------------------------------------------------
/prometheus.sh:
--------------------------------------------------------------------------------
 1 | wget https://github.com/prometheus/prometheus/releases/download/v2.43.0/prometheus-2.43.0.linux-amd64.tar.gz
 2 | tar -xf prometheus-2.43.0.linux-amd64.tar.gz
 3 | sudo mv prometheus-2.43.0.linux-amd64/prometheus prometheus-2.43.0.linux-amd64/promtool /usr/local/bin
 4 | 
 5 | Now, We need to Create directories for configuration files and other prometheus data.
 6 | sudo mkdir /etc/prometheus /var/lib/prometheus
 7 | sudo mv prometheus-2.43.0.linux-amd64/console_libraries /etc/prometheus
 8 | ls /etc/prometheus
 9 | sudo rm -rvf prometheus-2.43.0.linux-amd64*
10 | 
11 | #sudo vim /etc/hosts
12 | #3.101.56.72  worker-1
13 | #54.193.223.22 worker-2
14 | 
15 | sudo cat <<EOF | sudo tee /etc/prometheus/prometheus.yml
16 | global:
17 |   scrape_interval: 10s
18 | 
19 | scrape_configs:
20 |   - job_name: 'prometheus_metrics'
21 |     scrape_interval: 5s
22 |     static_configs:
23 |       - targets: ['localhost:9090']
24 |   - job_name: 'node_exporter_metrics'
25 |     scrape_interval: 5s
26 |     static_configs:
27 |       - targets: ['localhost:9100','worker-1:9100','worker-2:9100']
28 | EOF
29 | 
30 | 
31 | sudo useradd -rs /bin/false prometheus
32 | sudo chown -R prometheus: /etc/prometheus /var/lib/prometheus
33 | 
34 |  sudo ls -l /etc/prometheus/
35 | sudo cat <<EOF | tee /etc/systemd/system/prometheus.service
36 | [Unit]
37 | Description=Prometheus
38 | After=network.target
39 | 
40 | [Service]
41 | User=prometheus
42 | Group=prometheus
43 | Type=simple
44 | ExecStart=/usr/local/bin/prometheus \
45 |     --config.file /etc/prometheus/prometheus.yml \
46 |     --storage.tsdb.path /var/lib/prometheus/ \
47 |     --web.console.templates=/etc/prometheus/consoles \
48 |     --web.console.libraries=/etc/prometheus/console_libraries
49 | 
50 | [Install]
51 | WantedBy=multi-user.target
52 | EOF
53 | 
54 | sudo ls -l /etc/systemd/system/prometheus.service
55 | sudo systemctl daemon-reload && sudo systemctl enable prometheus
56 | sudo systemctl start prometheus && sudo systemctl status prometheus --no-pager
57 | 


--------------------------------------------------------------------------------
/sonar.sh:
--------------------------------------------------------------------------------
 1 | #! /bin/bash
 2 | #Launch an instance with 9000 and t2.medium
 3 | cd /opt/
 4 | wget https://binaries.sonarsource.com/Distribution/sonarqube/sonarqube-8.9.6.50800.zip
 5 | unzip sonarqube-8.9.6.50800.zip
 6 | yum install java-17-amazon-corretto -y
 7 | useradd sonar
 8 | chown sonar:sonar sonarqube-8.9.6.50800 -R
 9 | chmod 777 sonarqube-8.9.6.50800 -R
10 | su - sonar
11 | 
12 | #run this on server manually
13 | #sh /opt/sonarqube-8.9.6.50800/bin/linux/sonar.sh start
14 | #echo "user=admin & password=admin"
15 | 


--------------------------------------------------------------------------------
/swiggy.sh:
--------------------------------------------------------------------------------
1 | yum install httpd git -y
2 | systemctl start httpd
3 | systemctl status httpd
4 | cd /var/www/html
5 | git clone https://github.com/karishma1521success/swiggy-clone.git
6 | mv swiggy-clone/* .
7 | tail -100f /var/log/httpd/access_log
8 | 


--------------------------------------------------------------------------------
/terraform.sh:
--------------------------------------------------------------------------------
1 | sudo yum install -y yum-utils shadow-utils
2 | sudo yum-config-manager --add-repo https://rpm.releases.hashicorp.com/AmazonLinux/hashicorp.repo
3 | sudo yum -y install terraform
4 | aws configure
5 | 


--------------------------------------------------------------------------------
/terraformer:
--------------------------------------------------------------------------------
 1 | wget https://github.com/GoogleCloudPlatform/terraformer/releases/download/0.8.24/terraformer-all-linux-amd64
 2 | chmod +x terraformer-all-linux-amd64
 3 | sudo mv terraformer-all-linux-amd64 /usr/local/bin/terraformer
 4 | terraformer --version
 5 | 
 6 | COMMAND: terraformer import aws --resources=sg,ec2_instance,elb --regions=us-east-1
 7 | UPDATE PROVIDERS IN STATE FILE:
 8 | terraform state replace-provider -- -/aws hashicorp/aws
 9 | terraform init
10 | terraform plan
11 | terraform apply
12 | 


--------------------------------------------------------------------------------
/terrform-ubuntu:
--------------------------------------------------------------------------------
1 | apt update -y
2 | wget -O- https://apt.releases.hashicorp.com/gpg | sudo gpg --dearmor -o /usr/share/keyrings/hashicorp-archive-keyring.gpg
3 | echo "deb [signed-by=/usr/share/keyrings/hashicorp-archive-keyring.gpg] https://apt.releases.hashicorp.com $(lsb_release -cs) main" | sudo tee /etc/apt/sources.list.d/hashicorp.list
4 | sudo apt update && sudo apt install terraform 
5 | apt install awscli -y
6 | aws configure
7 | 


--------------------------------------------------------------------------------
/tomcat-users.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!--
 3 |   Licensed to the Apache Software Foundation (ASF) under one or more
 4 |   contributor license agreements.  See the NOTICE file distributed with
 5 |   this work for additional information regarding copyright ownership.
 6 |   The ASF licenses this file to You under the Apache License, Version 2.0
 7 |   (the "License"); you may not use this file except in compliance with
 8 |   the License.  You may obtain a copy of the License at
 9 | 
10 |       http://www.apache.org/licenses/LICENSE-2.0
11 | 
12 |   Unless required by applicable law or agreed to in writing, software
13 |   distributed under the License is distributed on an "AS IS" BASIS,
14 |   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 |   See the License for the specific language governing permissions and
16 |   limitations under the License.
17 | -->
18 | <tomcat-users xmlns="http://tomcat.apache.org/xml"
19 |               xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
20 |               xsi:schemaLocation="http://tomcat.apache.org/xml tomcat-users.xsd"
21 |               version="1.0">
22 | <!--
23 |   By default, no user is included in the "manager-gui" role required
24 |   to operate the "/manager/html" web application.  If you wish to use this app,
25 |   you must define such a user - the username and password are arbitrary.
26 | 
27 |   Built-in Tomcat manager roles:
28 |     - manager-gui    - allows access to the HTML GUI and the status pages
29 |     - manager-script - allows access to the HTTP API and the status pages
30 |     - manager-jmx    - allows access to the JMX proxy and the status pages
31 |     - manager-status - allows access to the status pages only
32 | 
33 |   The users below are wrapped in a comment and are therefore ignored. If you
34 |   wish to configure one or more of these users for use with the manager web
35 |   application, do not forget to remove the <!.. ..> that surrounds them. You
36 |   will also need to set the passwords to something appropriate.
37 | -->
38 | <!--
39 |   <user username="admin" password="<must-be-changed>" roles="manager-gui"/>
40 |   <user username="robot" password="<must-be-changed>" roles="manager-script"/>
41 | -->
42 | <!--
43 |   The sample user and role entries below are intended for use with the
44 |   examples web application. They are wrapped in a comment and thus are ignored
45 |   when reading this file. If you wish to configure these users for use with the
46 |   examples web application, do not forget to remove the <!.. ..> that surrounds
47 |   them. You will also need to set the passwords to something appropriate.
48 | -->
49 | <!--
50 |   <role rolename="tomcat"/>
51 |   <role rolename="role1"/>
52 |   <user username="tomcat" password="<must-be-changed>" roles="tomcat"/>
53 |   <user username="both" password="<must-be-changed>" roles="tomcat,role1"/>
54 |   <user username="role1" password="<must-be-changed>" roles="role1"/>
55 | -->
56 |   <role rolename="manager-gui"/>
57 |   <role rolename="manager-script"/>
58 |   <user username="tomcat" password="raham123" roles="manager-gui, manager-script"/>
59 | </tomcat-users>
60 | 


--------------------------------------------------------------------------------
/tomcat.sh:
--------------------------------------------------------------------------------
 1 | yum install java-17-amazon-corretto -y
 2 | wget https://dlcdn.apache.org/tomcat/tomcat-9/v9.0.104/bin/apache-tomcat-9.0.104.tar.gz
 3 | tar -zxvf apache-tomcat-9.0.104.tar.gz
 4 | sed -i '56  a\<role rolename="manager-gui"/>' apache-tomcat-9.0.104/conf/tomcat-users.xml
 5 | sed -i '57  a\<role rolename="manager-script"/>' apache-tomcat-9.0.104/conf/tomcat-users.xml
 6 | sed -i '58  a\<user username="tomcat" password="admin@123" roles="manager-gui, manager-script"/>' apache-tomcat-9.0.104/conf/tomcat-users.xml
 7 | sed -i '59  a\</tomcat-users>' apache-tomcat-9.0.104/conf/tomcat-users.xml
 8 | sed -i '56d' apache-tomcat-9.0.104/conf/tomcat-users.xml
 9 | sed -i '21d' apache-tomcat-9.0.104/webapps/manager/META-INF/context.xml
10 | sed -i '22d'  apache-tomcat-9.0.104/webapps/manager/META-INF/context.xml
11 | sh apache-tomcat-9.0.104/bin/startup.sh
12 | 


--------------------------------------------------------------------------------
/tomcat.yml:
--------------------------------------------------------------------------------
 1 | - hosts: all
 2 |   tasks:
 3 |     - name: download tomcat from dlcdn
 4 |       get_url:
 5 |         url: "https://dlcdn.apache.org/tomcat/tomcat-9/v9.0.87/bin/apache-tomcat-9.0.87.tar.gz"
 6 |         dest: "/root/"
 7 | 
 8 |     - name: untar the apache file
 9 |       command: tar -zxvf apache-tomcat-9.0.87.tar.gz
10 | 
11 | 
12 |     - name: rename the tomcat
13 |       command: mv apache-tomcat-9.0.87 tomcat
14 |       tags: abc
15 | 
16 |     - name: install java
17 |       command: yum install java-1.8.0-openjdk -y
18 | 
19 |     - name: setting the roles in tomcat-user.xml file
20 |       template:
21 |         src: tomcat-users.xml
22 |         dest: /root/tomcat/conf/tomcat-users.xml
23 | 
24 |     - name: delete two lines in context.xml
25 |       template:
26 |         src: context.xml
27 |         dest: /root/tomcat/webapps/manager/META-INF/context.xml
28 | 
29 |     - name: start the tomcat
30 |       shell: nohup /root/tomcat/bin/startup.sh
31 | 


--------------------------------------------------------------------------------
/trivy:
--------------------------------------------------------------------------------
1 | wget https://github.com/aquasecurity/trivy/releases/download/v0.18.3/trivy_0.18.3_Linux-64bit.tar.gz
2 | tar zxvf trivy_0.18.3_Linux-64bit.tar.gz
3 | sudo mv trivy /usr/local/bin/
4 | vim .bashrc
5 | export PATH=$PATH:/usr/local/bin/
6 | source .bashrc 
7 | 


--------------------------------------------------------------------------------
/ubuntu-docker.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # Update the system
 4 | apt-get update
 5 | apt-get upgrade -y
 6 | 
 7 | # Install Docker dependencies
 8 | apt-get install -y apt-transport-https ca-certificates curl software-properties-common
 9 | 
10 | # Add Docker's official GPG key
11 | curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg
12 | 
13 | # Add Docker repository
14 | echo "deb [arch=amd64 signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
15 | 
16 | # Update package information and install Docker
17 | apt-get update
18 | apt-get install -y docker-ce docker-ce-cli containerd.io
19 | 
20 | # Start Docker service
21 | systemctl start docker
22 | 
23 | # Enable Docker to start on system boot
24 | systemctl enable docker
25 | 


--------------------------------------------------------------------------------
/ubuntu-kops.sh:
--------------------------------------------------------------------------------
 1 | #vim .bashrc
 2 | #export PATH=$PATH:/usr/local/bin/
 3 | #source .bashrc
 4 | 
 5 | 
 6 | #! /bin/bash
 7 | apt update -y
 8 | apt upgrade -y
 9 | apt install awscli -y
10 | aws configure
11 | curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
12 | wget https://github.com/kubernetes/kops/releases/download/v1.25.0/kops-linux-amd64
13 | chmod +x kops-linux-amd64 kubectl
14 | mv kubectl /usr/local/bin/kubectl
15 | mv kops-linux-amd64 /usr/local/bin/kops
16 | 
17 | aws s3api create-bucket --bucket cloudanddevopsbyraham007899123.k8s.local --region us-east-1
18 | aws s3api put-bucket-versioning --bucket cloudanddevopsbyraham007899123.k8s.local --region us-east-1 --versioning-configuration Status=Enabled
19 | export KOPS_STATE_STORE=s3://cloudanddevopsbyraham007899123.k8s.local
20 | kops create cluster --name rahams.k8s.local --zones us-east-1a --master-count=1 --master-size t2.medium --node-count=2 --node-size t2.micro
21 | kops update cluster --name rahams.k8s.local --yes --admin
22 | 


--------------------------------------------------------------------------------
/ubuntu-minikube.sh:
--------------------------------------------------------------------------------
 1 | sudo apt update -y
 2 | sudo apt upgrade -y
 3 | sudo apt install curl wget apt-transport-https -y
 4 | sudo curl -fsSL https://get.docker.com -o get-docker.sh
 5 | sudo sh get-docker.sh
 6 | sudo curl -LO https://storage.googleapis.com/minikube/releases/latest/minikube-linux-amd64
 7 | sudo mv minikube-linux-amd64 /usr/local/bin/minikube
 8 | sudo chmod +x /usr/local/bin/minikube
 9 | sudo minikube version
10 | sudo curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
11 | sudo curl -LO "https://dl.k8s.io/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl.sha256"
12 | sudo echo "$(cat kubectl.sha256) kubectl" | sha256sum --check
13 | sudo install -o root -g root -m 0755 kubectl /usr/local/bin/kubectl
14 | sudo minikube start --driver=docker --force
15 | 


--------------------------------------------------------------------------------