Programming VIP

Opening The article about Istio traffic hijacking can be found in a very detailed article in the servicemesher community at present. You can refer to: Sidecar injection and transparent traffic hijacking in Istio . In particular, the "traffic hijacking diagram" collated by the blogger can clearly see the hijacking process. Here I use ...

Firewall D is the front-end controller of iptables, which is used to implement persistent network traffic rules. It provides command line and graphical interfaces, which are available in the repositories of most Linux distributions. There are two main differences between using firewall D and controlling iptables directly: Firewall D uses zone ...

1. Install Postfix yum -y install postfix After installation, you need to replace the sendmail that comes with the system: rpm -e sendmail perhaps yum remove sendmail Modify MTA (default mail transfer agent) alternatives --config mta and enter directly. 2. Install Dovecot (post office forwarding) yum -y i ...

Rootkit needs to find out if there is a program catching it in time, and the detection program itself needs to be vigilant about Rootkit injection and left-right interaction. The instrumentation program found Rootkit to be very versatile, and I've previously described how to static scan through address ranges that are called from each other by ...

Firewall firewalld learning summary for RHEL Linux 7   This paper describes firewalld, a firewall configuration tool under RHEL 7.Before RHEL 7, we generally used iptables firewall management tools. In fact, neither iptables nor firewalld are real firewalls. They are just firewall management tools used to define firewall policies, or they are j ...

Main points: 1. Introduction to Squid 2. Cache Agent 3. Compile, install and optimize Squid manually 4. Establishing Traditional Agents 5. Setting up transparent agents 1. Introduction to Squid (1) Squid is a high performance proxy cache server that supports FTP, gopher, HTTPS and HTTP protocols.Unlike general proxy caching software, Squid ha ...

Introduction to LVS LVS (Linux Virtual Server), the Linux virtual server, is an open source load balancing project led by Dr. Zhang Wensong. At present, LVS has been integrated into the Linux kernel module.The project implements an IP-based load balancing scheduling scheme for data requests in the Linux kernel. The architecture of the scheme ...

I. check iptables service status First check the status of iptables service [root@woxplife ~]# service iptables status iptables: Firewall is not running. The iptables service is installed, but the service is not started. You can install it directly if it is not installed. yum install -y iptables ...

Blog Outline: I. Bridge mode (communication between containers on the same Docker server) 2. Deploy the consumer service to realize cross host communication of Docker container Preface: When you start using docker on a large scale, you will find that you need to know a lot about the network. Docker, as the most popular lightweight containe ...

kubernetes Off-line Installation Package, only three steps kube-proxy source code parsing ipvs has higher performance and stability than iptables mode. This paper focuses on the source code analysis of iptables mode. If you want to understand the principle of iptables mode, you can refer to its implementation. There is no difference in architec ...