{"@attributes":{"version":"2.0"},"channel":{"title":"Morgan Kesler","link":"https:\/\/keslerm.com\/","description":"Recent content on Morgan Kesler","generator":"Hugo -- gohugo.io","language":"en","lastBuildDate":"Tue, 30 Nov 2021 10:55:04 -0500","item":[{"title":"Nomad Prometheus Metrics with mTLS","link":"https:\/\/keslerm.com\/2021\/11\/30\/nomad-prometheus-metrics-with-mtls\/","pubDate":"Tue, 30 Nov 2021 10:55:04 -0500","guid":"https:\/\/keslerm.com\/2021\/11\/30\/nomad-prometheus-metrics-with-mtls\/","description":"Enabling mTLS for Nomad is a great way to secure traffic and restrict access to the Nomad API, but it does come with some downsides including breaking the default setup of Prometheus because the metrics API is also secured with mTLS. This is easily fixable, but not entirely obvious if you aren’t as experienced with Nomad and Prometheus.\nThis example is assuming you either have:\n Existing certificates for CLI access Dynamic certificates through vault  I won’t get into how to generate the certificates, but instead I’ll just focus on what needs to be adjusted to get metrics working again."},{"title":"Accessing the Nomad WebUI with mTLS","link":"https:\/\/keslerm.com\/2021\/11\/29\/accessing-the-nomad-webui-with-mtls\/","pubDate":"Mon, 29 Nov 2021 09:47:51 -0500","guid":"https:\/\/keslerm.com\/2021\/11\/29\/accessing-the-nomad-webui-with-mtls\/","description":"Enabling mTLS is a great way to secure access to your Nomad cluster, but doing so breaks the WebUI because you now need to provide a client certificate in order to access it. This is obviously what we would want, but it’s not overly obvious how to re-enable access.\nReally it’s pretty simple, the important step is that you need to convert the PEM encoded certificates into a PKCS12 certificate to provide Firefox or whatever browser you are using as your user certificate."},{"title":"Building a HTTP Status Check SaltStack Beacon","link":"https:\/\/keslerm.com\/2021\/11\/06\/building-a-http-status-check-saltstack-beacon\/","pubDate":"Sat, 06 Nov 2021 17:42:52 -0500","guid":"https:\/\/keslerm.com\/2021\/11\/06\/building-a-http-status-check-saltstack-beacon\/","description":"One of my favorite things about SaltStack is how easy it is to extend it to add functionality that will make your life easier, after all the whole point of using Salt is to make things easier. Salt gives you all the tools so that all you have to do is focus on the function.\nAt my job we deploy a lot of small specialized SBC\u2019s that run really two things on top of a stripped down version of linux: a small API that provides functions to other edge equipment and a salt minion."},{"title":"Automating SaltStack Tasks with Webhooks","link":"https:\/\/keslerm.com\/2021\/09\/09\/automating-saltstack-tasks-with-webhooks\/","pubDate":"Thu, 09 Sep 2021 17:40:08 -0500","guid":"https:\/\/keslerm.com\/2021\/09\/09\/automating-saltstack-tasks-with-webhooks\/","description":"SaltStack is a fantastic tool for provisioning and configuring machines across all sorts of infrastructure setups. It\u2019s been a staple for me for a long time when it comes to configuration management. One of the struggles that I\u2019ve seen with people is how to utilize it though in a more event driven system. This is one place Salt really shines but it needs a little help from an outside tool"},{"title":{},"link":"https:\/\/keslerm.com\/resume\/","pubDate":"Mon, 01 Jan 0001 00:00:00 +0000","guid":"https:\/\/keslerm.com\/resume\/","description":"Morgan Kesler     Email: me@keslerm.com Web: https:\/\/keslerm.com  Skills    DevOps     Containers: Docker, LXC Orchestration: Kubernetes, EKS CI\/CD: CircleCI, Gitlab CI  Software     Languages: Typescript, Javascript, Ruby, Python, Nim Databases: PostgreSQL, MySQL, MSSQL VCS: Git, Mercurial, Subversion  Experience    2015-Current - Senior Software Engineer - Park Assist - New York, NY\n Designed and implemented both client and internal applications using Ruby on Rails and Typescript Deployed and manage Kubernetes clusters using KOPs Implemented Infrastructure as Code using Terraform and AWS and designed policies and frameworks Built and implemented a real time AWS IoT system for both software and hardware platforms  2010-2015 - Java Developer - Kobie Marketing - St Petersburg, FL"},{"title":"About Me","link":"https:\/\/keslerm.com\/about\/","pubDate":"Mon, 01 Jan 0001 00:00:00 +0000","guid":"https:\/\/keslerm.com\/about\/","description":"Guiding Philosophies     Software Development is an interative  "},{"title":"Contact","link":"https:\/\/keslerm.com\/contact\/","pubDate":"Mon, 01 Jan 0001 00:00:00 +0000","guid":"https:\/\/keslerm.com\/contact\/","description":"E-mail me at me@keslerm.com"},{"title":"First snippet","link":"https:\/\/keslerm.com\/snippets\/first\/","pubDate":"Mon, 01 Jan 0001 00:00:00 +0000","guid":"https:\/\/keslerm.com\/snippets\/first\/","description":"This content is in snippets\/first\/index.md\npwd "},{"title":"Projects","link":"https:\/\/keslerm.com\/projects\/","pubDate":"Mon, 01 Jan 0001 00:00:00 +0000","guid":"https:\/\/keslerm.com\/projects\/","description":"Nothing to see here… Move along!"},{"title":"Second snippet","link":"https:\/\/keslerm.com\/snippets\/second\/","pubDate":"Mon, 01 Jan 0001 00:00:00 +0000","guid":"https:\/\/keslerm.com\/snippets\/second\/","description":"This content is in snippets\/second\/index.md\nls -la "}]}}