summaryrefslogtreecommitdiff
path: root/gemfeed/stunnel-nfs-quick-reference.txt
diff options
context:
space:
mode:
authorPaul Buetow <paul@buetow.org>2025-10-02 11:31:40 +0300
committerPaul Buetow <paul@buetow.org>2025-10-02 11:31:40 +0300
commit157c9b2080a3f41eea0eeba11f6ef307f40e9b9e (patch)
treef75cef2ea21d73c71a3742c409b6d4564cf357ad /gemfeed/stunnel-nfs-quick-reference.txt
parentc46ee054a7d5f423f8772605f40c10ea4ac29faf (diff)
Update content for gemtext
Diffstat (limited to 'gemfeed/stunnel-nfs-quick-reference.txt')
-rw-r--r--gemfeed/stunnel-nfs-quick-reference.txt78
1 files changed, 0 insertions, 78 deletions
diff --git a/gemfeed/stunnel-nfs-quick-reference.txt b/gemfeed/stunnel-nfs-quick-reference.txt
deleted file mode 100644
index ca7f577a..00000000
--- a/gemfeed/stunnel-nfs-quick-reference.txt
+++ /dev/null
@@ -1,78 +0,0 @@
-STUNNEL + NFS QUICK REFERENCE FOR r1 AND r2
-===========================================
-
-COMPLETE SETUP (run as root on r1 and r2):
-------------------------------------------
-
-# 1. Install stunnel
-dnf install -y stunnel
-
-# 2. Copy certificate from f0 (run on f0)
-scp /usr/local/etc/stunnel/stunnel.pem root@r1:/etc/stunnel/
-scp /usr/local/etc/stunnel/stunnel.pem root@r2:/etc/stunnel/
-
-# 3. Create stunnel config on r1/r2
-mkdir -p /etc/stunnel
-cat > /etc/stunnel/stunnel.conf <<'EOF'
-cert = /etc/stunnel/stunnel.pem
-client = yes
-
-[nfs-ha]
-accept = 127.0.0.1:2323
-connect = 192.168.1.138:2323
-EOF
-
-# 4. Create systemd service
-cat > /etc/systemd/system/stunnel.service <<'EOF'
-[Unit]
-Description=SSL tunnel for network daemons
-After=network.target
-
-[Service]
-Type=forking
-ExecStart=/usr/bin/stunnel /etc/stunnel/stunnel.conf
-ExecStop=/usr/bin/killall stunnel
-RemainAfterExit=yes
-
-[Install]
-WantedBy=multi-user.target
-EOF
-
-# 5. Enable and start stunnel
-systemctl daemon-reload
-systemctl enable --now stunnel
-
-# 6. Create mount point
-mkdir -p /data/nfs/k3svolumes
-
-# 7. Test mount
-mount -t nfs4 -o port=2323 127.0.0.1:/data/nfs/k3svolumes /data/nfs/k3svolumes
-
-# 8. Verify mount works
-ls -la /data/nfs/k3svolumes/
-
-# 9. Add to fstab for persistence
-echo "127.0.0.1:/data/nfs/k3svolumes /data/nfs/k3svolumes nfs4 port=2323,_netdev 0 0" >> /etc/fstab
-
-# 10. Test fstab mount
-umount /data/nfs/k3svolumes
-mount /data/nfs/k3svolumes
-
-VERIFICATION COMMANDS:
-----------------------
-systemctl status stunnel
-mount | grep k3svolumes
-df -h /data/nfs/k3svolumes
-echo "test" > /data/nfs/k3svolumes/test-$(hostname).txt
-
-TROUBLESHOOTING:
-----------------
-# Check stunnel logs
-journalctl -u stunnel -f
-
-# Test connectivity
-telnet 127.0.0.1 2323
-
-# Restart services
-systemctl restart stunnel
-umount /data/nfs/k3svolumes && mount /data/nfs/k3svolumes \ No newline at end of file
generated by cgit v1.2.3 (git 2.25.1) at 2026-04-18 19:21:50 +0000