Fabian Lee : Software Engineer

Python: exploring the use of startswith against a list: tuple, regex, list comprehension, lambda

February 20, 2021
Categories: Python

As with any programming language, Python has a multitude of ways to accomplish the same task. In this article, I will explore the idea of taking a string and checking if it ‘startswith’ any of the strings from a predetermined list. As context for the example code, RFC1918 sets out several IPv4 ranges that can … Python: exploring the use of startswith against a list: tuple, regex, list comprehension, lambda

Ansible: cloning a git repository that requires credentials

February 3, 2021
Categories: Automation

If a git repository requires credentials to clone, and you are still using a username/password (instead of ssh key), it is still possible to have the repository cloned in your automation scripts without be prompted. You just have to ensure that the username and password are properly URL encoded. From the command line, the syntax … Ansible: cloning a git repository that requires credentials

GCP: Analyzing members of IAM role using gcloud filtering and jq

January 29, 2021
Categories: Scripting

Although the GCP console provides a nice interface for displaying which user/service account is in which IAM security role (IAM & Admin > IAM), it can be difficult to analyze using gcloud get-iam-policy because of the inner array of ‘members’ returned. However, if you use the flattening ability of gcloud, it becomes much easier to … GCP: Analyzing members of IAM role using gcloud filtering and jq

Ubuntu: Using iptables to forward tcp and udp requests

September 17, 2018
Categories: Linux

In previous articles I have described how to use a Squid proxy as a bridge to outside services such as http and ftp. Having hosts in your private networks use a single access point to services in the outside world institutes the type of control often required in production data centers. Having a single host … Ubuntu: Using iptables to forward tcp and udp requests

ELK: metadata fields in Logstash for grok and conditional processing

May 1, 2017
Categories: Linux, Logging

When building complex, real-world Logstash filters, there can be a fair bit of processing logic. There are typically multiple grok patterns as well as fields used as flags for conditional processing. The problem is, these intermediate extracted fields and processing flags are often ephemeral and unnecessary in your ultimate persistent store (e.g. ElasticSearch), but they will be inserted … ELK: metadata fields in Logstash for grok and conditional processing

ELK: Using Ruby in Logstash filters

April 24, 2017
Categories: Logging, Scripting

Logstash has a rich set of filters, and you can even write your own, but often this is not necessary since there is a out-of-the-box filter that allows you to embed Ruby code directly in the configuration file. Using logstash-filter-ruby, you can use all the power of Ruby string manipulation to parse an exotic regular expression, … ELK: Using Ruby in Logstash filters

Logstash: Using metrics to debug the filtering process

July 18, 2016
Categories: DevOps

When building your logstash filter, you would often like to validate your assumptions on a large sampling of input events without sending all the output to ElasticSearch. Using Logstash metrics and conditionals, we can easily show: How many input events were processed successfully How many input events had errors An error file containing each event … Logstash: Using metrics to debug the filtering process