Skip to content

Commit

Permalink
Merge pull request #435 from bgraef/main
Browse files Browse the repository at this point in the history
update net disk enc and multi-platform image posts
  • Loading branch information
bgraef authored Sep 12, 2024
2 parents 97d1fd7 + 32b5f33 commit 77618e4
Show file tree
Hide file tree
Showing 2 changed files with 25 additions and 20 deletions.
25 changes: 15 additions & 10 deletions content/posts/ol/storage/post-19/index.md
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
---
title: "Use Network-Bound Disk Encryption"
title: "Use Network Bound Disk Encryption"
date: 2021-06-21
draft: false
summary: "Learn how to use Network-Bound Disk Encryption."
summary: "Learn how to use Network Bound Disk Encryption with Tang and Clevis on Oracle Linux."
tags: ["ol", "lab", "tutorial", "ol-storage"]
showDate: true
---
Expand All @@ -11,22 +11,27 @@ showDate: true

:crescent_moon: [Lab](https://luna.oracle.com/lab/e348bfed-8e08-4b12-8114-74e87eb12497)

:spiral_notepad: [Tutorial](https://docs.oracle.com/en/learn/nbde-oracle-linux)
:spiral_notepad: [Tutorial](https://docs.oracle.com/en/learn/ol-tang-clevis)

## Details

The following tutorial shows you how to configure an Oracle Linux system with disk encryption that is dependent on a network based key service.
This tutorial demonstrates how to configure an Oracle Linux system with Linux Unified Key Setup (LUKS) disk encryption that is dependent on a network-based key service consisting of [Tang](https://github.com/latchset/tang) and [Clevis](https://github.com/latchset/clevis). You will create an encrypted XFS file system that is automatically unlocked at boot when on the same network as your key server.

### Objectives

In this tutorial, you will learn how to:
In this tutorial, you'll learn how to:

- Set up LUKS using [cryptsetup](https://gitlab.com/cryptsetup/cryptsetup/-/wikis/home), which provides the tooling for disk-based encryption and includes support for LUKS.
- Configure Tang as a network service that provides cryptographic services over HTTP.
- Use Clevis for the network encryption framework. Clevis can use keys provided by Tang as a passphrase to unlock LUKS volumes.

- Create an encrypted XFS file system that is automatically unlocked at boot when on the same network as your key server
- This tutorial is targeted at users of Oracle Linux 8 or later.

### Prerequisites

The tutorial uses the following system:
- Minimum of two Oracle Linux systems

- Each system should have Oracle Linux installed and configured with:
- A non-root user account with sudo access
- Access to the Internet
- A disk or block device attached to the system to use for encrypted storage

- Two systems with Oracle Linux 8 installed.
- A disk or block device attached to one system to use for encrypted storage
20 changes: 10 additions & 10 deletions content/posts/ol/virt/post-36/index.md
Original file line number Diff line number Diff line change
Expand Up @@ -2,35 +2,35 @@
title: "Build Multi-Platform Images"
date: 2021-07-29
draft: false
summary: "Learn how to create multi-platform container images using Podman on Oracle Linux."
summary: "Learn how to build multi-platform container images using Podman on Oracle Linux."
tags: ["ol","tutorial","ol-podman"]
showDate: true
---

## Links

:spiral_notepad: [Tutorial](https://docs.oracle.com/en/learn/oracle-linux-platform-images)
:spiral_notepad: [Tutorial](https://docs.oracle.com/en/learn/ol-build-multi-platform-images)

## Details

This demo shows the creation of a multi-platform container image using Podman on Oracle Linux.

### Objectives

In this lab, you'll:
In this tutorial, you'll learn how to:

- Configure Podman for remote connectivity
- Connect to a remote Podman instance
- Build platform-specific images from a single Containerfile
- Push platform-specific images to the Oracle Cloud Infrastructure Registry (OCIR)
- Create a manifest list that includes both platform-specfic images
- Create a manifest list that includes both platform-specific images
- Push the manifest list to OCIR
- Inspect the OCIR hosted manifest list to see the available platforms.
- Inspect the OCIR-hosted manifest list to see the available platforms
- Pull and run the image

### What Do You Need?

- An Oracle Cloud Infrastructure tenancy
- An x86_64 system with Oracle Linux 8 or later installed
- An aarch_64 system with Oracle Cloud Developer installed
### Prerequisites

- Access to an Oracle Cloud Infrastructure (OCI) tenancy
- An Oracle Linux x86_64 instance
- An Oracle Cloud Developer aarch_64 instance
- Access to Oracle Cloud Infrastructure Registry

0 comments on commit 77618e4

Please sign in to comment.