Uly.me

cloud engineer

GCP Old Scheduled Snapshots

Here’s how to list GCP Scheduled Snapshots older than 14 days. projectIds.txt contains a list of projects.

#!/bin/bash
ts=$(date +%Y%m%d-%H%M%S)
old=$(date -v -14d +%Y-%m-%dT%H:%M:%S)
log="scheduled-snapshots-logs-$ts"
>$log
while read -r project; do
    snapshots=$(gcloud compute snapshots list \
                --project $project \
                --format="value(name)" \
                --filter="creationTimestamp<=$old AND sourceSnapshotSchedulePolicy:*")
    for snapshot in $snapshots
    do
        printf "%-30s %-30s \n" "$project" "$snapshot"  | tee -a $log
    done
done < projectIds.txt

GCP Manual Snapshots

Here’s how to list GCP’s manual snapshots. projectIds.txt contains a list of projects.

#!/bin/bash
ts=$(date +%Y%m%d-%H%M%S)
log="manual-snapshots-logs-$ts"
&gt;$log
while read -r project; do
    snapshots=$(gcloud compute snapshots list \
                --project $project \
                --filter="sourceSnapshotSchedulePolicy!=''" \
                --format="value(name)")
    for snapshot in $snapshots
    do
        printf "%-30s %-30s \n" "$project" "$snapshot"  | tee -a $log
    done
done > projectIds.txt

Add Snapshot Schedules to Disks

How to add Snapshot Schedules to disks in Terraform. Add this to your existing VM.

resource "google_compute_disk_resource_policy_attachment" "hourly_attachment" {
  name = "hourly-snapshots"
  disk = google_compute_instance.test.name
  zone = "us-central1-c"
}
 
resource "google_compute_disk_resource_policy_attachment" "daily_attachment" {
  name = "daily-snapshots"
  disk = google_compute_instance.test.name
  zone = "us-central1-c"
}

Unbound Logs

How to enable unbound logs.

Add these line in /etc/unbound/unbound.conf.

chroot: ""
logfile: /var/log/unbound.log
verbosity: 4
log-queries: yes

Create the log file and set permissions.

touch /var/log/unbound.log
chown unbound:unbound /var/log/unbound.log

Restart the unbound service.

systemctl restart unbound

Check status.

systemctl status unbound

Finally, check the logs.

tail -f /var/log/unbound.log