On 23 February 2011 22:08, Sky <[email protected]> wrote: > I need to use puppet over internet for a distributed scenario. I will > have 100 pops, with around 5 servers per pop. I will use cloud, VPS > and other kind of services, so my servers will change all the time and > number of server propably increase and decrease shortly. I already > see puppet in actions on scenarios like that used some companys, but i > dont know how they do it. My question is: > > How they secure puppet? Docs say to dont expose puppet master server/ > service direct on internet. But in this case firewall/filter acsl > can't be used. > > Whats the best practice on this cases? > > greetings > Sky
Exposing non-webrick (unsure about webrick) over the net e.g. mongrel behind apache should be as fine as your standard web application. Communication between the master and nodes is secured also. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
