I'm trying to get an idea of what kind of backend setup I would need
to run puppet to manage roughly 6000 hosts.
I see puppet by iteself is limited to 10-20; but with mongrel/apache
that number shoots up but I am not sure by how much?
Im still new to puppet and running it in a lab but want to ta
od idea for high loads scenarios and you
> should consider a hardware load balancer and separation of the puppet
> instances in manifests-server and file-server.
>
> 2011/1/8 trey85stang
>
>
>
> > I'm trying to get an idea of what kind of backend setup I would need
&
> 1) Copy the same certificate authority to each server. This is easy to do,
> but will break certificate revocation lists (CRL).
> 2) Dedicate one computer to be the certificate authority. Requires more
> client config, but allows CRLs to work.
>
> On Jan 8, 2011, at 2:11 PM
I hope my title makes sense. I'm still new to puppet but have made a
lot o progress in a matter of 2-3 days and have a good grasp on the
fundamentals... Now I'm trying to determine how to do a little more
then basic things.
My hosts all have standard hosts files that are almost identical,
what's
:42:19AM -0800, trey85stang wrote:
>
> > 192.168.1.20 host1.domain.com
> > 192.168.1.30 host2.domain.com
> > 192.168.1.250 unique_host.domain.com
>
> > Is there a way to manage this with puppet? What I would like to do is
> > be able to check that thos
Actually, upon more reading on my own, this is where stored configs
will come into play? Ill approach more reading on that subject.
On Jan 10, 9:56 am, trey85stang wrote:
> Thanks for the reply,
>
> It looks like I would need an entry for every host if I were to take
> tha
Upon further reading, it looks like what I want would be better
accomplished with using stored configs?
On Jan 10, 9:56 am, trey85stang wrote:
> Thanks for the reply,
>
> It looks like I would need an entry for every host if I were to take
> that route? My environment would re
nt'
}
}
On Jan 10, 10:24 am, Bruce Richardson wrote:
> On Mon, Jan 10, 2011 at 08:11:02AM -0800, trey85stang wrote:
> > Upon further reading, it looks like what I want would be better
> > accomplished with using stored configs?
>
> No. That's for someth
some more reading and come back to this when I get a little
further. So I will be looking at classes/define/repeat to see what I
can come up with.
On Jan 10, 1:46 pm, Bruce Richardson wrote:
> On Mon, Jan 10, 2011 at 11:19:03AM -0800, trey85stang wrote:
> > Bruce, I think what you are say
Forgot to mention I appreciate everyone's help!
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-us...@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegro
I recently installed puppet 2.6.4 on a server and client... And I can
not get puppet agent to write to a log file.
puppet.conf is as follows:
[main]
vardir = /var/puppet
logdir = $vardir/log
rundir = $vardir/run
ssldir = $vardir/ssl
[agent]
classfile = $vardir/classes.txt
They certainly are, thats for pointing that out. Ill just feel
embarassed now for not looking there to begin with. :)
On Jan 14, 3:43 pm, Mohamed Lrhazi wrote:
> are the logs in syslogd ? grep -r puppet /var/log ?
>
>
>
> On Fri, Jan 14, 2011 at 4:30 PM, trey85stang wrote:
Hey All, does anyone know how I would go about creating a front-end
apache config for a set of 3 puppetmaster backend servers? Id rather
not run puppetmaster on the apache front-end.
How do I handle the clients?
My though is the following for my setup:
standalone Puppet CA server that will han
further questions that I may have after
digesting the information you have provided me.
Thanks,
Trey
On Jan 31, 7:19 pm, Jeff McCune wrote:
> On Fri, Jan 28, 2011 at 4:00 PM, trey85stang wrote:
> > Hey All, does anyone know how I would go about creating a front-end
> > apache conf
I have a simple class like so for cronjobs:
class cron_jobs {
cron { cron1:
command => "/path/to/cron1",
user=> root,
hour=> 0,
minute => 5,
ensure => present,
}
cron { cron2:
command => "/path/to/cron2",
user=> root,
hour=> 0,
minute =>
I have figured it out, the cron name had a dot n it. I needed to
encase that in quotes before it would work. so it wasn't a syntax
error like the log message was leading me to believe.
On Feb 9, 12:10 pm, trey85stang wrote:
> I have a simple class like so for cronjobs:
>
> c
Hey all, Im still new to puppet so I may be doing something wrong.
The problem I am having is I have setup multiple environments. Going
from one environment.
To get started with testing that I copied my manifests directory and
modules dirctories into a handful of different directories to setup
t
one more thing to note. If I turn off all the evironments, restart
puppetmaster and then everything works fine; and just one more
clairification it's only "new" modules being created that have the
problem.
On Feb 10, 10:23 am, trey85stang wrote:
> Hey all, Im still new to
way it seems it should work, if you can specify the
environment with ext_nodes then the client shouldn't need to
configured to point to it; should it?
Thanks,
Trey
On Feb 10, 1:16 pm, trey85stang wrote:
> one more thing to note. If I turn off all the evironments, restart
> puppetmast
atly when I get
this deployed.
On Feb 11, 1:27 pm, Nigel Kersten wrote:
> On Fri, Feb 11, 2011 at 10:30 AM, trey85stang wrote:
> > Finally figured it out, Maybe this is a bug I am not sure. But I was
> > setting the environment only from the external_nodes script. I was
> >
One suggestion, if you two are still reading. First im not a
developer, just a sys admin so if this suggestion is dumb just ignore
but:
Why not just add an override in the client config. env_defined_remote
= true (or whatever), will tell the puppet client to grab the
environment from the ser
Hey All, I'm still experimenting with a puppet backend for 6000
hosts. I have switched from mongrel to a passenger backend on a
single puppetserver.
Afterwards any node that is not defined in the external nodes script,
is now rejected even if they have an entry in my nodes.pp manifest.
With the
while I am at it, what is the best way to load balance between
multiple servers using passenger? a dedicated load balancer or can
the balancing be done within passenger like mongrel?
On Feb 15, 8:11 pm, trey85stang wrote:
> Hey All, I'm still experimenting with a puppet backend
Thanks Ben, that is simple enough.
On Feb 15, 8:38 pm, Ben Hughes wrote:
> On Tue, Feb 15, 2011 at 06:30:29PM -0800, trey85stang wrote:
> > while I am at it, what is the best way to load balance between
> > multiple servers using passenger? a dedicated load balancer or can
&g
I have a custom app I need to attempt to deploy with puppet but Im not
quite grasping how I can do this... So I figured I would share the
steps needed and maybe someone can give me an idea:
1. Run pre script to setup environment (must exit with 0)
2. Install 4 rpm packages
3. Run post installat
;:
> command => "post install",
> refreshonly => true,
> }
>
> }
>
> Not 100% sure that the require will run the prescript, but I think that is
> correct. And the postscript will get run once at the end (even though it is
> notified 4 times)
&g
he external nodes script? That's the
> way Puppet knows to check for the nodes.pp file. If you return /NOTHING/
> (i.e. not an empty YAML block), then nodes.pp isn't checked.
>
> -Gary
>
>
>
>
>
>
>
>
>
> On Tue, Feb 15, 2011 at 6:11 PM, tr
I am getting a syntax error in a module and I'm not sure why...
Anyone care to take a look?
class audit {
file { "/etc/audit.rules":
owner => "root",
group => "root",
mode => 640,
case $operatingsystemrelease {
"10.2": { path => "/etc/audit.rules",
source => "pu
Correction:
# subscribe => $highavailability ? {
#true => File["myapp"],
#false => $hostname ? {
# /$m[0-9]*/ => File["myapp1"],
# /$s[0-9]*/ => File["myapp2"],
# },
# },
On Mar 30, 12:20 pm, trey85stang wro
"],
#},
# },
hasrestart => true,
hasstatus => true,
restart=> "/etc/init.d/apparmor restart",
status => "/etc/init.d/apparmor status",
}
}
The commented out part under service is the section I am having
trouble with; as it
ok, dont bother answering the question about the other module... I
got it straightened out... the logic was fubar I cut it down to a
single file type, and service type with a few separators and it all
works now.
On Mar 30, 12:22 pm, trey85stang wrote:
> Correction:
>
> #
When I generate a cert on the puppetmaster, where do I get the cert,
andwhere do I put them on the client so everything will work?
Im prepping up for a deployment and have been looking through a lot of
threads on the best way to deal with this.. but I havent seen one that
says where to put the fi
http://projects.puppetlabs.com/projects/1/wiki/Certificates_And_Security
answer is buried in that link, All good to go now.
Thanks
On Apr 7, 8:22 am, trey85stang wrote:
> When I generate a cert on the puppetmaster, where do I get the cert,
> andwhere do I put them on the client so ever
Is there a way to override a schedule for a package if the package is
not installed?
class packages {
schedule { installs:
range => "2-4",
period => daily,
repeat => 1,
}
package { openssh:
ensure => latest,
schedule => installs,
}
}
I dont want to check if opens
Hey All,
Im running into a road block with a server that is going to to be
multi role.
Example:
I want to run a nagios server and a repo server on one box.
My nagios manifest has two services defined:
class nagios::server {
...
service { nagios:
ensure => running,
...
}
service
Sounds good, not the way I was hoping to have to do it.. but that will
work.
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To view this discussion on the web visit
https://groups.google.com/d/msg/puppet-users/-/Ld0sFBSIFnwJ.
To post to this
9:01:24 AM UTC-5, trey85stang wrote:
>
> Sounds good, not the way I was hoping to have to do it.. but that will
> work.
>
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To view this discussion on the web visit
https://g
Hell... I just tried it an it works fine. At least that way I dont have to
go back and assign all my servers to the new httpd module.
On Thursday, June 21, 2012 9:24:59 AM UTC-5, trey85stang wrote:
>
> Actually, one more question to spawn off this... Is there a way in my
> na
On Thursday, June 21, 2012 5:19:32 PM UTC-5, Nick Fagerlund wrote:
>
>
>
> On Thursday, June 21, 2012 7:24:59 AM UTC-7, trey85stang wrote:
>>
>> Actually, one more question to spawn off this... Is there a way in my
>> nagios/repo class to say if you have
I have a puppet client that fails when trying to enable mcollective and
nrpe (the only two services I have enable set for). I have 160+ machines
that this works fine on but one just gives me the following:
Jul 16 15:21:21 server1 puppet-agent[29413]:
(/Stage[main]/Mcollective/Service[mcollecti
That is a no go as well
service { nrpe:
ensure => running,
provider => redhat,
enable => true,
hasrestart => true,
hasstatus => true,
}
service { mcollective:
ensure => running,
provider => redhat,
enable => true,
hasrestart => true,
Im with you in thinking it is a host issue I thought I would check here
first before abandoning hope. Puppet is ran as root and selinux is
disabled.
On Tuesday, July 17, 2012 8:18:03 AM UTC-5, jcbollinger wrote:
>
>
>
> On Monday, July 16, 2012 5:23:15 PM UTC-5, Corey Hammerton wrote:
>>
>> it
ok, verified it was 100% a host problem puppet did good showing the
error. the binary of chkconfig was corrupt every command line argument
output a return code of 0 no matter what. Im not sure where puppet got
that the command actually failed... but im glad it did.
--
You received this mes
Very nice and polished release. I upgraded perfectly with the rpms on
centos 6.3. I greatly appreciate the new texteditor for the provisioning
templates/scripts.
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To view this discussion on the
Hey All,
I have an issue I need help working around or determining if it is a bug
the issue is as follows, I have a custom repo(s) that has all my software
for a specific version release in it. A new version gets a new repo.
The problem lies when I move to upgrade software. My idea was to
Thanks for the replies. I will give them metadata_expire option a try and
if that doesnt work.. ill just execute a yum clean all with every internal
repo update.
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To view this discussion on the w
Monday, August 13, 2012 2:20:37 PM UTC-5, trey85stang wrote:
>
> Thanks for the replies. I will give them metadata_expire option a try and
> if that doesnt work.. ill just execute a yum clean all with every internal
> repo update.
>
--
You received this message because you are subscri
dohh... I just realized this host had 2.6 installed... not 2.7.
Everything works fine on 2.7.
On Tuesday, August 14, 2012 9:07:39 AM UTC-5, trey85stang wrote:
>
> Well no go with metadata_expire or a yum clean all after updating the
> repo. This appears to be a bug of some sort.
How can one change an existing entry with augeas on a numbered entry list?
specifically I want to add entries in syslog to the entry that has "file =
/var/log/messages"
I can use this search string to find the entry:
augtool> print /files/etc/syslog.conf/*/action/file[. =
"/var/log/messages"]
>
> Ok,
>
> I figured this out. I probably worded my issue badly but what i was
> looking for is the following:
>
> #this sets a variable at the entry[#] level
> defvar syslog /files/etc/syslog.conf/*[ ./action/file =
> "/var/log/messages"]
>
> #these two add in the new selector entries.
> se
One more thing I found, I needed an onlyif for the above puppet line.
Here is a little further syntax
augeas { "syslog_local6none":
incl => "/etc/syslog.conf",
lens => "Syslog.lns",
changes => [
"defvar syslog *[ ./action/file = \"/var/log/messages\" ]",
"set \$sys
51 matches
Mail list logo
