from:"Larry Ludwig"

[Puppet Users] Re: Official puppetlabs position on cron vs puppet as a service?

2011-10-07 Thread Larry Ludwig

Mostly stlll run as cron. Though for some instances we run as a daemon.

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To view this discussion on the web visit 
https://groups.google.com/d/msg/puppet-users/-/itTFPtfZLocJ.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

Re: [Puppet Users] Re: Puppet Class execution order

2011-06-15 Thread Larry Ludwig

Thanks Ken,

Let me look further into the classes and see what's exactly happening.

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To view this discussion on the web visit 
https://groups.google.com/d/msg/puppet-users/-/E0R0CzeeXwoJ.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

[Puppet Users] Re: Puppet Class execution order

2011-06-14 Thread Larry Ludwig

Sorry the typo:

My examples should read:

class { 'two': require => Class['one'] }

class {'two: require => Exec['withinclassone'] }

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To view this discussion on the web visit 
https://groups.google.com/d/msg/puppet-users/-/HIBnBYkxst4J.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

[Puppet Users] require vs include?

2011-06-14 Thread Larry Ludwig

On a related note to my last post, what is the difference between a require 
and an include of a class?

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To view this discussion on the web visit 
https://groups.google.com/d/msg/puppet-users/-/9c4luY2KlDEJ.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

[Puppet Users] Puppet Class execution order

2011-06-14 Thread Larry Ludwig

For the life of me I'm not sure why this isn't working properly but Puppet 
appears to execute classes in the order it feels like, not how I'm 
specifying it within the language.

I've tried the newer sytax

Class['one'] -> Class['two']

Yet, I see Class two get executed first.

I've also tried doing it by defining the class itself.

class { 'one': require => Class['two'] }

I've even gone down to the specific function within the class to see if this 
helps ie:

class {'one': require => Exec['withinclasstwo'] }

And the same issue.. what gives?

I haven't looked at the resource graph yet but the amount of modules we use 
it's almost readable.

How can I force one class to get executed first before the other? Why in my 
case is it not working?

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To view this discussion on the web visit 
https://groups.google.com/d/msg/puppet-users/-/JHv2naxKQ2YJ.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

[Puppet Users] How do you handle deleted nodes with exported resources in this situation?

2011-06-06 Thread Larry Ludwig

I have an issue where for a file type of an exported resource I must define 
as such:

force=> false,
replace  => false,

Meaning the file is created, but do not replace after it's added. I do this 
because of the app modifies the config file after (I know bad idea on their 
part).

How can I ensure this file is removed when I remove the node from the 
storeconfig database?

In general, is there a way to trigger a event puppet when a instance is 
removed?

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To view this discussion on the web visit 
https://groups.google.com/d/msg/puppet-users/-/NmI1RmUwTXY5YndK.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

Re: [Puppet Users] Single and Double Quotes

2011-06-05 Thread Larry Ludwig

Bruce is correct. If you don't need double quotes, don't use them.

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To view this discussion on the web visit 
https://groups.google.com/d/msg/puppet-users/-/TVNhOGVjTE9wSEFK.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

[Puppet Users] parameterised classes via LDAP how?

2011-06-03 Thread Larry Ludwig

In 2.6 Puppet added parameterised classes, my question is it possible to 
call them via LDAP? If so how?

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To view this discussion on the web visit 
https://groups.google.com/d/msg/puppet-users/-/Z3dWYmJhOXFSQVVK.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

Re: [Puppet Users] finished, yet execution expired

2011-05-31 Thread Larry Ludwig

Actually upon further investigation it turned out to be an odd iptables 
firewall rule, unrelated to puppet.

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

Re: [Puppet Users] finished, yet execution expired

2011-05-27 Thread Larry Ludwig

In my case is also happening with 2.6.8. 

making

async_storeconfigs=false

Seemed to resolve the issue.


-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

Re: [Puppet Users] Concat Module posted to Onyx Point Github.

2011-05-25 Thread Larry Ludwig

Hi Trevor

Thanks for the module.

I've been testing out the concat module, thanks, but the only issue I see is 
files keep getting 'executed successfully' each round.

Is there any way to not have it do this? I haven't really looked that your 
ruby logic yet.

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

Re: [Puppet Users] Security of Puppet ACLs..

2011-05-13 Thread Larry Ludwig

It's from hostid command. How exactly is it generated I really don't know 
their info page is a bit vague.

--
   For example, here's what it prints on one system I use:

 $ hostid
 1bac013d

   On that system, the 32-bit quantity happens to be closely related to
the system's Internet address, but that isn't always the case.

   An exit status of zero indicates success, and a nonzero value
indicates failure.

-

You could always generate your own md5 number from your own specifications 
for a custom facter variable.  It won't be easy for you to reference the 
files though.  Security via obscurity isn't the best way, but it's better 
than what's place now. Puppet assumes all hosts are 'friendly'

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

Re: [Puppet Users] Security of Puppet ACLs..

2011-05-12 Thread Larry Ludwig

4)

reference the file via the facter 'uniqueid'


-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en.

[Puppet Users] Re: Fwd: New York City Puppet presentation Wednesday Nov 18th.

2009-11-15 Thread Larry Ludwig


This presentation is perfect for anyone who is just starting out with
Puppet or interested in what it can do for you.

I assume I'm already talking to users of Puppet so it's easy tell your
friends why they should go to this meeting.  It's not a sale pitch
presentation and if they are in the NYC area tell them about this
event.

Thanks..

-L

On Nov 14, 8:22 pm, Brian Gupta  wrote:
> -- Forwarded message --
> From: bgupta 
> Date: Sat, Nov 14, 2009 at 8:05 PM
> Subject: Puppet presentation Wednesday Nov 18th.
> To: puppet-nyc 
>
> Please register here:http://rsvp.nylug.org/
>
> We should be getting together after the preso, if folks want to
> exchange notes. (Likely at the TGI Fridays near the IBM Building where
> the NYLUG meeting will be held).
>
> Announcement:http://www.nylug.org/home/index.shtml
>
> Larry Ludwig
> - on -
> Puppet: What it is and how can it make system administration less
> painful
> ** Please note important information about: this meeting **
>
>    Please join us on Wednesday, November 18th, 2009 for a discussion
> of Reductive Labs' Centralized configuration management framework,
> Puppet.
>
>    Puppet is a model-driven open source framework designed to
> efficiently manage data center infrastructure. It's the sysadmin's
> best friend, reducing error counts and downtime, saving countless
> hours and providing significantly higher service quality. Puppet lets
> sysadmins spend less time on mundane tasks and instead focus on
> managing their infrastructure as a whole.
>
>    System administrators have long written custom scripts and tools
> to help automate common tasks such as configuration management and
> system updates. But as networks scale and reach outside the corporate
> firewall, custom tools become yet another management headache.
>
>    The benefits of automated infrastructure go beyond policy-enforced
> consistency and auditing. In conjunction with virtualizaton, the
> ability to reliably create new systems running consistent services
> creates auto-scaling applications as well as test systems identical to
> production environments.
>
>    Puppet abstracts the system from the system administration,
> providing developers and system administrators with a simple service-
> based policy framework that allows for more consistent, transparent
> and flexible systems.
>
>    Puppet is currently in use at many organizations, large and small,
> including: Google, Yahoo, and RedHat.
>
>    More Information:
>
>        * Puppet
>        * Reductive Labs
>        * Puppet Wiki
>        * Puppet users discussion
>        * Puppet developers discussion
>        * Puppet NYC User Group
>
>    About Larry Ludwig:
>    Larry Ludwig is a Solutions Architect at Brandorr Group LLC. Larry
> has been in the industry for over 15 years as a system administrator,
> DBA and system programmer. He`s had previous experience working for
> Fortune 500 corporations and holds a BS in CS from Clemson University.
> Larry has written over 120 puppet modules. Larry, along with Eric E.
> Moore and Brian Gupta are founding members of the NYC Puppet
> Usergroup.
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-11 Thread Larry Ludwig


Ugh, now I'm getting another error with Puppet.  The above node now
works, but deploying it on another node I get this error:

"Could not retrieve catalog from remote server: Could not intern from
pson: Could not convert from pson: Could not find relationship target
''

I have set the environment variable in the puppet.conf

So I assume this is a completely different error.

-L

--
Larry Ludwig
Empowering Media
1-866-792-0489 x600
Managed and Unmanaged Xen VPSes
http://www.hostcube.com/
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-11 Thread Larry Ludwig



> > BTW, how do you tell the client to be in a particular environment?
> > There is currently a bug report about this (ie environment can only be
> > set on the client and not in external_nodes anymore).

Which ticket # is it?  Is it this one?
http://projects.reductivelabs.com/issues/2748

having the client set the environment you then will run into the
chicken and egg syndrome. ie the first time puppet on the node runs
it's assumes 'production' then you set the puppet.conf via some method
and then next round runs in the proper environment.  So also flipping
between env will also have the same issue and be one run behind.

Without question it makes sense to have the puppetmaster determine
this, not the client.
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-11 Thread Larry Ludwig



Hi,

> Could it be that one of your environment doesn't have network-config?

Yes they do not.  The 'development' env has newer code.

> Could it be that in 0.25 the client is in this environment instead of
> being in the one you think it is in?

Checked LDAP config and it is in fact in the correct environment.
Again the node works with 0.24.8.

> BTW, how do you tell the client to be in a particular environment?
> There is currently a bug report about this (ie environment can only be
> set on the client and not in external_nodes anymore).

via LDAP. then it still works with 0.24.8 nodes on a 0.25.1 client.

-L
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-11 Thread Larry Ludwig


Ticket opened: http://projects.reductivelabs.com/issues/2803

-L
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-11 Thread Larry Ludwig




On Nov 11, 10:30 am, Brice Figureau 
wrote:
> Hi Larry,
>
> I re-read the whole thread, and I might have been wrong.
>
> Your module files are indeed placed in network-config/files, correct?
> Based on the error message (which mentions network-config/hosts) I
> thought you placed your files at the wrong place. My bad.

Yup they are in the files folder.

> Do you use environments?
>
> The only reason I can see for not finding the module, is that module
> doesn't exist in the environment the client think it is.

Yes that is correct I use environments.

>
> But I'm afraid we will never know if you don't add more debug info in
> the various files that finds a module from its path.
> The means adding more debug to:
>
> Puppet::Indirector::FileServer#authorized?
> Puppet::FileServing::Configuration#find_mount

What info do you want?

-L

--
Larry Ludwig
Empowering Media
1-866-792-0489 x600
Managed and Unmanaged Xen VPSes
http://www.hostcube.com
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-11 Thread Larry Ludwig



> The code is completely different between 0.24.8 and 0.25.1 which is why
> you're seeing a difference.

I understand this, but what works with 0.24.8 should work with 0.25.1
no? Hence it's looking more like a bug.

>
> Is network-config a module?
> If yes, then your source url is not correct, all the sourced files (for
> a module) should be in: /files/
>

Yes.

But what about 0.24.8 clients that need access to it, the puppetmaster
output states change it to  once all 0.24.8 are gone and it's
a warning message so it should work as is no?

> Here the url is only /
> That means puppet "thinks" it isn't a module but a regular mount. Since
> your fileserver.conf doesn't contain the "network-config" mount, it
> doesn't find any valid mount, so the request is forbidden.
>
> What I suggest:
>   * move the files under network-config/files/

Do you mean the subfolders below files?  I did a test for one file and
same result.

>
>   * open a redmine ticket so that we have a better error message, which
> at least would give us the reason.

Ok.

-L

--
Larry Ludwig
Empowering Media
1-866-792-0489 x600
Managed and Unmanaged Xen VPSes
http://www.hostcube.com
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-10 Thread Larry Ludwig


Nope not it.

Correct info:

Nov 10 22:22:38 archive puppetmasterd[19932]: Not authorized to call
find on /file_metadata/network-config/hosts/nsswitch.devcentos5.conf
request.node: devcentos5.empoweringmedia.net request.ip: 192.168.10.41

I modified indirection.rb to spew out this output.

Keep in mind this node works as a 0.24.8 node and does not once I
upgrade to 0.25.1

-L

--
Larry Ludwig
Empowering Media
1-866-792-0489 x600
Managed and Unmanaged Xen VPSes
http://www.hostcube.com
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-09 Thread Larry Ludwig


Could it be related the files folder I have has sub directories??

drwxr-xr-x  5 puppet puppet 4096 Apr 21  2009 .
drwxr-x---  4 puppet puppet 4096 Apr  7  2009 ..
lrwxrwxrwx  1 root   root  6 Apr  7  2009 CentOS -> RedHat
drwxr-x---  2 puppet puppet 4096 Apr  7  2009 Debian
drwxr-x---  2 puppet puppet 4096 Jun  1 10:13 RedHat
lrwxrwxrwx  1 root   root  6 Apr  7  2009 Ubuntu -> Debian
-rw-r--r--  1 puppet puppet  269 Apr  7  2009 host.conf
drwxr-x---  2 puppet puppet 4096 Apr 21  2009 hosts
-rw-r--r--  1 puppet puppet  148 Apr  7  2009 hosts.conf
-rw-r--r--  1 puppet puppet  216 Apr 21  2009 resolv.1.conf
-rw-r--r--  1 puppet puppet  216 Apr 21  2009 resolv.2.conf
-rw-r--r--  1 puppet puppet  216 Apr 21  2009 resolv.conf
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Any ideas about this error with upgrading to 0.25.1?

2009-11-07 Thread Larry Ludwig


2.2.2 here is the list of:

*** LOCAL GEMS ***

actionmailer (2.0.2)
actionpack (2.0.2)
actionwebservice (1.2.6)
activerecord (2.0.2)
activeresource (2.0.2)
activesupport (2.0.2)
capistrano (2.5.3)
cgi_multipart_eof_fix (2.5.0)
daemons (1.0.10)
echoe (3.0.2)
fastthread (1.0.1)
gem2rpm (0.5.3)
gem_plugin (0.2.3)
haml (2.2.2)
highline (1.5.0)
hobofields (0.7.5)
hobosupport (0.8.5)
hoe (1.7.0, 1.5.3)
hpricot (0.8.1)
mislav-will_paginate (2.2.3)
mongrel (1.1.5)
mysql (2.7)
net-scp (1.0.1)
net-sftp (2.0.1)
net-ssh (2.0.8)
net-ssh-gateway (1.0.0)
passenger (2.2.2)
rails (2.0.2)
rake (0.8.3)
rip (0.0.5)
rubyforge (1.0.0)
RubyRRDtool (0.6.0)
sqlite3-ruby (1.2.5)
sys-proctable (0.7.6)

On Nov 6, 11:10 pm, James Turnbull  wrote:
> Larry
>
> I have a similar configuration to you and run 0.25.1 and don't see  
> this issue.
>
> What passenger version?
>
> Regards
>
> James Turnbullhttp://www.james-turnbull.net
>
> On 07/11/2009, at 12:05 PM, Larry Ludwig  wrote:
>
>
>
> > On Nov 5, 7:07 am, Larry Ludwig  wrote:
> >>> The error the OP posted comes from the file serving layer, so it's  
> >>> more
> >>> a fileserver.conf issue.
>
> >> Ok here's my fileserver.conf.
> >> [plugins]
> >> allow 127.0.0.1/32
> >> allow 192.168.10.0/24
> >> allow 192.168.11.0/24
> >> [modules]
> >> allow 127.0.0.1/32
> >> allow 192.168.10.0/24
> >> allow 192.168.11.0/24
>
> >> Puppet traffic occurs over a private network.  This config works with
> >> 0.24.8 clients, so why wouldn't it work with 0.25?
>
> > No one has a solution to my issue? The online docs and ticket system
> > mention nothing about this issue.
>
> > Then unfortunately I'll have to roll back to 0.24.8 since then it
> > appears 0.25 isn't ready for prime time yet.
>
> > --
> > Larry Ludwig
> > Empowering Media
> > 1-866-792-0489 x600
> > Managed and Unmanaged Xen VPSes
> >http://www.hostcube.com/
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: What happens if puppet fails half way into processing a catalog?

2009-09-11 Thread Larry Ludwig


I think you are alluding to transactions.  This feature does not exist  
currently in Puppet.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: passenger-status gives error but passenger is working fine

2009-09-11 Thread Larry Ludwig


Hmm I would double check your config files and maybe uninstall  
passenger and try again.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: What happens if puppet fails half way into processing a catalog?

2009-09-11 Thread Larry Ludwig


I think you are alluding to transactions.  This feature does not exist  
currently in Puppet.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppetd downloading sourced file on every run

2009-09-10 Thread Larry Ludwig


On Sep 10, 2009, at 6:51 PM, Joshua Anderson wrote:
>
>
> I was under the impression that puppetd would only download a file  
> if the local checksum didn't match the puppetmaster's checksum for  
> that file. Am I mistaken?
>

You are correct.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppetd downloading sourced file on every run

2009-09-10 Thread Larry Ludwig


Hmm can you send stats of the how big the file and how long compared  
from 0.24.8?

I know we focused a lot of memory usage on the puppetmaster, and the  
amount of calls to the puppetmaster, but I don't know if we performed  
any performance testing.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet 0.25.0 release - EPEL?

2009-09-09 Thread Larry Ludwig



On Sep 8, 2009, at 7:37 PM, Todd Zullinger wrote:

> Marziani, Michael wrote:
>> Any idea how quickly we'll see this in EPEL?
>
> In addition to the link Larry posted for unofficial Fedora/EPEL
> packages¹, I'd say we probably shouldn't rush this into the EPEL
> repos.  It's a large change and it's probably wise to let it see a bit
> more testing before we push it to the official repos where folks who
> don't always expect surprises would find it in an update.  That said,
> getting it into epel-testing before too long seems reasonable.
>
> And, of course, this is just my opinion.  I've been known to be wrong
> on occasion. ;)
>

Sorry yes I should have stated this.  These are RPMs but NOT the  
official EPEL version..




-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet 0.25.0 release - EPEL?

2009-09-08 Thread Larry Ludwig

http://tmz.fedorapeople.org/repo/puppet/


-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet 0.25 migration

2009-09-08 Thread Larry Ludwig


hmm passenger 2.2.5 is released?  hmm I'll have to test it out.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: migrating client between puppet servers

2009-09-08 Thread Larry Ludwig



On Sep 8, 2009, at 1:53 AM, Matt Delves wrote:

>
> Hey Folks,
> I'm looking for some documentation on migrating clients from one  
> puppet server to another. Any links would be greatly appreciated.
>
> Thanks,
> Matt Delves
>

Hi Matt,

It's moving:
- the puppet code
- SSL certs
- node definitions

The SSL certs it means moving the /var/lib/puppet/ssl folder (or  
whatever it's defined as) from the old puppetmaster to the new.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Virtual recipe signals hardware nodes as 'openvz'

2009-09-08 Thread Larry Ludwig



On Sep 8, 2009, at 6:34 AM, Julien Cornuwel wrote:

>
> Hi,
>
> Not sure this is the right place to report this.
> On an OpenVZ HardwareNode, the 'virtual' parameter given by facter
> says 'openvz'.
> This is because the /proc/user_beancounters file also exists on the
> hardware node.
>
> This has some bad side-effects as a hardware node should, for example,
> have a NTP configuration, where a container should not.
>
> Regards,
>

If it's a bug open up a ticket here:

http://projects.reductivelabs.com/

Regards...

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: upgrading from 0.24 to 0.25 from tar.gz

2009-09-08 Thread Larry Ludwig



On Sep 8, 2009, at 9:13 AM, Matt wrote:

>
> Has anyone done an upgrade script to upgrade from 0.24 to 0.25?
>
> I usually just run ruby install.rb to install from the tar ball, but
> notice that quite a bit has changed with the 0.25 release and know
> that much of the 0.24 stuff will still be hanging around.
>
> Thanks,
>
> Matt
>

Hi Matt,

make sure you delete the old items in  /usr/bin.  They have been moved  
to /usr/sbin (ie puppetd)

To be safe delete the entire puppet ruby library folder.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Security with mongrel

2009-09-04 Thread Larry Ludwig



On Sep 4, 2009, at 9:56 AM, Štefan Sakalík wrote:

>
> Larry Ludwig wrote:
>> On Sep 3, 2009, at 6:46 AM, Štefan Sakalík wrote:
>>
>>
>>> I'm using mongrel and these lines in apache config concern me (from
>>> wiki/UsingMongrel):
>>> SSLVerifyClient optional
>>> RequestHeader set X-Client-Verify %{SSL_CLIENT_VERIFY}e
>>>
>>> So apache gives access to everyone. Does the puppetmaster  
>>> additionally
>>> verify client's identity? It's not obvious from the source code.
>>>
>>
>> Hi,
>>
>> This is so unsigned clients can connect and send their initial info.
>> (allowing the puppetmaster to sign them)
>>
> I see now. I wanted to make sure that client without signed  
> certificate
> can't get access to fileserver. So I assume this is the case.

Correct.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: the same puppetmaster in different subnets/vlan

2009-09-04 Thread Larry Ludwig


Hi,

The only way to do this is separate puppetmasters.

SSL CA -> puppetmaster is a one to one relationship.

Just curious why do you want separate certs?

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Security with mongrel

2009-09-04 Thread Larry Ludwig

On Sep 3, 2009, at 6:46 AM, Štefan Sakalík wrote:

>
> I'm using mongrel and these lines in apache config concern me (from
> wiki/UsingMongrel):
>  SSLVerifyClient optional
>  RequestHeader set X-Client-Verify %{SSL_CLIENT_VERIFY}e
>
> So apache gives access to everyone. Does the puppetmaster additionally
> verify client's identity? It's not obvious from the source code.

Hi,

This is so unsigned clients can connect and send their initial info.  
(allowing the puppetmaster to sign them)

I would add your IP space range of what servers should be allowed to  
connect with your puppetmaster if concerned about security.

You can also disable the above option and only enable when adding new  
clients.

-L

--
Larry Ludwig
Reductive Labs

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: some of the passenger processes not reloading manifests

2009-09-02 Thread Larry Ludwig


What version?  Sounds like a bug to me to submit.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Storing puppet info in a database

2009-09-01 Thread Larry Ludwig



On Sep 1, 2009, at 3:28 PM, Disconnect wrote:

>
> We use iclassify - it works as an external node tool (feeds tags,
> facts etc to puppetmaster) and clients feed it with automated info
> (facts) and manual tags/info/descriptions/etc..

Keep in mind while iclassify works, the original developers are no  
longer working on the product.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Redmine not mailing puppet-bugs?

2009-08-28 Thread Larry Ludwig


I noticed it also...  I thought I made a changed to my config and not  
remembering it.

Go back into your config and make sure emailing is re-enabled.  I'm  
not sure if something was changed globally in our redmine config.   
James any idea?

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: L.A. Puppet Master Needed for Configuration Management Roundtable at the UNIX Users Association of Southern California

2009-08-28 Thread Larry Ludwig


On Aug 28, 2009, at 2:04 AM, Jordan Schwartz wrote:

> Pardon the semi-spam, but I am hosting a Configuration Management
> Rountable presentation at the UNIX User Association of Southern
> California in Los Angeles on the evening of Thurs. Oct. 1st, and we
> need someone who can speak to puppet.
>
> We have speakers for cfengine and chef, and need someone with puppet
> production deployment experience to represent puppet.
>
> If you are interested, contact me at my jordanunix   gmail account.
> There is more info about UUASC at http://uuasc.org .
>
> Thanks,
>
> Jordan

Hi Jordan,

I passed the info to the rest of the Reductive Labs team.   
Unfortunately Puppet Camp is being held that same day:

http://reductivelabs.com/2009/10/01/puppet-camp/

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Could not call puppetmaster.getconfig: #

2009-08-27 Thread Larry Ludwig


Hi,

In order to help we need more context to your setup, are you using  
webrick or Passenger?

what happens if you access the puppetmaster via your web browser?

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: 0.25.0rc1, modules, and custom types

2009-08-27 Thread Larry Ludwig


This appears to be a known bug with 0.25.

http://projects.reductivelabs.com/issues/2574

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: 0.25.0rc1, modules, and custom types

2009-08-25 Thread Larry Ludwig


I am also seeing this same issue with a migration config I am testing  
so the upgrade to 0.25 is a smooth one.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Notify someone on failure

2009-08-25 Thread Larry Ludwig



On Aug 25, 2009, at 11:44 PM, chakkerz wrote:

>
> Yeah, the timestamp is useful but only shows a complete failure, that
> is one in which the host didn't make contact (i could be wrong).

Communication failure AND a manifest that cannot compile on the  
puppetmaster will cause the yaml file to get stale.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Notify someone on failure

2009-08-25 Thread Larry Ludwig



On Aug 25, 2009, at 9:06 PM, Robin Sheat wrote:

> Op woensdag 26 augustus 2009 12:52:13 schreef chakkerz:
>> I have puppet managing a fair few hosts but because we are still
>> testing (and later for peace of mind) we'd like to hear from hosts
>> that are failing their puppet run.
>
> I did this to make it work with Nagios:
> http://www.kallisti.net.nz/blog/2009/02/monitoring-puppet-with-nagios/
>

IMHO the nagios method of checking the state.yaml file is the best  
option to ensure puppet itself is working correctly.  To make sure  
your manifests are applied is a different issue.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Bacula Puppet Type

2009-08-25 Thread Larry Ludwig


Hi Shawn,

I would like to see that type.

-L


On Aug 25, 2009, at 11:08 AM, S H wrote:

> I'm putting the finishing touches on a set of native Bacula types  
> for Puppet and was wondering if anybody out there would be  
> interested in giving it a test run. It seems to be running more or  
> less correctly in my configuration, though I still have a few bugs  
> to clean up. Most likely it'll be ready for wider testing in another  
> week or so.
>
> Just drop me an email if you'd like to try the plugin once it's  
> finished.
>
> -Shawn
>
> >


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: passenger vs mongrel performance

2009-08-24 Thread Larry Ludwig

Hi All,

An update on this thread..

Based upon some real world testing, I've updated the Passenger wiki to  
give some performance and with memory consumption (one of the main  
reasons for switching to Passenger right?):

http://reductivelabs.com/trac/puppet/wiki/UsingPassenger

Let me know if you have any comments, suggestions.

--
Suggested Tweaks

Based upon my (Larry Ludwig) testing of passenger/puppetmasterd I  
recommend adjusting these options in your apache configuration.

PassengerPoolIdleTime - Set to 5 min or less. The shorting this option  
allows for puppetmasterd to get refreshed at some interval. This  
option is also somewhat dependent upon the amount of puppetd nodes  
connecting and at what interval.
PassengerMaxPoolSize - to 15% more instances than what's needed. This  
will allow idle puppetmasterd to get recycled. The net effect is less  
memory will be used, not more.
PassengerUseGlobalQueue on - Since communication with the puppetmaster  
from puppetd is a long process (more than 20 seconds in most cases)  
and will allow for processes to get recycled better
PassengerHighPerformance on - The features Passenger offers with this  
feature disabled are not needed with Puppet.
No different than with traditional web servers, once your service  
starts using swap performance degradation will occur. So be mindful of  
your memory/swap usage on your Puppetmaster.

To monitor the age of your puppetmasterd processes within Passenger, run

passenger-status
the output you should be concerned with is:

...
--- Domains ---
/etc/puppet/puppetmasterd:
   PID: 7355Sessions: 0Processed: 5747Uptime: 1h 3m 30s
   PID: 9950Sessions: 0Processed: 2941Uptime: 27m 27s
   PID: 7117Sessions: 0Processed: 7208Uptime: 1h 8m 33s
   PID: 7575Sessions: 0Processed: 6307Uptime: 57m 19s
   PID: 9653Sessions: 0Processed: 2525Uptime: 37m 31s
My personal preference is I like Passenger recycling puppetmasterd  
every few hours to ensure memory/garbage collection from Ruby is not a  
factor.

-L
--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: facter problems on el5 x86_64

2009-08-24 Thread Larry Ludwig


Hi Arnau,

I have not seen that error before and have many EL5 installs.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Conditional host file entries, Puppet's non-sequential tree

2009-08-22 Thread Larry Ludwig



On Aug 22, 2009, at 6:04 AM, Duncan Hill wrote:

>
> 2009/8/21 Duncan Hill :
>> 2009/8/20 Larry Ludwig :
>>>
>>>
>>> On Aug 19, 2009, at 11:03 AM, Duncan Hill wrote:
>>>
>>> why not define the variables per 'node'?  Why use inheritance at  
>>> all?
>>> Personally I'm not a fan of node inheritance and like putting all of
>>> the classes in another class which then is in included in each node.
>
>> node foo {
>>  $ip1 = 1.1.1.1
>>  $ip2 = 2.2.2.2
>>
>>  include host_definitions
>> }
>>
>> class host_definitions {
>>  host {
>>  'fred': { ip => $ip1, alias => [ a, b, c ] }
>>  }
>> }
>>
>> and more often than not I get an error that $ip1 isn't defined, and
>> puppet falls over in a heap.
>
> Well, now it works.  So I'll spend the weekend refactoring my setup to
> behave in this manner, and hopefully lots of problems will go away.
> Thanks Larry.

No problem.  You will find this methodology works well with external  
nodes.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Check to see if a class is included

2009-08-20 Thread Larry Ludwig


Every class you create is a tag.

So:

if tagged('myclass') {
   $myvar = "hello"
}

One caveat, is the class order can matter if the tag exists yet or not.

http://projects.reductivelabs.com/issues/2105

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Conditional host file entries, Puppet's non-sequential tree

2009-08-20 Thread Larry Ludwig

On Aug 19, 2009, at 11:03 AM, Duncan Hill wrote:

>
> Hello folks,
>
> Running 0.24.6, and I need a clue-by-4 with something I'm trying to  
> do.
>
> I have a single manifest file, used by 3 servers.  Depending on the
> server name, I need to allocate a different set of variables that get
> used to populate a host {} block.
>
> Since Puppet doesn't work in a top-down manner, this has a chance of
> working sometimes, but not all the time.
>
> A convoluted approach that just came to mind is to use inheritance
> tricks.  Namely:
>
> node application-server inherits generic-server {
> all common stuff other than hosts
> possibly the if logic to set the IPs
> }
> node specific-1 inherits application-server {
> host {}
> }
> node specific-2 inherits application-server {
> host {}
> }
>
> Are there any better solutions to this?  I'm making the assumption
> (that I'm about to test) that inheritance is top-down.

Hi Duncan,

why not define the variables per 'node'?  Why use inheritance at all?   
Personally I'm not a fan of node inheritance and like putting all of  
the classes in another class which then is in included in each node.

For your example, create a class and specify the 'host' type.

If these are required parameters, you can put in your 'class'  
something like this:

case $directadmin_cid {
   '': { fail("You need to define your directadmin cid! Please set  
\$directadmin_cid in your site.pp or node config") }
}

This will make sure that the node has the proper variables when you  
include the class.

Hope this helps...

-L

--
Larry Ludwig
Reductive Labs

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: migating from 0.24.8 to 0.25.0rc1

2009-08-20 Thread Larry Ludwig



On Aug 19, 2009, at 3:42 PM, Gustavo Soares wrote:

> Hi all!
>
> I have migrated some machines from puppet 0.24.8 to 0.25.0rc1,  
> mainly because of bug in 0.24.8 when using ssh_authorized_keys and I  
> am getting the following messages when starting the client:
>
> Setting the :cacrl to 'false' is deprecated; Puppet will just ignore  
> the crl if yours is missing
> Starting Puppet client version 0.25.0
> Cached certificate_revocation_list for ca failed: Cannot manage the  
> CRL when :cacrl is set to false
> Could not retrieve catalog from remote server: Could not intern from  
> s: Cannot manage the CRL when :cacrl is set to false
>

Hi Gus,

How is your Puppetmaster setup? Passenger?  Can you send your apache  
config?

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet server recommendations

2009-08-20 Thread Larry Ludwig

On Aug 19, 2009, at 10:06 AM, cnjohnson wrote:

>
> I have deployed puppet on our test cluster -- 20 identically
> configured x86_64 and ppc64 compute nodes and their gateways. I now
> want to move to our production cluster with (say) 800 compute nodes
> and their gateways. My question is about the puppet server box itself.
> I am using apache+ssl with passenger and ruby 1.8.6. It was easy to
> install and set up apache with passenger and to get puppet running
> maintaining various files and services across the test cluster. The
> puppet server is a dual-cpu x86 box with 1GB ram. It handles the test
> cluster without troubles.
>
> Any thoughts about what sort of puppet-box I need to manage a cluster
> of 800 boxes?
>

Hi Charles,

It depends upon a number of factors, mostly your Puppet manifests, if  
you are using storeconfig and how much file handling you are doing.   
If you are using store config, you may want to think about moving the  
mysql (or posgresql) onto another server and/or additional CPUs.

If the puppetmaster is x86_64 based, I would recommend 4+ GB based  
upon your node count and they way ruby scales on x86_64 arch.

You should at minimum be on 0.24.8 and ideally 0.25 once it's released.

Hope this helps..

-L

--
Larry Ludwig
Reductive Labs

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Mongrel Memory Usage

2009-08-13 Thread Larry Ludwig



On Aug 13, 2009, at 8:56 PM, Trevor Vaughan wrote:

>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Interesting, thanks for the information.
>
> My only concern with a 32 bit architecture, is that my memory usage  
> may
> legitimately grow above 2G which would toast the puppetmaster process
> pretty quickly.
>


The rub is Ruby itself is not optimized for 64 bit.  an int for  
example is double in size.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: "Could not find dependency Yumrepo"

2009-08-13 Thread Larry Ludwig



On Aug 13, 2009, at 5:13 PM, Douglas Garstang wrote:

>
> Actually, the more I read this, the more it seems to indicate to me
> that the problem is with the Yumrepo, NOT the Exec. It does say after
> all "Could not find dependency Yumrepo[base]" ---FOR---
> "Exec[yum-update]"...
>

Correct.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Mongrel Memory Usage

2009-08-13 Thread Larry Ludwig

On Aug 13, 2009, at 4:36 PM, Trevor Vaughan wrote:

>
> All,
>
> I'm trying to figure out the best way to estimate the amount of memory
> usage that will be taken up by Mongrel and I'm hoping that you have
> some estimates that can help me.
>
> I'm currently estimating the following:
>
> Memory Required = Number of running puppetmasters * size of manifests
> * number of clients managed
>
> The mongrel model doesn't seem to *ever* reclaim memory.
>
> Suggestions on reclaiming memory welcome though I'm sure most people
> will just urge me to move to Passenger.

Passenger is slowly becoming the 'official'  way to run puppetmaster,  
and is recommended by Reductive Labs.

As far as memory, there are many dependancies like 32-bit over 64-bit,  
the size, amount of files transfered through puppet, your manifests,  
variables, clients used, etc.  Some is also dependent upon the version  
ruby itself and it's optimizations.

Out of all of these variables what I CAN say are most important:
- files and the size of files transfered though Puppet
- 32 bit over 64 bit.

0.25 will definitely help with the memory consumption with file usage.

-L

--
Larry Ludwig
Reductive Labs

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: "Could not find dependency Yumrepo"

2009-08-13 Thread Larry Ludwig


On Aug 13, 2009, at 4:32 PM, Douglas Garstang wrote:

>
> Larry,
>
> Ok i see that. I didn't realise the repo's were managed inside puppet.
>
> So, now, and I saw someone else say this, how do we debug these
> dependancies? The error isn't particularly descriptive, and if it's
> failing because of (non mentioned) dependancy, how do we track it
> down?

The error:

warning: Configuration could not be instantiated: Could not find
dependency Yumrepo[base] for Exec[yum-update] at

Means it's cannot find that type in your puppet code for the Exec  
type.  Either:
- the type is not defined
- you don't have an 'include' to the puppet .pp file that has this  
type in it.

Regards..

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: "Could not find dependency Yumrepo"

2009-08-13 Thread Larry Ludwig


On Aug 13, 2009, at 4:06 PM, Douglas Garstang wrote:

>
> Larry,
>
> if you mean that puppet can't find the 'base' repo, it should be there
> and accessible. That's why I posted the contents of the repo file, and
> the output of 'yum repolist'. It also sounded like you were saying
> that the Yumrepo type wasn't found, which I don't understand, since
> it's a standard type.
>
> Actually, the docs at
> http://reductivelabs.com/trac/puppet/wiki/TypeReference#package say
> that the repo's that Yumrepo can see are determined by reposdir in
> /etc/yum.conf. Since our production environment doesn't have reposdir
> defined, but everything still works fine, I'm wondering if the docs
> are out of date. How does yumrepo determine if a repo is available or
> not?
>

The code in your puppet, not what's on the box.  Puppet code tells  
your server how it should be setup, not the other way around.

Yumrepo[base] means you should have Puppet code that looks like:

yumrepo {'base':
...
}

Regards...

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: "Could not find dependency Yumrepo"

2009-08-13 Thread Larry Ludwig

Going back to your original question, the error you are getting:

Means it cannot find Yumrepo["base"] in your type list.

maybe it was renamed, or not included.


-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: "Could not find dependency Yumrepo"

2009-08-13 Thread Larry Ludwig


Hi Douglas,

The bigger question, why are you using exec to update via yum??

There is a 'package' type that will do this for you.  exec shouldn't  
be used for what you are trying to do.\

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Hello,

2009-08-12 Thread Larry Ludwig


>
>
> Postings from new users are moderated - he had previously posted a
> legitimate Puppet query.  So he looked like a normal, valid user.

Oh man spammers are resorting to one legit email, and then one spam eh?

I wish they would resort to more compute and meatcloud time to better  
efforts like make Puppet Modules ;-)

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Hello,

2009-08-12 Thread Larry Ludwig



On Aug 12, 2009, at 6:32 PM, James Turnbull wrote:

> adamou s. nacer wrote:
>> Hello,
>> One of my friends bought an iphone from a website:  www.selmu.com
>> 
>
> Banned for spamming.

James, I thought new accounts had to approved no?

-L

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: random number in a file

2009-08-11 Thread Larry Ludwig


Here is one method to perform puppet runs via cron:

http://reductivelabs.com/trac/puppet/wiki/Recipes/cron

It also allows you to manually tweak the times each node runs.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: possible Puppet Memory Leak? - maybe not the right Subject ;-)

2009-08-11 Thread Larry Ludwig



On Aug 11, 2009, at 8:43 AM, X4T wrote:

>
> Hi Larry,
>
> is it possible to do something like this:
>
> file { 
>   
>   source => "http://server/filename";
> }
>

At the moment, no, but you can do it via exec type or create your own  
resource.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: possible Puppet Memory Leak? - maybe not the right Subject ;-)

2009-08-11 Thread Larry Ludwig



On Aug 11, 2009, at 8:26 AM, X4T wrote:

>
> Hello Together,
>
> i am trying to use puppet to transfer a file (10MB) through the puppet
> file service (puppet://server/files/filename) inside of a file
> directive. The problem is that when the puppet client starts to
> transfer
> the file, the puppetmasterd starts to reserve the whole memory of my
> system including the swap until it finally dies. My question is, is
> there any filesize restriction inside of the filetransfer mechanism of
> the puppetmasterd and why does the puppetmasterd behave like this?
>
> Best regards,
>
> Sebastian

Hi Sebastian,

With 0.24.8 your best bet is to move large files like this via other  
means (ie rysnc, ftp, nfs, etc) than directly though Puppet.  With  
0.25 using REST this issue of memory consumption will be much much less.


-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Upgrade path for 0.24.x -> 0.25 - Your comments are needed..

2009-08-10 Thread Larry Ludwig

Hi All,

We are getting close to release 0.25 (hopefully by end of month) and  
wanted some input on your transition from 0.24.x to 0.25.

For the people using 0.25, can you tell me the changes you needed to  
make in your config, puppet code or other dependancies.

We're reviewing bug tickets, and our own setup to make sure every item  
is covered in the wiki.

The ultimate goal to ensure smooth transition and no surprises for  
anyone who upgrades.

Any input on this would be most helpful.

Thanks.

-L

--
Larry Ludwig
Reductive Labs

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet cannot find custom functions

2009-08-05 Thread Larry Ludwig


>
>
> Can someone tell me what I'm doing wrong here?  According to the link
> referenced above, puppet should be picking up functions in these
> directories.  Even better, is there an accepted way I can tell
> puppetmasterd to look for functions in a particular place?

Hi I assumed your issue is related to this?

http://projects.reductivelabs.com/issues/2494

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: puppet recipes

2009-08-04 Thread Larry Ludwig



Why are you using exec type for user and group, when these types  
already exist?  I didn't read the complete thread so I donno if this  
was discussed.  The exec type should always be used as the last resort.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Planet Puppet is born!

2009-07-31 Thread Larry Ludwig


Thanks Brice! I

Did you add the Reductive Labs corporate feeds?

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: sequential change implementation

2009-07-28 Thread Larry Ludwig


On Jul 28, 2009, at 9:16 AM, mmalamud wrote:

>
> How do I prevent the following:
>
> I have several web servers behind the load balancer, how do I make
> sure that when something changes and web servers need to be restarted
> that they are not all restarted at the same time but rather one by
> one. Is there a way to configure sequential push of some kind?
>

schedule metatype option or splay might be random enough.


-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: File resource type: critical chmod security issue

2009-07-27 Thread Larry Ludwig


>
> Generally speaking they define a few basics:
>
> 1.  Who is accountable for security
> 2.  What to do if you find a security issue and where to report
> security issues
> 3.  How security patches are handled
> 4.  The project's disclosure policy
>
> Regards
>
> James Turnbull


This sounds like a page for the wiki no?  Any security issues ideally  
should be reported privately first (at least with white hats).

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: File resource type: critical chmod security issue

2009-07-27 Thread Larry Ludwig


Also see the bug ticket submitted:

http://projects.reductivelabs.com/issues/2451


On Jul 27, 2009, at 4:45 PM, Judd Maltin wrote:

>
> This code:
>
>
> file { '/tmp/default':
>ensure => directory,
>mode => '666'
> }
>
> produces:
>
> r...@blah# ls -la /tmp/default/
> total 16
> drwxrwxrwx  2 root root 4096 2009-07-27 16:21 .
>
> That is a major security issue.  I cannot recommend Puppet to my
> clients if I get different results on my filesystem than from my
> manifest.
>
> Is there a consistent culture or policy in the Puppet community to
> override explicit security configurations?  It must be explicitly
> avoided in an audit, if that's the case.  If there is no policy,
> perhaps we should define one?
>
> Thanks a lot!
> -judd
> >


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: passenger vs mongrel performance

2009-07-24 Thread Larry Ludwig


Ohad,

Now that we know that passenger is configured in Mark's case, try  
rubyEE and let us know the result.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Source Arrays and Template Arrays

2009-07-23 Thread Larry Ludwig

On Jul 23, 2009, at 1:58 PM, TomTom wrote:

> Is it possible to do the same thing with templates?
> An example of what I want to do is:
>
> file { "/etc/sysctl.conf":
> content => [
>   template("sysctl.conf.$hostname.erb"),
>   template("sysctl.conf.$tuningpolicy.erb"),
>   template("sysctl.conf.erb"),
>  ]
> }

Directly this feature is not available.

Here is an example I've used for exim that may suit your needs.

 content  => $directadmin_exim ? {
 'antispam' => template('directadmin/exim/ 
exim.antispam.conf.erb'),
 'local'=> template('directadmin/exim/ 
exim.local.conf.erb'),
 'custom'   => template("directadmin/exim/hosts/exim.$ 
{hostname}.conf.erb"),
 default=> template('directadmin/exim/ 
exim.default.conf.erb'),
 },

-L

--
Larry Ludwig
Reductive Labs

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Best Practices Rewrite - First Draft

2009-07-23 Thread Larry Ludwig


>
> good idea! Currently I have all site specific stuff in one big module,
> but like that I might be able to organize it again in modules per each
> site specific module adaptions. Question: Is autoloading looking in
> both module directories? so if it's not found in the module in one
> module directory it's still looking in the other one? I assume so, but
> as I haven't used it yet I better ask... ;)


modulepath option must be set in your puppet.conf file.

-L

--
Larry Ludwig






--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Best Practices Rewrite - First Draft

2009-07-23 Thread Larry Ludwig


Hi Paul,

Some comments about the doc.

"Use double-quotes around node names"  I would say using single quotes  
is better since the Puppet language does not try to parse it for  
variables.  I have not done any tests in Puppet of single over double  
quotes but have seen other interpreted languages recommend single  
quote first over double for performance reasons.

At least for me I tend to make Puppet modules very atomic.  Meaning  
many smaller modules/classes than one large monolithic module.  ie you  
want to manage ssh.  Perhaps break it up into a client and server  
class, but one module.

For multi-platform support I've found the best way to support it is  
via case statements at the high level

class openssh {
 case $operatingsystem {
 centos, redhat: { include openssh::redhat }
 debian, ubuntu: { include openssh::debian }
 default: { fail("${title} is not defined for operating system  
${operatingsystem}.") }
 }
}

Any common steps can be included in the class or broken out into a  
openssh::base class

In some cases you not only want to install the application, but they  
are situations to remove it (in my case had a need to ensure the  
package is removed for security)  I use the naming convention
cups::disable  -  To install but disable service (primarily for  
dependancy with other packages)
cups::remove  - To make sure the package and service are not running

Inheritance is great for creating a generic module and creating a site  
module for your specific needs (In my case we have a generic proftpd  
but then have a site specific for custom DirectAdmin (a hosting  
control panel) configurations )

Teyo's recommends two module folders, one dist and another site.  site  
folder containing modules specific to your install.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: multi-case selectors

2009-07-22 Thread Larry Ludwig



On Jul 21, 2009, at 1:00 PM, jc.listmail wrote:

>
> Hi-
>
> I've been using Puppet for a few months now and am trying to work my
> recipes into something a little more elegant and efficient.
>
> One of the things I am trying to do is better selection.  What I would
> really like to be able to do is sub-selection, but I can't figure out
> how it's done.  For example, if I am doing a primary selection for
> sources on $domain, but would like to treat a sub-category of that
> selection differently by $hostname or something, how would that look?
> In regular code, it would just be a nested if or something, but I'm
> not seeing an easy way to do it in Puppet...
>
> I'm thinking about it like this:
>
> if $domain == "something" {
>  if $hostname == "some_hostname"  {
>source => "some_source"
>  } else {
>source => "another_source"
>  }
> }
>
> Is there a "puppet" way to do this or am I thinking about this in the
> wrong way?
>

Puppet supports ANDs and ORs if you wish to do it instead of nesting.

http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial#if-else

CASE statements are another method.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Performance of Passenger vs. Mongrel

2009-07-22 Thread Larry Ludwig


An update on this thread working with Mark at USG:

The example Apache config file with Puppet is not correct.  I have  
submitted a patch so the example configuration file is correct.

http://projects.reductivelabs.com/issues/2430

In communication with USG, once the options were properly set, the  
load is now much lower and similar with Mongrel but the Puppet compile  
times are much lower.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Info - crash on RHEL4 w/o swap space

2009-07-19 Thread Larry Ludwig


how much memory is on this instance?

Swap should ALWAYS be available, general recommendation is 2x actual  
memory.  Once you run out of real memory, you can have a dead machine.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet User Group July 29th NYC 7p

2009-07-15 Thread Larry Ludwig


On Jul 15, 2009, at 5:48 PM, Teyo Tyree wrote:

>
> I will definitely be there.  Going to be in town providing Puppet  
> training to the masses.
>

Don't you mean spreading the gospel? :-)

-L


> Cheers,
> Teyo
>
> -- 
> Teyo Tyree :: www.reductivelabs.com
>
> >


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Puppet User Group July 29th NYC 7p

2009-07-15 Thread Larry Ludwig


Hi All

We are scheduling a NYC Puppet User Group on July 29th in NYC at 7pm.
Location to be determined.  If anyone is interested in donating space
please let me know.  We may have some formal discussions and open to
any topics you want discussed.

If attending, reply to this thread.

-L
Larry Ludwig

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Puppet meet Uup July 29th NYC 7p

2009-07-15 Thread Larry Ludwig


Hi All

We are scheduling a NYC Puppet Meet Up.

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet Camp

2009-04-19 Thread Larry Ludwig


On Apr 19, 2009, at 11:26 PM, Jon Stanley wrote:

>
> On Sun, Apr 19, 2009 at 4:34 PM, Paul Nasrat  
>  wrote:
>> It's probably easier for non-us attendees to get direct flight to the
>> Bay Area (or the east coast - Boston/NY) than to either Portland or
>> Salt Lake City. A city where driving is non-essential would be a plus
>> for me.
>
> Hmmm, NYC would be preferable for me (I'm really selfish and don't
> want to travel) :)

Of course for me too, but think SF/SJ is the best bang for your buck.


-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: How To: Puppet Setup on Redhat 8 using the puppet gem.

2009-04-14 Thread Larry Ludwig


RH 8!!! I didn't think anyone was still using it ;-)

Thanks for info. Unfortunately there are more people using old  
versions RH than you think.

-L

On Apr 14, 2009, at 8:29 PM, Brandon Evans wrote:

>
> I got puppet installed and running on Redhat 8 today.  I'm passing  
> on my
> notes to the list to help out others that may want or need puppet
> running on older Redhat servers.
>
> This is pretty much a copy & paste from my own personal wiki so please
> forgive any odd formating.
>
>  Puppet Setup on Redhat 8 
> Here's a quick-n-dirty on how I got puppet running on redhat 8.   
> Please
> don't ask me why I needed it running on redhat 8.  I will burst into  
> tears.
>
>
> My object here was to get my redhat 8 servers managed by puppet
> alongside the rest of my CentOS servers.
> I decided to keep puppet separate from the rest of the system.  This  
> way
> I don't upset the systems chi.
> I should point out that I know little about the world of ruby & its
> supposed "gems".
> In the End this setup works & that is what is all that matters to me.
>
> === Basic Overview ===
>   * Installing to /opt/puppet using the puppet gem package.
>
>   * Download the latest openssl source from
> http://www.openssl.org/source.  I used openssl-0.9.8k.tar.gz
>
> * extract openssl and install using
>
> # ./config --prefix=/opt/puppet && make && make install
>
>   * Download and extract Ruby 1.8.x from
> ftp://ftp.ruby-lang.org/pub/ruby/1.8.  I used ruby-1.8.7-p72.tar.gz
>
> * Change to the ruby-1.8.7-p72 directory and move the ext/openssl
> directory out of the way.
>
># cd ruby-1.8.7-p72
># mv ext/openssl /tmp
>
>   * With the openssl extension out of the way you can now install
> puppet like so
># ./configure --prefix=/opt/puppet && make && make install
>
>   * Now that ruby is installed move the openssl directory back into
> ./ext then compile the openssl module separately.  This is important
> because we will be building the openssl ruby module using our openssl
> install located in /opt/puppet
>
>   # pwd
>   # /usr/local/src/puppet_setup/ruby-1.8.7-p72
>   # mv /tmp/openssl ./ext
>   # cd ./ext/openssl
>   # ../../ruby extconf.rb --with-openssl-include=/opt/puppet/include
> --with-openssl-lib=/opt/puppet/lib
>   # LD_RUN_PATH=/opt/puppet/lib make
>   # make install
>
>
>   * Next we will install rubygems from
> http://rubyforge.org/frs/?group_id=126.  Here I used version
> rubygems-1.3.1.tgz
>
> * This is an easy install.  Extract the rubygems tar then install
> it using the newly installed version of ruby.
>
>   # cd rubygems-1.3.1
>   # /opt/puppet/bin/ruby setup.rb
>
>   * Almost done.  Now download the latest stable puppet gem from
> http://reductivelabs.com/trac/puppet/wiki/DownloadingPuppet.  I  
> ended up
> installing puppet-0.24.8.gem
>
>   # /opt/puppet/bin/gem install puppet-0.24.8.gem
>
>   * That's it!  Puppet should now be located in
> /opt/puppet/lib/ruby/gems/1.8/bin.  I ended up creating a puppet  
> module
> that links the different binaries from the gems directory to /usr/ 
> bin &
> /usr/sbin then adds an init script to /etc/init.d
>
>   * When you run puppetd for the first time it should create
> /etc/puppet and /var/lib/puppet.
>
>
> Hope this helps!
>
> -Brandon Evans
>
>
>
>
>
>
> >


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Support Expectations (was: Licensing and Copyright)

2009-04-09 Thread Larry Ludwig


>   I also think consultancy at good rates would be a no-brainer -  
> Most companies don't have the time, resource, or expertise to learn/ 
> implement a new tool.

What's considered good rates?

-L

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet and pushing changes

2009-04-08 Thread Larry Ludwig


On Apr 7, 2009, at 11:15 PM, Ohad Levy wrote:

>
>
> On Tue, Apr 7, 2009 at 8:32 PM, Larry Ludwig  
>  wrote:
>
>
> What xinetd version?
> I wrote a simple daemon which uses puppet certificates and  
> namespaceauth to allow puppetrun on cron based hosts.
>

Hi Ohad,

Can you post this somewhere?  This is something I was looking for and/ 
or was going to develop.

-L


> cheers,
> Ohad
>
>
> >


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Puppet and pushing changes

2009-04-07 Thread Larry Ludwig


>
>
> Why Puppet cant have a push directive as well? obviously we already  
> have the infrastructure to connect from the server to the clients  
> (e.g. puppetrun, or my xinetd version), we already have all of the  
> puppet types, so it should be easy to execute on a client (possible  
> today with ralsh or puppet directly) things like:

What xinetd version?

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Licensing and Copyright

2009-04-06 Thread Larry Ludwig


>>
>> Related to this, I can tell you from personal experience in  
>> commercial
>> software: support costs can be an enormously drain. The most  
>> effective
>> way to keep them down is with relentless quality improvement: kill
>> bugs,
>> make features more comprehensible, document, make failure modes
>> gentle,
>> make errors clear, etc.
>


(said somewhat tongue and cheek)
Hey, isn't that the purpose of commercial software?
You need support because while it works in some way, yet does not  
completely work and must pay for support to get it working? :-)   
Support most certainly can be a profit center.

In a serious note, for an OSS project I would say Puppet has a pretty  
good development/testing process.  Hell I've known commercial products  
that went through less testing.  Can Puppet's development process be  
improved? Definately yes and is something that will be constantly  
revisited.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: EAL4+ general hardening settings with Puppet

2009-04-06 Thread Larry Ludwig



On Apr 6, 2009, at 3:08 PM, Stephen John Smoogen wrote:

>
>> - The hardening module I would break out each of these services into
>> separate modules, so it's more generic.  The hardening class itself I
>> would consider a 'role' that would then include all of these modules
>> (I have roles exist in the manifest folder and called by site.pp)
>> - your logindefs class I would consider part of a shadow module that
>> then has your specific security policy
>> - your modules are very centos/RH specific any plans on making them
>> apply to other OSes?
>> - If you are removing packages I would suggest by default installing
>> the package and then creating an ::absent class to remove or
>> a ::disable to stop the service but have the module installed.  This
>> also then allows for keeping the package current via that module.
>
> Ah so thats the best practice for that.
>>

Keep in mind these are not hardline rules but things I've seen work  
for  others.  Also from the module collection I'm creating it seems to  
work very well.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: /etc/init.d/puppet on debian

2009-04-06 Thread Larry Ludwig


Hi all can you also look into this bug and see if it applies to debian/ 
ubuntu.

http://projects.reductivelabs.com/issues/2137

and if so make adjustments according.

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: EAL4+ general hardening settings with Puppet

2009-04-06 Thread Larry Ludwig


Hi Alessandro, great start!

I personally would make these changes to your modules.
- The hardening module I would break out each of these services into  
separate modules, so it's more generic.  The hardening class itself I  
would consider a 'role' that would then include all of these modules  
(I have roles exist in the manifest folder and called by site.pp)
- your logindefs class I would consider part of a shadow module that  
then has your specific security policy
- your modules are very centos/RH specific any plans on making them  
apply to other OSes?
- If you are removing packages I would suggest by default installing  
the package and then creating an ::absent class to remove or  
a ::disable to stop the service but have the module installed.  This  
also then allows for keeping the package current via that module.

I'm not really familiar with EAL4+ CAPP can you tell me more about  
this?  How is something certified EAL4+ CAPP, and can something be  
certified?

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: A simple function to load external class attributes

2009-03-31 Thread Larry Ludwig



On Mar 31, 2009, at 12:26 PM, Luke Kanies wrote:
> I think you've convinced that a given module should search all of the
> module path directories, rather than just the first found directory.
> This would allow you to have your site module dir in front of the dist
> module dir and override templates or files just by putting them in the
> earlier path.

Explain how this would work in detail?  This does not work currently  
in Puppet does it?

-L

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: A simple function to load external class attributes

2009-03-31 Thread Larry Ludwig



> Then this 'load_data' call is equivalent to this Puppet code:
>
> class apache {
>   $host = "myhost.com"
>   $port = 80
> }

Interesting..

Three questions about this:
1. Could these variables be overridden by a node variable?  I assume no.
2. What happens if the data file is missing?
3. Could their be optional and mandatory variables?

This solves variables but does not solve the other issue I mention  
about files or templates that are custom per site install.
>
> I'm beginning to think that this, or a function a lot like this,
> should be included directly into Puppet, and data should get loaded
> automatically, rather than requiring the call to the 'load_data'
> function.

hmm is there cases were you wouldn't want the data to load?

-L

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: [Puppet-dev] ANNOUNCE: Puppet 0.24.8 now available!

2009-03-30 Thread Larry Ludwig


Thanks Todd,

Anyone have an updated facter RPM also?

-L

--
Larry Ludwig
Reductive Labs


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: compressing client/server communications

2009-03-25 Thread Larry Ludwig


Hmm interesting idea.

While the puppetmaster will work without issue, the issue becomes the  
client (puppetd) must decode it.

I suspect a code change.

-L


On Mar 25, 2009, at 8:56 PM, Ben wrote:

>
> I use, and depend on, puppet extensively and a good portion of the
> servers (nodes) are remote, across a WAN.
>
> I just started a WAN Optimization trial with some Juniper gear, one of
> the components of WAN optimization is compression and the puppet
> client/server communication is compressing pretty well.  According to
> the Juniper reporting the puppet data is being compressed between  
> 25-50%.
>
>
> Is puppet using compression between client and server?
>
> If it is not, has it been considered?  Considering most of the data
> exchanged between client and server would be text in the form of
> manifests and config files i think it could achieve good compression
> with low overhead.
>
> I have nginx in front of my puppetmasters, if i enable gzip  
> compression
> there will the puppet client still work?
>
> Any thoughts?
>
>


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: module dependencies

2009-03-12 Thread Larry Ludwig


On Mar 12, 2009, at 10:14 AM, Keith Edmunds wrote:

>
> On Thu, 12 Mar 2009 14:37:40 +0100, bell...@nsc.liu.se said:
>
>> No.  You need to let individual resources within that class or module
>> depend on the other class.
>
> Thanks Thomas, I suspected as much.
>
> Would it be appropriate to create a wishlist item that a module  
> depends on
> another (module|class)?

A bug/feature request.

-L
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: module dependencies

2009-03-10 Thread Larry Ludwig


Is this what you are looking for?

class foo {
...
}

class bar {
   package { "test":
   require => Class["foo"],
   }
}


On Mar 10, 2009, at 8:25 AM, Keith Edmunds wrote:

>
> Is it possible to make a module a dependency?
>

--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: puppet and LDAP users (SOLVED)

2009-03-03 Thread Larry Ludwig



On Mar 3, 2009, at 12:09 PM, Luke Kanies wrote:

>
> On Mar 1, 2009, at 9:27 PM, Larry Ludwig wrote:
>
>>
>>
>> On Mar 1, 2009, at 9:04 PM, Trevor Hemsley wrote:
>>
>>>
>>> [puppetd]
>>> ldapserver=ldap.myorg.company.com
>>> ldapbase=dc=myorg,dc=org
>>> ldapuser=cn=admin,dc=myorg,dc=org
>>> ldappassword=mysecret
>>>
>>
>>
>> In my case it's in [puppetmasterd] but glad it works for you.
>
>
> Heh, both of you should probably put it in main. :)
>
> You need to either put it in main, the section named after the
> environment, or the section named after the executable, and (here's
> the key) you want it in the most general block possible.
>
> If there's no harm in putting it in main, you should *always* do so.
>
> Otherwise, only the named executable will have access to those  
> settings.
>

What other app in puppet uses LDAP?

-L


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

[Puppet Users] Re: Connection timeout calling fileserver.describe: socket read timeout

2009-03-02 Thread Larry Ludwig


using storedconfig?

-L

On Mar 2, 2009, at 10:02 AM, Arnau Bria wrote:

>
> On Mon, 2 Mar 2009 09:51:34 -0500
> Larry Ludwig wrote:
>
>
>> 150, and yes. The obvious question is I assume you are not thrashing
>> to swap and other issues related to the server config itself. Based
>> upon how big puppetmasterd can grow with 20+ puppetmasterd you would
>> need a lot of memory.
>
> My puppet server has 4GB of memory, and I don't see it swapping... but
> every 30 minutes, when clients connect, the load is about 10-15 and  
> cpu
> gets 100%, but no swap used.
>
>> We are doing much more than that.
>>
>> What version of puppet?
> # rpm -qa|grep puppet
> puppet-0.24.7-4.el5
> puppet-server-0.24.7-4.el5
>
>> -L
> Arnau
>
> >


--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to 
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/puppet-users?hl=en
-~--~~~~--~~--~--~---

1 2 >

1 - 100 of 147 matches

Mail list logo