On Apr 14, 11:35 am, Dick Davies wrote:
> I'm getting a lot of 'connection reset' errors all of a sudden on our
> 0.24.8 puppetmaster.
> I'm assuming that's a load issue?
Probably, I had the same problem recently and solved it by serializing
puppetd runs. It works by restarting my puppetd process
Hi,
You can generate the generate the puppetmaster certificate using the certname
and/or certdnsnames options and assign that name to the VIP in a heartbeat
cluster. Once the certificate is generated on one server, copy it to the other.
Cheers,
Atha
On Apr 14, 2010, at 17:01 , SyRenity wrote:
If I understand the docs correctly, the 'require' inside this define
should be satisfied before 'User' is evaluated. Except that's not
what's happening; instead, 'User' is being evaluated first and then
the require is being satisfied.
Am I missing/misunderstanding something about how this should
Hi.
I actually considered this, but DRBD seems heavy for read-only
information, which puppet manifests are.
Maybe just using heartbeat both for DNS and Puppet, but as I'm
defining both DNS servers on Puppet clients anyhow, it seems
redundant.
Are there considerations against this approach?
Rega
On 4/14/10 3:51 AM, Ken wrote:
@file { $myarray:
ensure => directory,
tag => "myfiles"
...
}
File<| tag == "myfiles" |>
Or I think this will work also, probably close to your first
requirement:
@file { $myarray:
ensure => directory,
}
realize(File[$myarray])
Hello
On Apr 14, 2010, at 8:44 AM, Jeff McCune wrote:
> On Wednesday, April 14, 2010, Dick Davies wrote:
>> I'm getting a lot of 'connection reset' errors all of a sudden on our
>> 0.24.8 puppetmaster.
>> I'm assuming that's a load issue?
>>
>> Number of nodes has been stable for a month or so, but a
+1 on the passenger ... we wouldn't survive without it. We are running
0.25.4 as well.
In regards to the nodes hitting the puppetmaster at the same time - I
presume you've looked at the 'splay' option?
There is a gotcha at the moment however:
http://projects.puppetlabs.com/issues/3321
Vote if y
Such good news you had to say it twice eh?
Congrats Jeff.
On Apr 14, 5:09 pm, Luke Kanies wrote:
> Hi all,
>
> I'm pleased to announce that Jeff McCune will be joining Puppet Labs
> and moving to Portland, OR in May.
>
> Jeff has been a critical part of Puppet's great support for OS X,
> hav
Sounds like an ideal candidate for using DRBD and heartbeat to run
active/standby puppet masters.
On 14/04/2010 15:34, Michael DeHaan wrote:
> It would do for active/passive though.How about setting up an
> alias for ca that moved when the ca wasn't accessible (using
> --certname), and load ba
Hi all,
I'm pleased to announce that Jeff McCune will be joining Puppet Labs
and moving to Portland, OR in May.
Jeff has been a critical part of Puppet's great support for OS X,
having developed much of the initial functionality. He was also the
main driver in a lot of the configuration
Hi all,
I'm pleased to announce that Jeff McCune will be joining Puppet Labs
and moving to Portland, OR in May.
Jeff has been a critical part of Puppet's great support for OS X,
having developed much of the initial functionality. He was also the
main driver in a lot of the configuration
On Wednesday, April 14, 2010, Dick Davies wrote:
> I'm getting a lot of 'connection reset' errors all of a sudden on our
> 0.24.8 puppetmaster.
> I'm assuming that's a load issue?
>
> Number of nodes has been stable for a month or so, but a lot of them
> were rebooted at the same time
> yesterday
I was thinking of bumping to 0.25.3 (latest EPEL, puppetmaster then
nodes), and then switching over
to Passenger. Is that a sensible approach? Thanks!
yes, but I would go for 0.25.4 (You'll find EPEL rpms for them) or
wait a little and get 0.25.5. both versions contain numerous fixes and
0.2
I'm getting a lot of 'connection reset' errors all of a sudden on our
0.24.8 puppetmaster.
I'm assuming that's a load issue?
Number of nodes has been stable for a month or so, but a lot of them
were rebooted at the same time
yesterday so they rain down requests on the poor (untuned, webrick
based)
Thank You. I'm just getting started with puppet and this will be a
great help.
Ed
On Apr 13, 4:57 pm, Peter Meier wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 04/13/2010 10:08 PM, ed-rfmd wrote:
>
> > Is there a way to control the order of the mounts?
> > We have a few second
Can you describe how to set this up?
On Wed, Mar 31, 2010 at 11:23 AM, Ohad Levy wrote:
> LOhit,
>
> The main two things to take into account are:
>
>1. keep your manifests elsewhere, IMHO puppetmasters always gets RO
>copy of your puppet data (e.g. from a VCS).
>2. Solve the SSL he
I have two servers in every site that are dedicated for infrastructure
servers, but they run in active/passive state with a VIP IP that floats
between the two of them. That IP is used for DNS, Cobbler, Puppet, ftp,
http, etc etc. What I would like is to have SSL certs work between the two
nodes b
On Wed, Apr 14, 2010 at 4:06 PM, Frederik Wagner wrote:
> Hi Jeff,
>
> thanks for your ideas!
>
> On Wed, Apr 14, 2010 at 3:12 PM, Jeff McCune wrote:
>> On Wed, Apr 14, 2010 at 8:33 AM, Frederik Wagner
>> wrote:
>>>
>>> So far so good. Now my problem emerges, when a module depends on an
>>> ot
HAProxy requires one additional server in midst, while I prefer to not
have such dependency.
On Apr 14, 5:57 am, Scott Smith wrote:
> On 4/13/10 3:26 PM, SyRenity wrote:
>
> > Hi.
>
> > I asked this question in past on this list, and now working to set it
> > running.
>
> > My idea is to have 2 P
Alpar Torok
2010/4/14 James Turnbull :
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 14/04/10 9:26 PM, Alpár Török wrote:
>> 2010/4/14 James Turnbull :
>> Alpar wrote:
> Hi,
>
> I found the zypper provider mentioned on this list in another thread,
> but it failes with
Thanks, will give it a look.
On Apr 14, 11:23 am, David Schmitt wrote:
> On 4/14/2010 12:09 AM, SyRenity wrote:
>
> > Hi.
>
> > Are there any DNS recipes for puppet?
>
> > Thanks.
>
> I've got a bind/zones module at
>
> http://git.black.co.at/?p=module-bind
>
> It's a bit resource-intensive, a
DNS server, preferable named, or any other lightweight one.
On Apr 14, 2:26 am, Patrick wrote:
> On Apr 13, 2010, at 3:09 PM, SyRenity wrote:
>
> > Hi.
>
> > Are there any DNS recipes for puppet?
>
> > Thanks.
>
> DNS server or client? If server, what server?
--
You received this message becau
It would do for active/passive though.How about setting up an
alias for ca that moved when the ca wasn't accessible (using
--certname), and load balance the puppet serving parts since there's
no race issues there.
--Michael
On Wed, Apr 14, 2010 at 10:06 AM, David Schmitt wrote:
> On 4/14/2
Hi
notice: Starting Puppet client version 0.22.4
can you try with a more recent version? the current supported versions
are imho 0.24.x and 0.25.y (where x or y is the latest version of that
branch).
cheers pete
--
You received this message because you are subscribed to the Google Group
The environments that I am dealing with are very stripped down and self
contained (no NFS or shared storage to attach to). I have considered using
rsnapshot to keep the certificates in sync. I am going to look for the
email that Ohad mentions from lohit on how to deal with certificates.
-Chris
2010/4/14 Michael DeHaan
> On Wed, Apr 14, 2010 at 6:37 AM, jerome moliere
> wrote:
> > Hi,
> > excuse me if this question is a stupid one
> > I'm about convincing my customers to use Puppet before this, I 'd like
> > to make a POC with part from the current complexity ...
> > Like any compa
On 4/14/2010 3:42 PM, Michael DeHaan wrote:
On Tue, Apr 13, 2010 at 7:39 PM, Christopher Johnston
wrote:
How to deal with ssl certs, I have a similar situation where I have two
puppetmasters per site and I would like to see them both handle serving
puppet data at anytime from a VIP (primary/f
Hi Mark,
what you are doing is basically possibl. You just need to get the Syntax
right. I've added the necessary changes inline below.
If you follow this pattern, you'll also note that this maps directly to
the possibilities of an external node script should you need one in the
future.
Hi Jeff,
thanks for your ideas!
On Wed, Apr 14, 2010 at 3:12 PM, Jeff McCune wrote:
> On Wed, Apr 14, 2010 at 8:33 AM, Frederik Wagner
> wrote:
>>
>> So far so good. Now my problem emerges, when a module depends on an
>> other module. This should be version independent (and even better
>> ind
On Wed, Apr 14, 2010 at 6:37 AM, jerome moliere
wrote:
> Hi,
> excuse me if this question is a stupid one
> I'm about convincing my customers to use Puppet before this, I 'd like
> to make a POC with part from the current complexity ...
> Like any company (I guess) , we have different envrionm
I'm not sure about tagging nodes versus tagging resources like a
class. That all being said, I don't think the right modelling here
is to use tags to determine behavior.
Rather I'd have something like:
class autofs
class autofs::server inherits autofs
class autofs::laptop inherits autofs
and t
Hi,
I'm just starting to use puppet and I've encountered the error below.
I've looked in the puppet FAQ and googled around a bit but can't work
out what's going wrong here:
notice: Starting Puppet client version 0.22.4
info: Facts have changed; recompiling
info: Caching configuration at /var/lib/
On Tue, Apr 13, 2010 at 7:39 PM, Christopher Johnston
wrote:
> How to deal with ssl certs, I have a similar situation where I have two
> puppetmasters per site and I would like to see them both handle serving
> puppet data at anytime from a VIP (primary/failover) type of operation.
>
How about s
Thanks Ken,
I'll give it a shot.
Regards,
-Roy
On 4/14/10 3:51 AM, Ken wrote:
@file { $myarray:
ensure => directory,
tag => "myfiles"
...
}
File<| tag == "myfiles" |>
Or I think this will work also, probably close to your first
requirement:
@file { $myarray:
ensure =>
On Wed, Apr 14, 2010 at 8:33 AM, Frederik Wagner wrote:
>
> So far so good. Now my problem emerges, when a module depends on an
> other module. This should be version independent (and even better
> independent of the module name). For example:
> I have a generic nas-::virtual module, which provid
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 14/04/10 9:26 PM, Alpár Török wrote:
> 2010/4/14 James Turnbull :
> Alpar wrote:
Hi,
I found the zypper provider mentioned on this list in another thread,
but it failes with the flowing error :
Package[kvm]/ensure: cha
Hello
I am trying to use tags to differentiate between machines that are
servers and machines that are clients. I am using the tag statement
within the node definition as shown below -
node shadow inherits default
{
tag("server")
}
The default node is defined as follows -
node defa
Hello .*,
sorry this is a bit lengthy:
I'm in the progress of setting up a puppet system for our Linux
cluster (SLES) and have a 'small' design question, since I'm not able
to realize my ideas with capabilities of puppet as I have them in
mind. At least up to now.
The general setup looks like th
I just logged a bug http://projects.puppetlabs.com/issues/3556 which
details an issue, where doing:
User["sysadmin", "pleb"] { groups +> "wwwadm" }
unexpectedly gives user pleb ALL of sysadmin's groups... It created
a bit of a security issue for me here, as a bunch of plebs were
suddenly grante
[..]
>>
>
> I tried multiple versions that i could get my hand on. I just tested
> with that one, but i get the same error. Does it have some kind of
> external dependency? I am running a SuSE Studio JeOS.
PS: I realizes that Suse has a ruby-zypp package, but it seems to
makes no difference.
--
2010/4/14 James Turnbull :
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Alpar wrote:
>> Hi,
>>
>> I found the zypper provider mentioned on this list in another thread,
>> but it failes with the flowing error :
>>
>> Package[kvm]/ensure: change from 0.11.0-4.5.2 to true failed: Could
>> not
Hello,
# puppetmasterd --version
0.25.4
Thanks !
On Tue, Apr 13, 2010 at 6:53 PM, Atha Kouroussis wrote:
> Hi,
> Quick question: what puppet version are you running? IIRC, one of the early
> 0.25 versions had an issue with the cron type. Its been resolved in 0.25.4.
>
> Cheers,
> Atha
>
> On A
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alpar wrote:
> Hi,
>
> I found the zypper provider mentioned on this list in another thread,
> but it failes with the flowing error :
>
> Package[kvm]/ensure: change from 0.11.0-4.5.2 to true failed: Could
> not update: undefined method `zypper' for
Hi,
excuse me if this question is a stupid one
I'm about convincing my customers to use Puppet before this, I 'd like
to make a POC with part from the current complexity ...
Like any company (I guess) , we have different envrionments:
- development
- staging
- production...
Applications are dep
Hi,
I found the zypper provider mentioned on this list in another thread,
but it failes with the flowing error :
Package[kvm]/ensure: change from 0.11.0-4.5.2 to true failed: Could
not update: undefined method `zypper' for
# at
Is the latest provider broken? Is there interest in making this work
> @file { $myarray:
> ensure => directory,
> tag => "myfiles"
> ...
>
> }
>
> File <| tag == "myfiles" |>
Or I think this will work also, probably close to your first
requirement:
@file { $myarray:
ensure => directory,
}
realize(File[$myarray])
--
You received this message because you
On Tue, Apr 13, 2010 at 07:57:25PM -0700, Scott Smith wrote:
> On 4/13/10 3:26 PM, SyRenity wrote:
>> Hi.
>>
>> I asked this question in past on this list, and now working to set it
>> running.
>>
>> My idea is to have 2 Puppet servers, who are also the DNS servers.
>> Each one would have itself as
On 4/14/2010 12:09 AM, SyRenity wrote:
Hi.
Are there any DNS recipes for puppet?
Thanks.
I've got a bind/zones module at
http://git.black.co.at/?p=module-bind
It's a bit resource-intensive, and I really need to refresh it a bit
soon. But, it is working.
Best Regards, David
--
dasz.at
Not sure if this works - using the expression: var == array doesn't
really make sense when you think about it as its trying to directly
compare a string with an array (which should fail). If there was an
'in' expression it would make more sense.
Of course this is academic. Because you could just t
49 matches
Mail list logo
