Hi,
I'm using Amazon EC2 and I'm planning to use puppet to deploy automatically
my instances, however, I have an issue I can't rely think through.
As most people advised, I used a DNS server (bind to be precise) so that my
instances can register to it but also ask this DNS Server the IP of the
Take a look at augeas:
http://docs.puppetlabs.com/references/latest/type.html#augeas
It can match based on various information and append/change/delete
lines from the configuration file.
On Tue, Feb 22, 2011 at 11:05 PM, Ken Barber k...@bob.sh wrote:
You can use a file resource to copy a diff
On 22/02/11 16:51, David Kavanagh wrote:
I thought about DHCP for static addresses. I'd need the MAC for each
machine though
This is why we have a small pool fully dynamic IP addresses for our
build system that doesn't require any MAC registration. The subnet is
only able to talk to the PXE
On Wed, Feb 23, 2011 at 11:17 AM, Jonathan Gazeley
jonathan.gaze...@bristol.ac.uk wrote:
On 22/02/11 16:51, David Kavanagh wrote:
I thought about DHCP for static addresses. I'd need the MAC for each
machine though
This is why we have a small pool fully dynamic IP addresses for our build
Hello,
I would like to ask your advice for the simplest method to do deployment on a
debian server. From my perspective the system should look something like this :
# web server node
node prod.domain.com inherits webserver {
webapp::project{app1:
domain = app1.com,
package =
On Feb 22, 7:55 pm, Kent kentmshu...@gmail.com wrote:
I don't want to use a File resource or templates, as we do for most
everything else. I considered augeas and have played around with it a
bit, but in so many cases it is clumsy and a little dangerous, i.e.
items in config files are often
This is the approach I've taken in the past - and I've used a 'static
address' aka elastic IP as you have been trying to do and it has
worked. I guess this isn't the best forum for problems with the
Elastic IP service ... but it _should_ work and has worked for me.
At the risk of being off topic
My biggest problem is how to control version numbers with a web interface.
What i mean is instead of version = 'x.y.z' to take some how the version
number from an external data source(database).
You can either use External Nodes:
http://docs.puppetlabs.com/guides/external_nodes.html
Hi,
Thanks for you reply - actually I simply didn't know about DNS 53, which
perfectly matches my need. So I just subscribe.
@Ken: Yes, static ip + bind should work, it's probably due to an ACL badly
setted on my side - but you are right, this is ml is not about bind, so
On 23 February 2011
Steve Shipway wrote :
1. The syslod has changed to rsyslog [...]
2. The snmpd has changed the location of its var file [...]
3. The use of UDEV for all devices [...]
Has anyone else spotted any other changes requiring alteration to the Puppet
manifests and modules?
There are probably
Hi Bill,
Interesting, i'll give searching for a hidden .puppet a try ...
thanks
On Feb 23, 6:44 am, Bill Proud billpr...@yahoo.com wrote:
I also had an intermittent error like this. If I looked in the
puppetmaster http log I saw that there were SSL errors on some runs
but not on all.
In
On Feb 22, 1:55 pm, Kent kentmshu...@gmail.com wrote:
Currently in such cases, we use diff-style patches and use the 'patch'
command in our RPMs to apply custom changes to Red Hat's baseline
file. This is flexible and fairly safe. However we've been
transitioning from using custom RPMs in a
Hi,
while I can see the practical use, it seems to me that such approaches
contradict the general puppet paradigm of specifying what things should
be by specifying how to do things.
As such, I'm not sure such functionality is in fact prudent (both patch
support and exec/stdin support).
Regards,
You have two options that I would advocate.
1) Have your clients register with your bind server, and have it
propagate to a solid DNS distribution layer like dnsmadeeasy. (Which
has truly static and well known DNS server addresses, with reasonable
uptime history. There are a few players in this
You have to edit the environment's site.pp to point to the new extdata
folder.
On 02/22/2011 05:57 PM, Douglas Garstang wrote:
I just incorporated environments into my puppet...
On the server...
[main]
...
[pax]
manifest = /etc/puppet/env/pax_prod/manifests/site.pp
modulepath =
+1 for Cobbler.
At my site, we don't kickstart on the production network, in order to
avoid the case where a not-fully-secured machine is exposed to network
attacks. My kickstart network is all in one room, and so is easier to
secure, logically and physically. On such a network, automatic
Has anyone else spotted any other changes requiring alteration to
the
Puppet
manifests and modules?
If you have anything that changes the inittab, it may not work: they
switched to Upstart for RHEL6.
--
You received this message because you are subscribed to the Google Groups
Puppet Users
Jared,
Are you suggesting separate physical subnet, or simply a logical subnet on
the same physical network (using netmask)?
David
On Wed, Feb 23, 2011 at 10:37 AM, Jennings, Jared L CTR USAF AFMC 46 SK/CCI
jared.jennings@eglin.af.mil wrote:
+1 for Cobbler.
At my site, we don't kickstart
Thanks for the helpful replies, everyone.
I think I'm going to keep it easy as I can for now and go with the
File/Exec wrapped in a define. Good idea to have the exec refreshonly
and subscribe to the patch file...
It is not clear to me whether it's RPMs you want to move away from, or
just
I actually made a type and provider for managing Route 53 entries a
while back[1].
I was putting off publishing it until I could rewrite it based on
Brices network device framework. If other people people could find
something like this useful I can clean it up to work with the current
2.6/2.5 and
Jared,
Are you suggesting separate physical subnet, or simply a logical
subnet
on the same physical network (using netmask)?
Mine's physically separate. I think it's what is required (google UNIX
STIG; see section 12.6), and it simplifies configuration and usage (this
network does this thing;
puppet newbie trying to install bin file through puppet. How would I
go about it?
class java {
package {java_package:
provider = bin, --this did not work
# source = puppet:///application/jdk-6u23-linux-x64-rpm.bin,
source =
Aren't these normally self-contained archives with a script? You would need
to write an exec{} statement that wget's the .bin, runs it with whatever
arguments are required for installing, and then cleans up the archive
afterwards. If you add in a creates = to the location of the install you
can
On 23/02/11 21:34, donavan wrote:
I actually made a type and provider for managing Route 53 entries a
while back[1].
I was putting off publishing it until I could rewrite it based on
Brices network device framework. If other people people could find
something like this useful I can clean it
hey guys
I have two manifests that I setup to apply to different types of
machines. one is a webservices class that goes like this
class webservices {
$webapps = [ php-common,php,httpd ]
package { $webapps: ensure = installed }
service { httpd:
name = httpd,
Our current plan for the inventory service is to provide active_record
termini for the facts and inventory indirections. This is to support
fast look-up of facts, and search of nodes based on their facts. However,
there are already tables for facts, used for storeconfigs, along with an
I need to use puppet over internet for a distributed scenario. I will
have 100 pops, with around 5 servers per pop. I will use cloud, VPS
and other kind of services, so my servers will change all the time and
number of server propably increase and decrease shortly. I already
see puppet in actions
On 23 February 2011 22:08, Sky skysh...@gmail.com wrote:
I need to use puppet over internet for a distributed scenario. I will
have 100 pops, with around 5 servers per pop. I will use cloud, VPS
and other kind of services, so my servers will change all the time and
number of server propably
Thanks for your fast reply Adam,
I belive that is the way, but I wanted to see what you guys are
doing.
Let's see if we are both right. If someone else share more cases/
option about it.
greetings
On Feb 23, 7:14 pm, Adam Gibbins a...@adamgibbins.com wrote:
On 23 February 2011 22:08, Sky
- Original Message -
Thanks for your fast reply Adam,
I belive that is the way, but I wanted to see what you guys are
doing.
Let's see if we are both right. If someone else share more cases/
option about it.
greetings
I dont believe a formal security audit of the code was done
On Feb 23, 1:25 pm, Brice Figureau brice-pup...@daysofwonder.com
wrote:
I unfortunately didn't had time to work on my network device framework
for more than a month. I expect to resume this work soon :)
I know what that's like. That aws code has been sitting since the
beginning of January.
Hey guys,
I've made a little progress I'd like to report. I was able to get
part of the dbservices manifest to work. But with the manifest written
this way postgresql installs and mysql does not. i am not sure why
that might be the case:
class dbservices {
$pgapps = [
Hi:
I have a defined type useraccount that constructs a user and user's
group, then installs his ssh key. This looks something like the
snippet below.
The problem I'm seeing is, every time I run the puppet client, it
appends that same ssh key to ~/.ssh/authorized_keys, so at the end of
three
P.S. Here's what the client log shows each time:
info: Caching catalog for grid1001.impermium.com
debug: Puppet::Type::Group::ProviderLdap: false value when expecting
true
debug: Puppet::Type::Group::ProviderPw: file /usr/sbin/pw does not
exist
debug:
When running puppetd and it tries to download plugins I get:
err: /File[/var/lib/puppet/lib]: Failed to generate additional
resources using 'eval_generate': hostname not match with the server
certificate
However, the catalog gets downloaded and applied (as best it can, but
w/o my plugins some
So... in puppet.conf on the puppet master, there's the external_nodes
setting, which defines the location of the external nodes script. If I am
using multiple environments, I guess I have to have ONE set of external
nodes since external_nodes in puppet.conf is set ONCE, right?
Ie, I can't have:
Oh boy. I'm a bit stuck here. I just moved our puppet config into
environments, and now puppet won't serve up any files.
(/Stage[yum]/Yum::Client/File[/etc/yum.conf]) Could not evaluate: Error 400
on SERVER: Not authorized to call
find on /file_metadata/pax_prod/yum/client/etc/yum.conf Could not
37 matches
Mail list logo
