I am working on this module:
https://github.com/belminf/puppet-iptables
I have this defined resource:
define iptables::hole ($proto='tcp', $port, $source=undef) {
firewall { "100 input: $name":
chain => 'INPUT',
proto => $proto,
dport => $port,
source => $source,
You can look into creating custom functions in ruby to pull back the
data. Additionally you could create the manifests in ruby dsl.
On Fri, Jan 6, 2012 at 10:25 AM, Jeff Sussna wrote:
> (How) do folks handle situations where puppet variables need to be
> populated from dynamic database queries?
Hi list,
I am setting up tagmail. I have it working fine for loglevel tags such
as "all" and "err" and "notice". puppetmaster send email, and I recieve
them. all good.
but when I setup tagmail for user defined tags no email is sent. (I
varified by checking postfix logs on the puppetmaster se
Hi All,
I'm setting up log monitoring on our puppet setup, but i've run into a
snag. When i run puppet as:
puppet agent --test --other-settings
I get the log level of messages printed out and the whole line is
printed in a different color. When we have puppet send all the logs to
syslog, the log
inside puppet is it possible to block or stall a service restart until
some external component clears the restart?
for example, I want to make sure a node is bled down on the load-
balancer before allowing the restart to happen.
a post restart feature of re-enabling in the load-balancer would als
Hello,
I'm new to puppet, and am working through the Pro Puppet book
(Turnbull & McCune). After a bit of struggling, I managed to get
puppet + passenger + apache mostly working: a simple connect to the
server on https port 8140 gives "The environment must be purely
alphanumeric, not ''"
Here is w
There was a Redmine issue on this awhile back that was improperly rejected.
I've reopened it.
http://projects.puppetlabs.com/issues/3233
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To view this discussion on the web visit
https://groups.g
I am trying to get my nodes to show how compliant they are to their
baselines. But, I cannot get even the baseline data to show up. I
have an audit class :
class audits {
file{'/var/log/messages' :
audit => 'mode',
}
}
And I see that is is run because I see the a
I just added "node default {}" to the site.pp and LDAP ENC has
"magically" started working. This is not mentioned nowhere in Pulling
strings, I can't comment on Pro Puppet since I don't have it, and
based on my reading of the LDAP_Nodes wiki page I took the "default
nodes" section to mean this was
Could you post the final solution ?
I am interested to see the proper way of doing this.
Thanks.
“Sometimes I think the surest sign that intelligent life exists elsewhere in
the universe is that none of it has tried to contact us.”
Bill Waterson (Calvin & Hobbes)
- Antidot SAS wrote:
> I f
On Jan 6, 10:17 am, Kevin Pelletier wrote:
> Hi all,
>
> I'm currently looking out to implement puppet in our network. I've done a lot
> of reading (Pro Puppet book) and tested some of it's features, which are
> working. Right now, I'm trying to find out a way to create a group for a
> node,
I think that Foreman has a terrific implementation of 'group' mechanics
(Hostgroup)
Craig
On Jan 6, 2012, at 9:17 AM, Kevin Pelletier wrote:
> Hi all,
>
> I'm currently looking out to implement puppet in our network. I've done a lot
> of reading (Pro Puppet book) and tested some of it's featu
On Fri, Jan 6, 2012 at 1:57 AM, Argha Chattopadhyay
wrote:
> Hi,
>
> Does anyone have an idea to pick up custom facts from the ENV hash of a
> non-root user. I'm asking as I believe the plugin modules for facter pick up
> the ENV variables of the root user by default.
Facter will pickup ENV varia
Hello All,
I'm trying to get LDAP Nodes working but it's failing on my puppet
master with "err: Could not find default node or by name with
'node.example.com, node.example, node,' on node node.example.com", the
client of course error's with "Could not retrieve catalog from remote
server:". A revie
On Nov 17 2011, 5:51 am, Martijn Grendelman wrote:
> Hi,
>
> Is there a way to 'unique-ify' a collection of resources?
>
> Suppose that nodes export '@@nagios_hostgroup' resources for hostgroups
> that they want to be a member of. The Nagios server node collect those:
>
> Nagios_hostgroup <<||
On Thu, Jan 5, 2012 at 10:30 PM, Nick Bausch wrote:
> Hello,
>
> This is my attempt to create puppet RPM's and SRPM's for AIX 6.1:
>
> http://t3chnick.blogspot.com/2012/01/32-bit-puppet-rpms-srpms-for-aix-howto.html
>
Awesome. There are a few other AIX+Puppet users out there. I know
the Puppet
On Thu, Jan 5, 2012 at 8:14 PM, Jo Rhett wrote:
> On Jan 5, 2012, at 4:53 PM, Michael Stahnke wrote:
>
> You can install rpmdev-tools and run rpmdev-setuptree and it will
>
>
> Yes of course but I wasn't documenting that here.
>
> The http://centos.karan.org/el5/ruby187/ are basically a drop-in
>
On Jan 6, 10:25 am, Jeff Sussna wrote:
> (How) do folks handle situations where puppet variables need to be
> populated from dynamic database queries?
Most folks do not. However, some have spawned a framework called
hiera. By default, hiera uses a yaml backend but it can certainly be
extended t
I found out what was the problem: a group wasn't declared right. But you
point out a acknowledge that I misunderstand the class inheritance is just
to change the defaut attributs not to be executed before, thx for reminding
me this.
Le 6 janv. 2012 15:22, "jcbollinger" a écrit :
>
>
> On Jan 5, 1
On Jan 6, 1:06 am, Andreas N wrote:
> Wow, it took quite a while for my post to reach this group. No idea why, is
> it moderated?
>
> Anyway, this problem seems to also happen with agents running Puppet 2.7.6,
> although apparently less frequently. I'm almost positive it must have
> something to
Hi,
Does anyone have an idea to pick up custom facts from the ENV hash of a
non-root user. I'm asking as I believe the plugin modules for facter pick
up the ENV variables of the root user by default.
Cheers
--
Argha Chattopadhyay
--
You received this message because you are subscribed to the
Hi all,
I'm currently looking out to implement puppet in our network. I've done a lot
of reading (Pro Puppet book) and tested some of it's features, which are
working. Right now, I'm trying to find out a way to create a group for a node,
here's an example of what I would like :
node default
- jcbollinger wrote:
>
>
> On Jan 6, 6:23 am, Jonathan Gazeley
> wrote:
> > I realise I've b0rked the syntax. I meant this:
> >
> > class common {
> > class { selinux: mode => enforcing }
> > ...
> > ...
> >
> > }
> >
> > node server1 {
> > include common
> >
> > }
> >
> > node
I forgot to say that the individual snmpd.conf files then go in
modules/snmp/files, following the naming convention that you define
in the list of sources.
* Chamberlain, Darren [2012/01/06 11:06]:
> * Ola [2012/01/06 03:38]:
> > I have created a simple snmp class (similar to this one)
> > http:
On Jan 6, 3:20 am, Bernd Adamowicz
wrote:
> I'm not sure, but you could try changing the SELinux stuff with Puppet
> configuration instead of 'chcon'. I got a little description
> here:http://berndadamowicz.wordpress.com/2011/12/16/nrpe-and-selinux/.
>
> Be aware that the SELinux attributes mi
* Ola [2012/01/06 03:38]:
> I have created a simple snmp class (similar to this one)
> http://comments.gmane.org/gmane.comp.sysutils.puppet.user/21966
> What i want now is to customize it so i can have different
> snmpd.conf files for different servers. Is it correct that i
> should create somethi
Two immediate possibilities come to mind:
(1) take selinux out of "common" and define it in each individual node
(2) define the exceptions to "selinux => enforcing" like in this:
http://www.mail-archive.com/puppet-users@googlegroups.com/msg00697.html
“Sometimes I think the surest sign that intell
On Jan 6, 6:23 am, Jonathan Gazeley
wrote:
> I realise I've b0rked the syntax. I meant this:
>
> class common {
> class { selinux: mode => enforcing }
> ...
> ...
>
> }
>
> node server1 {
> include common
>
> }
>
> node server2 {
> include common
> class { selinux: mode => perm
On Jan 5, 7:45 am, Walter Heck wrote:
> I was afraid this was going to be the only solution. I guess we could
> really do with more sane handling of arrays in puppet. This is a
> workaround to make a workaround work..
Characterizing anything here as a workaround suggests that you are
fighting
(How) do folks handle situations where puppet variables need to be
populated from dynamic database queries?
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from t
You could also use rip's excellent parselocalconfig script to see if
the same resources will be applied. Then you'd combine that with other
more in-depth tests: http://www.devco.net/code/parselocalconfig.rb
cheers,
Walter
On Fri, Jan 6, 2012 at 15:29, R.I.Pienaar wrote:
>
>
> - Original Mes
- Original Message -
> On 01/06/2012 02:40 PM, R.I.Pienaar wrote:
> > The only sane way imho is to diff the catalogs.
>
> Maybe, but a different (not necessarily claiming "sane") choice is to
> 1. run puppetmaster 2.8 on a non-standard port
> 2. have each agent perform a --noop run using
On Jan 5, 12:25 pm, Antidot SAS wrote:
> Hi everyone,
>
> I have a quick question for everybody, does the class inheritance work for
> realizing ressource?
>
> Because I have the following class:
> # user_system.pp
> #
> # Realize the system users
>
> class user::user_system inherits user::virtu
On 01/06/2012 02:40 PM, R.I.Pienaar wrote:
> The only sane way imho is to diff the catalogs.
Maybe, but a different (not necessarily claiming "sane") choice is to
1. run puppetmaster 2.8 on a non-standard port
2. have each agent perform a --noop run using this masterport
3. collect reports from t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Thanks for the response.
puppet-lint certainly finds the manifest-based issues but doesn't seem to pick
up issues in the templates that I can tell so far.
Any suggestions from the Puppet Labs' guys on automated techniques that pick up
items in temp
- Original Message -
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Ah,
>
> So, if you have an existing code base that you've inherited and
> you're going to be trying the 2.8 series of Puppet, where variable
> scoping is
> mandatory, how would you go about finding all out of sco
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ah,
So, if you have an existing code base that you've inherited and you're going to
be trying the 2.8 series of Puppet, where variable scoping is
mandatory, how would you go about finding all out of scope variables without
actually writing code to c
On Fri, Jan 06, 2012 at 01:24:25PM +0100, Kenneth Holter wrote:
> Hi all,
>
>
> I'd like to have most/all my puppet clients running in noop mode, and
> use Puppet Dashboard to toggle the noop switch for ordinary runs. I
> have groups of servers defined in the console, so toggling the noop
> switc
Hi all,
I'd like to have most/all my puppet clients running in noop mode, and
use Puppet Dashboard to toggle the noop switch for ordinary runs. I
have groups of servers defined in the console, so toggling the noop
switch on these groups would allow be great.
Have anyone implemented such a featur
I realise I've b0rked the syntax. I meant this:
class common {
class { selinux: mode => enforcing }
...
...
}
node server1 {
include common
}
node server2 {
include common
class { selinux: mode => permissive }
}
I'm trying to achieve that all servers have SELinux in enforcing by
I have created a simple snmp class (similar to this one)
http://comments.gmane.org/gmane.comp.sysutils.puppet.user/21966
What i want now is to customize it so i can have different snmpd.conf
files for different servers. Is it correct that i should create
something like class ntp::params end there d
I manage quite a few CentOS 6 servers with puppet, and I want to start
using puppet-selinux[1] to enable/disable it.
My "common" node class, inherited by all servers, should say that all
servers run SELinux in enforcing mode. But on one or two servers I want
to run in permissive mode for vario
I'm not sure, but you could try changing the SELinux stuff with Puppet
configuration instead of 'chcon'. I got a little description here:
http://berndadamowicz.wordpress.com/2011/12/16/nrpe-and-selinux/.
Be aware that the SELinux attributes might be changed back after Puppet has
applied the cha
I too am facing the same issue.
I am deploying my infrastructure in AWS cloud.
err: Could not retrieve catalog from remote server: Error 400 on
SERVER: Exported resource Nagios_hostgroup[cluster_pm] cannot override
local resource on node ip-10-172-65-64.us-west-1.compute.internal
Does anybody kno
Op vrijdag 6 januari 2012 01:53:31 UTC+1 schreef Michael Stanhke het
volgende:
>
>
> One more thing to keep in mind is that EL5 only has about 2 years of
> life left on it. It launched in 2007.
>
That's only for RHEL5 production phase 3 (31 March 2014), End of Extended
Life Cycle is on 31 Marc
On Thu, Jan 5, 2012 at 10:50 AM, Andreas N wrote:
> On Wednesday, January 4, 2012 3:06:27 PM UTC+1, Gonzalo wrote:
>>
>>
>> Otherwise, group membership is managed as a property of Users, ergo
>>> you cannot manage it (directly) if you do not manage the users in
>>> question. Your only options in
46 matches
Mail list logo
