On Apr 28, 9:53 am, Philip Brown <p...@bolthole.com> wrote:
> On Saturday, April 28, 2012 2:11:23 AM UTC-7, Luke Bigum wrote:
>
> > Yes, Puppet is perfect for your file-copy-and-hook scenario. In Puppet
> > speak it's "notify" and "subscribe" between resources, here's a very
> > quick example that will restart Some Daemon if /etc/resolv.conf
> > changes:
>
> > node 'somehost' {
> > class { 'resolv': }
> > }
>
> > class resolv {
> > $resolv_conf = '/etc/resolv.conf'
> > $service_name = 'some-daemon'
>
> > file { $resolv_conf:
> > source => "puppet:///modules/${module_name}/${resolv_conf}",
> > notify => Service[$service_name],
> > }
>
> ....
>
> But that requires the files be hosted on the puppet master.
> What if the conf files are still rdisted out under /rdist/base instead?
> What does that look like?
>
> >Once
> >you realise how easy it is to write modules you might be able to
> > convince some of your admins to start packaging your code,
>
> Sadly, the chances of getting all sysadmins to be dilligent about creating
> packages are pretty much zero.
> They only want to deal with premade downloadable packages.
It sounds like you might be able to split this into two parts. Surely
there aren't many of those 5800 files that your sysadmins routinely
change (else they're acting as developers, not admins). Build a
package or packages of the binaries, containing also whatever default
configuration files are appropriate. In the package, be sure to tag
the config files as such. Manage the packages as Packages, and on top
of that manage the config files as Files.
Using such a strategy, if you give your admins access to the Puppet
master's copies of the config files then they could work much as they
do now: change the file on the Puppet master, and expect it to be
rolled out to all the appropriate nodes within a predictable time.
Unchanged files will not trigger updates on the nodes. Updates to the
binaries will require new packages to be built, but that oughtn't to
be your admins' duty.
And if your admins do not appreciate the advantages of avoiding
installing unpackaged binaries then you need better admins.
John
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
