> the puppet masters cert and CA needs to contain the public FQDN as well.
> use certnames (see ConfigurationReference [1]) to include both domains,
> local and public. This will mean that you need to regenerate the certs,
> as well to resign all clients.
Thanks again, it worked just fine. BTW,
Hi All
Background:
I am running Puppet to configure ESX 3.5 servers by NFS mounting the Puppet
binaries and configuration from a shared server. This is to ensure VMware
don't come back refusing support for installing non standard software on the
server.
# ruby -v
ruby 1.8.7 (2009-04-08 patchlevel
Does setting filetimeout to 0 work? Feels like you should be able to
disable re-parsing the config files in Puppet if you want, and if that
doesn't work, I'd file a bug.
On Tue, Jun 30, 2009 at 6:22 PM, Greg wrote:
>
> The netbackup fix isn't an option unfortunately - causes enough other
> grie
Hi all,
I've been looking into having Puppet deploy some larger files and I'm
noticing that it ties up puppetmasters quite a bit and can often
result in a timeout if the file is too large. Before I submit a
feature request for a http method for file sources, I would throw it
out to the group and
I've gotten it working with 2.3.2... But I did have to put in the
require lines
as was mentioned in a previous message...
$ gem list | grep rails
rails (2.3.2)
Greg
On Jul 1, 8:45 am, Roberto Moral wrote:
> Puppet gets confused when multiple version of the gem are installed,
> if I remember
The netbackup fix isn't an option unfortunately - causes enough other
grief apparently to be not worth doing.
I went through the code and looked at what is involved in changing it
to
mtime as an option, and its quite trivial, even for someone like
myself
who doesn't know Ruby well enough yet. My
On Tue, Jun 30, 2009 at 4:32 PM, Michael Semcheski wrote:
>
> On Tue, Jun 30, 2009 at 6:36 PM, Kurt Engle wrote:
>> Our imaging process takes an OS base image with a few apps that include
>> Puppet and Facter and installs it on the make. This over the network. When
>> the Mac reboots it sets the h
On Tue, Jun 30, 2009 at 6:36 PM, Kurt Engle wrote:
> Our imaging process takes an OS base image with a few apps that include
> Puppet and Facter and installs it on the make. This over the network. When
> the Mac reboots it sets the hostname of the computer to the Mac's serial
> number and auto sta
Puppet gets confused when multiple version of the gem are installed,
if I remember correctly you need 2.2.2 version of the gems, 2.3 wont
work.
On Monday,Jun 29, 2009, at Monday,Jun 29, 20093:01 PM, Felix Schäfer
wrote:
>
> Hello Nigel,
>
> Am 29.06.2009 um 17:52 schrieb Nigel Kersten:
>
Hi
>> yeah I also thought that. On the other side installing things (which
>> will install a bunch of dependecies) is also an unexpected result
>> somehow, as the dependencies aren't managed by puppet. For sure this
>> result isn't that worse as uninstall, but I don't think that this is
>> really
Nigel, part of the problem is that I do not have a good understanding of
what happens during the whole cert process and what will break or make a
trust between the client and the server.
Our imaging process takes an OS base image with a few apps that include
Puppet and Facter and installs it on th
On Tue, Jun 30, 2009 at 3:19 PM, Kurt Engle wrote:
> Pre-generating all the certs would be very time consuming with hundreds of
> machines to deal with. Also, we would need to create a specific image for
> each machine which would be an even bigger nightmare from my understanding.
No. I'm suggest
On Tue, 2009-06-30 at 11:46 +0200, Peter Meier wrote:
> yeah I also thought that. On the other side installing things (which
> will install a bunch of dependecies) is also an unexpected result
> somehow, as the dependencies aren't managed by puppet. For sure this
> result isn't that worse as unins
Pre-generating all the certs would be very time consuming with hundreds of
machines to deal with. Also, we would need to create a specific image for
each machine which would be an even bigger nightmare from my understanding.
We used the serial number as the hostname since the serial number on the
On Tue, Jun 30, 2009 at 2:03 PM, engle wrote:
>
> Well, that is what we are doing right now. However, when dealing with
> potentially hundred of machines, this gets a little awkward and
> unmanageable. We are a school district and spend most of the summer
> imaging hundreds of Macs. This is the ca
Well, that is what we are doing right now. However, when dealing with
potentially hundred of machines, this gets a little awkward and
unmanageable. We are a school district and spend most of the summer
imaging hundreds of Macs. This is the case every summer. As these
machines change their function
Hi Roy,
yes, sorry, include not import...
> >> In first example class_B will be evaluated before ALL class_A.
> >> so package fortuen and dummy file will be installed/created before
> >> package foo.
> >>
> >> In second one, class_B will be evaluted ONLY when package
> >> foo. So, first bogus p
On 6/30/2009 1:26 PM, engle wrote:
> So, would it be best to use a single cert for all of the clients or is
> there a better way to deal with this sort of setup?
Run
puppetca --clean host.to.be.imaged
on the puppetmaster as it's being imaged? If you're doing the reimaging,
should just be o
Hello,
Are you looking for "include" rather than "import" in the example below?
Not :
>> class class_A {
>> import class_B
>> package { foo }
but:
class class_A{
include class_B
package { foo }
Regards,
-Roy
Moty wrote:
> Hi
>
> If I understand it correctl
I am trying to come up with a workable solution in managing numerous
Mac workstations allowing a high degree of flexibility with regards to
certs.
My puppet environment is setup to application installation on machines
that have been 'imaged' with a base OS and the puppet and facter apps.
So, when
Hi
If I understand it correctly I'm not sure you can import a class ...
But if it's possible so it is probably as importing manifests. In that
case the import just
put it into scope and not "running" it.
Please correct me if I'm wrong
Mort
On Jun 30, 7:01 pm, Arnau Bria wrote:
> Hi all,
>
> I assume that you use a different FQDN internal and external, right?
Exactly
> So then:
>
> the puppet masters cert and CA needs to contain the public FQDN as well.
> use certnames (see ConfigurationReference [1]) to include both domains,
> local and public. This will mean that you need to reg
purged works - thanks!
On Jun 30, 1:58 am, Peter Meier wrote:
> Hi
>
> > I also noticed this today.
> > Is there a better yum provider?
> > I want to ensure cups and all the crap it comes with is absent.
> > puppet calls rpm -e cups and fails on dependencies check.
>
> > thanks for any tips
>
>
Hi all,
I have a couple of "basic" questions on classes.
In a class, what's the diff between:
*don't take in count syntax, please.
--
class class_B {
package { fortune }
file { dummy }
}
--
example 1)
cla
Hi
> Why can't I access $memory like other variables? From where does the
> value I do get come from?
it looks like memory is somehow a special variable (dunno why), but if
you don't name your variable memory, it works.
maybe report a bug report if nobody comes up with a reason why memory is
s
Hi
> Jun 30 16:20:02 puppetd[22640]: Could not retrieve catalog:
> Certificates were not trusted: hostname was not match with the server
> certificate
>
> I guess it happens because puppetd clients are expecting the
> puppetmaster to have FQDN name of the router which is not the case...
> Is th
I tried to use a Puppet variable named "$memory" and access it from
a template, like this:
$memory = 4711
file {
"/tmp/test.txt":
content => inline_template("memory = <%= memory %>\n");
}
One would think that my file would contain "memory = 4711" after that,
On Tue, 30 Jun 2009 10:58:33 +0200
Peter Meier wrote:
Hi,
[...]
> While looking at the code and
> http://reductivelabs.com/trac/puppet/wiki/TypeReference#package you'll
> also see that the yum provider is purgeable and that the yum provider
> has an own purge method.
> So if this would fit your
On Mon, Jun 29, 2009 at 5:50 PM, Greg wrote:
>
> Nigel,
>
> Actually, its happening 10 mins into backups... And its using
> Netbackup...
>
> Looks like I'm stuck with it, unless its possible to get that check to
> happen on mtime
> instead of ctime... (Of course then theres the question of which i
Folks, could you please tell me how to setup a puppetmaster which is
behind the NAT?
I have the following setup:
* puppetmaster is running in a private network
* router of this private network is visible from the WAN(via FQDN) and
it port-forwards 8140 to the machine running puppetmaster
* puppe
Hi,
On 30.06.2009, at 01:13, Allan Marcus wrote:
I think people are missing Gary's point (or maybe I am). Puppet works
by ensuring a package is installed. If the package version changes,
puppet will install the new version.
I a lab where those pesky students might delete a file in, say the MS
Hi
> We discussed this on irc a couple of days ago. I cant seem to find the
> logfile but if i remember correctly someone (Luke?) mentioned that an
> unobserved call of "yum -y remove package" can result in unexpected results.
>
> See this pastie for an example: http://pastie.org/529143
yeah
Fletch wrote:
> I also noticed this today.
> Is there a better yum provider?
> I want to ensure cups and all the crap it comes with is absent.
> puppet calls rpm -e cups and fails on dependencies check.
We discussed this on irc a couple of days ago. I cant seem to find the
logfile but if i remem
Hi
> I also noticed this today.
> Is there a better yum provider?
> I want to ensure cups and all the crap it comes with is absent.
> puppet calls rpm -e cups and fails on dependencies check.
>
> thanks for any tips
have a look at the code @ lib/puppet/provider/package/yum.rb
you'll see that t
34 matches
Mail list logo
