Yeah, agreed, my default node looks like:
node default {
$role=hiera('role')
include $role
}
and the lowest priority/default-est part of my hiera hierarchy has role:
role::base. other actually classified things get role set at various parts
of the hierarchy as needed.
On Tue, Oct 18, 2016 a
We push r10k runs via consul execs from Jenkins, and after and only after a
successful update, invalidate the environment cache(for the given
environment), so even if a deploy fails , the master(s) will keep serving
the "old" version as opposed to an incomplete deploy.
On Tue, Jun 14, 2016 at 7:52
So, in my shops setup we're doing puppetmaster load balancing via consul
DNS, so, when agents run, they ask for puppetserver.service.consul, which
returns what basically looks like RRDNS for the puppetservers which are up
and available at that time. These records are, by design, served with a TTL
o
So I've done this simple with hiera email and using the contents of the ssl
keys and certs as strings for file resources to use with created resources
On Mon, Mar 7, 2016 at 6:57 PM Sans wrote:
>
> Hi there ,
>
> I've a situation here, where I need to provide SSL key-pair for Nginx
> configuratio
So i just submitted an issue but I'm not sure if the github page for this
new module is really watched, so, I wanted to post here as well:
https://github.com/puppetlabs/puppetlabs-package_updates/issues/6
It basically boils down to : I installed the module, gave a client the
class, cron job was c
this done well, but don't want
to reinvent the wheel if I can stand on the shoulders of others!
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails fro
- try again later
rsync error: error starting client-server protocol (code 5) at main.c(1503)
[receiver=3.0.6]
Are some other mirrors holding connections open, or is there a way this
limit can get bumped?
Thanks!
--
Matthew Nicholson
--
You received this message because you are subscribed t
s/passenger-3.0.7/lib/phusion_passenger/abstract_server.rb:357:in
`server_main_loop'","/usr/lib64/ruby/gems/1.8/gems/passenger-3.0.7/lib/phusion_passenger/abstract_server.rb:206:in
`start_synchronously'","/usr/lib64/ruby/gems/1.8/gems/passenger-3.0.7/helper-scripts/p
cussion on the web visit
> https://groups.google.com/d/msgid/puppet-users/626baa41-0975-4437-a128-3e538b48cc5b%40googlegroups.com
> .
> For more options, visit https://groups.google.com/groups/opt_out.
>
--
Matthew Nicholson
--
You received this message because you are subscribed t
scribe@**googlegroups.com
> .
> To post to this group, send email to puppet-users@googlegroups.com.
> Visit this group at
> http://groups.google.com/**group/puppet-users<http://groups.google.com/group/puppet-users>
> .
> For more options, visit
> https://
https://projects.puppetlabs.com/issues/16789
On Thu, Oct 4, 2012 at 2:58 PM, Jeff McCune wrote:
> On Thu, Oct 4, 2012 at 11:12 AM, Matthew Nicholson
> wrote:
>> File a bug report ? or is this an already tracked issue?
>
> If you could file a bug report and then reply he
ccounts too often!
>>
>> just eager to open the 3.0 environment issue I'm seeing.
>>
>> Thanks!
>>
>>
>> --
>> Matthew Nicholson
>
> --
> You received this message because you are subscribed to the Google Groups
> "Puppet Users&qu
3.0 environment issue I'm seeing.
Thanks!
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
p
File a bug report ? or is this an already tracked issue?
On Thu, Oct 4, 2012 at 12:39 PM, Matthew Nicholson
wrote:
> correct, no enc, just nodes.pp (node_terminus=plain)(ugh, yes, i know).
>
> previously had the following in puppet.conf on our master(s):
>
> environment = produc
would always default to production unless specified. i
commented out the environment = production line just to test, and
there were no changes.
On Thu, Oct 4, 2012 at 12:31 PM, Jeff McCune wrote:
> On Thu, Oct 4, 2012 at 8:46 AM, Matthew Nicholson
> wrote:
>> So, we use dynamic enviro
ttp://projects.puppetlabs.com/issues/16275
but has this not been merged to the release 3.0.0 code yet?
Thanks!
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@g
gin via psql to this DB you just created. Then just supply PuppetDB with
> the DB host, port, name, and credentials you’ve just configured, and we’ll
> take care of the rest!"
>
> Hope this helps!
>
> On Jul 10, 2012 1:41 AM, "Matthew Nicholson"
> wrote:
>>
&g
petdb in terms of threads and heap size, as
both of those SEEM okay right now...would either affect collection
query time?
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email t
type stuff happening,
and the custom facts I've got defined never end up in scope for
facter.
any thoughts?
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@goo
I notice fedora 17 isn't in there yet.Any time frame for this release
being packaged up? Glad to help out rebuilding srpms
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send
quot;,"$fqdn"], and most likly can
really get away with just $hostname, but I'd like all 3 aliases, but
I'd rather have it be written once and not over and over.
Thanks!
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Pu
27;
I've found the only way to prevent this to to use the
puppetstoredconfigclean.rb script and kill the host from the database.
For now I've simply wrapped this so one can clean the cert and kill
the db entry in one pass.
Is this correct/normal? I assumed, and have been told in IRC, tha
Furthermore I can verify the cert client side w/ the ca:
root::wave { 10:34:20 Fri Mar 02 }
~-> openssl verify -CAfile /var/lib/puppet/ssl/certs/ca.pem
/var/lib/puppet/ssl/certs/wave.pem
/var/lib/puppet/ssl/certs/wave.pem: OK
?
On Fri, Mar 2, 2012 at 10:14 AM, Matthew Nicholson
wrote:
>
nd have to clear client certs on everything
(about 2k systems)...
Help?
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group
group, send email to
> puppet-users+unsubscr...@googlegroups.com.
> For more options, visit this group at
> http://groups.google.com/group/puppet-users?hl=en.
>
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
do something like:
class ssh::knownhosts {
Sshkey <<| type= 'rsa' |>> {ensure => present}
}
to only hand out the rsa ssh keys?
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Use
chu...@taunusstein.net> wrote:
> On Tue, Oct 11, 2011 at 03:52:21PM -0400, Matthew Nicholson wrote:
> > So, I've got a system that does this:
> >
> > root@emcbackup8 puppet]# puppet agent -t
> > info: Loading facts in php_version
> > info: Loading facts in lsf_
Any thoughts on where to look deeper on this one? --debug shows nothing
useful, as the error is coming from Apache..
Thanks!
Matt
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send em
> http://groups.google.com/group/puppet-users?hl=en.
>
--
Matthew Nicholson
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group,
s, it is
ONLY then in the report/yaml.
Why would this happen?
Matt
On Fri, Aug 26, 2011 at 10:12 AM, Matthew Nicholson <
matthew.a.nichol...@gmail.com> wrote:
>
> I think i'm missing something small...
>
> So, I've got a couple custom facts, this is the one I'm
shell user, so I can't execute this as the puppet
user...
Any ideas on why this isn't working and/or how to run this in the same way
the service runs to I can see whats going wrong when invoked that way?
--
Matthew Nicholson
--
You received this message because you are subscribed
Did this recently, basically:
Create a new module to do the work, that:
Upgrades the client
Drops in a new config
Removes old cert from client
Bounces the service
Did about 98% of our ~1600 systems with this, worked well, moved things as
they checked in instead of one big push.
On Aug 25, 2011 4
32 matches
Mail list logo
