I have four major zones in my nework: Development, Quality Assurance,
User Acceptanc Testing, and Production. I am able to deply different
modules to these zones based on the simple regular expressions posted
in the example at the bottom of this message.
I have two data centers in my network: S
I am working on building a facter tag based node classifier similar to
https://github.com/jordansissel/puppet-examples/tree/master/nodeless-puppet/.
However, I have run into an issue where I cannot use puppet's require
file ability to push the yaml file containing the facts file to the
client becau
outside of a puppet run?
FYI:
The raw yaml data from puppet is:
--- !ruby/object:Puppet::FileServing::Content
content: |
---
role:
- base
env:
- dev
expiration: 2011-07-11 18:57:08.413941 +00:00
links: :manage
path: /etc/puppet/modules/truth/files/private/domain.inter/server01/
trut
Thanks. Unfortunately, it seems I will need to wait until we upgrade
puppet as version 0.25.4 does not seem to have 'puppet/util/zaml'.
--
Derek
On Jul 11, 2:56 pm, Nigel Kersten wrote:
> On Mon, Jul 11, 2011 at 11:36 AM, Derek wrote:
> > Thanks for everyone's help
nt we will probably upgrade puppet anyways so I
will just add "require puppet/util/yaml" once we have upgraded.
--
Derek
On Jul 11, 4:51 pm, Nigel Kersten wrote:
> On Mon, Jul 11, 2011 at 4:17 PM, Derek Tamsen wrote:
> > Thanks. Unfortunately, it seems I will need to wait until
class in a
module was working but it wasn't imported it seems.
Thanks,
derek
-
def find_manifests(start, options = {})
cwd = options[:cwd] || Dir.getwd
module_name, pattern = split_file_path(start)
begin
if mod = Puppet::Module.find(module_name,
optio
notice: //cdh::cdh3/File[cdh3_config]/checksum: checksum changed '{mtime}Wed
Sep 01 21:28:46 -0400 2010' to '{mtime}Thu Sep 02 08:53:56 -0400 2010'
This is not good since this forces the services to restart again, which is
really annoying.
We run, puppet 0.25.4.
Thanks,
derek
D
Hi Pete,
It does seem fixed in 2.6.1rc3, however 0.25.5 it is still happens. Has there
been a convergence of opinion on how to roll out 2.6.x? Server first then
clients? Clients first then the server? Everything at once? (that is hard
obviously)
Thanks,
derek
On Sep 2, 2010, at 11:51 AM
Alternatively you could just use a template /etc/system where you put most of
the logic into the ERB by putting if defined entries in.
--
Derek Yarnell
On Sep 14, 2010, at 1:25 AM, John Warburton wrote:
> I may not go down that path, but you've triggered something in my head - why
&
This was not throwing the error before on 0.25.x puppet master and it does seem
like some (maybe all?) of the rrd graphs are getting updated.
Wondering if anyone had any thoughts.
Thanks,
derek
Derek Yarnell
UNIX Systems Administrator
University of Maryland
Institute for Advanced Comput
hostname_hour
info: Loading facts in os_version
info: Loading facts in rhn
Anyone seen this behavior?
Thanks,
derek
Derek Yarnell
UNIX Systems Administrator
University of Maryland
Institute for Advanced Computer Studies
--
You received this message because you are subscribed to the Google
ill do the right thing. Do
other people see this? Or have you all gone to running out of cron?
Thanks,
Derek
--
Derek Yarnell
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-us...@
On 12/3/10 5:13 PM, Nigel Kersten wrote:
> On Fri, Dec 3, 2010 at 11:58 AM, Derek Yarnell wrote:
>> So we run puppetd as a long running ruby process on the hosts. When we
>> update a fact that gets auto sync'd to the host it seems when puppetd wakes
>> up and starts
On 12/6/10 10:52 AM, Nigel Kersten wrote:
> On Mon, Dec 6, 2010 at 7:46 AM, Derek Yarnell wrote:
>> On 12/3/10 5:13 PM, Nigel Kersten wrote:
>>> On Fri, Dec 3, 2010 at 11:58 AM, Derek Yarnell wrote:
>>>> So we run puppetd as a long running ruby process on the hosts
the default auth.conf file) would be what I am looking for however
the only way I can think of tailoring this would be to only allow a node
that is in a specific class to have access to a certain set of resources.
Thanks,
derek
--
---
Derek T. Yarnell
University of Maryland
Institute for
On 12/22/10 8:38 PM, Patrick wrote:
>
> On Dec 22, 2010, at 5:18 PM, Derek Yarnell wrote:
>
>> So I was asked a bit about implications of distributing something
>> sensitive through puppet. After a client talks to the puppet server
>> (giving its local facts) and r
away
knowing that Puppet will startup and take care of the rest of the config.
-
Derek Tracy
trac...@gmail.com
-
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To po
a look at Foreman [1] which handle this kind
> of
> > things for you.
> >
> > Ohad
> >
> > [1] -http://theforeman.org
> >
> >
> >
> > On Fri, Jan 14, 2011 at 9:04 PM, Derek Tracy wrote:
> > > I am implementing Puppet on a small RHEL 5.
uppet/ssl/private_keys]
debug:
/Settings[/etc/puppet/puppetd.conf]/Settings[ssl]/File[/etc/puppet/ssl/public_keys/###.pem]:
Autorequiring File[/etc/puppet/ssl/public_keys]
debug: Finishing transaction -606390474 with 0 changes
--
---
Derek T. Yarnell
--~--~-~--~~---
but still regardless of putting
--no-daemonize or not it still forks into the background.
--
---
Derek T. Yarnell
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, se
has a chance to run). Anyone else been trying to do this?
Thanks,
derek
On Thu, Jul 23, 2009 at 6:49 PM, Trevor Vaughan wrote:
>
> Just for input, I haven't been seeing this behavior with 0.24.8 (or
> any previous release) on Fedora.
>
> Trevor
>
> On Thu, Jul 23, 20
I spoke too soon, I recompiled with ruby 1.8.7, added rubygems and installed
puppet and got the same behavior on RHEL4.
Can anyone confirm that --no-daemonize works for them on RHEL4?
puppetd --onetime --no-daemonize --verbose --debug
Thanks,
derek
On Thu, Jul 23, 2009 at 7:40 PM, Derek
--test does do the right thing and doesn't
fork a copy into the background and does what I need it to do running
the built in version of ruby (1.8.1) or running the new ruby (1.8.7).
Anyway thanks again,
derek
On Fri, Jul 24, 2009 at 1:05 PM, Trevor Hemsley wrote:
>
> I no longer h
am I just doing something wrong here, this is the first
time I have tried with a [private] section before.
Thanks,
derek
--
---
Derek T. Yarnell
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"Puppet Users"
> You received this message because you are subscribed to the Google Groups
> "Puppet Users" group.
> To post to this group, send email to puppet-us...@googlegroups.com.
> To unsubscribe from this group, send email to
> puppet-users+unsubscr...@googlegroups.com.
> For mo
barbaz:
content => template($array)
}
}
class bar inherits foo {
$array += ['module/bar.erb']
}
Anyone been trying to do something similar?
--
---
Derek T. Yarnell
--
You received this message because you are subscribed to the Google Groups "Puppet Users"
re is always some screwing with a cronjob to just restart puppet once
and awhile but I dunno I was hoping for something more clean.
Thanks,
derek
--
--
Derek Yarnell
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group
puppet.conf for a long running puppetd. You are
obviously using the splay options if you are running from cron? Are
most people running puppetd from cron and not demonizing?
Thanks,
derek
--
--
Derek Yarnell
--
You received this message because you are subscribed to the Google Groups
"Puppet
Hi,
Just a note that Cobbler which is a kickstart/preeseed server has some
puppet integration although we don't use it because we are a ldap
shop.
Thanks,
Derek
On Monday, January 18, 2010, Ohad Levy wrote:
> Hi,
>
> One of the main reasons that foreman also do kickstart/presee
Could it be since you are not specifying a environment (puppetd --test
--environment=development) that you have not defined your
modulepath = /etc/puppet/modules
at a global level that there is no idea where to find them?
Thanks,
derek
On 2/4/10 10:06 AM, byron appelt wrote:
I am trying to
All I want to say is thanks, I found Trac and its searching to be such a
PITA.
This was such a pleasant surprise :)
--
---
Derek T. Yarnell
University of Maryland
Institute for Advanced Computer Studies
--
You received this message because you are subscribed to the Google Groups "P
erver puppetserver.my.domain
If I run this in a virtual console it seems to work fine. Anyone doing
this or have they gone another way?
Thanks,
derek
--
--
Derek Yarnell
--
You received this message because you are subscribed to the Google Groups "Puppet
Users" group.
To post to this group, send
erver puppetserver.my.domain
Thanks,
derek
--
---
Derek T. Yarnell
University of Maryland
Institute for Advanced Computer Studies
--
You received this message because you are subscribed to the Google Groups "Puppet
Users" group.
To post to this group, send email to puppet-us...@googlegroups.com.
To u
Hi,
selinux may be preventing puppetmaster from talking to mysql, try
> setenforce 0
also if this works and you want to leave selinux running, it looks like
there is a boolean to allow this (on RHEL at least)
> setenforce 1
> setsebool puppetmaster_use_db on
Hope this helps,
Derek
We use hiera-gpg for file type sensitive information as well.For
sensitive information which is actually a file (ssh private keys) we
moved that into hiera-gpg and just set the yaml markup accordingly so
the information could be used to populate the file in question in the
correct format.
For
am looking to
be able to include files within a template w/ ERB but from the
documentation that does not seem possible. Or even if it is possible to
have a numter of templates listed in my content=> that would be
concatenated?
Anyone else trying to do this or have done this?
--
---
Derek T. Y
am looking to
be able to include files within a template w/ ERB but from the
documentation that does not seem possible. Or even if it is possible to
have a numter of templates listed in my content=> that would be
concatenated?
Anyone else trying to do this or have done this?
--
---
Derek T. Y
Rajeev.
We run mcollective in a 100% Solaris shop. We have not encountered
any Solaris specific issues. Email me if you want the steps we use
to build the Solaris packages.
Thanks. Derek.
On Feb 7, 2:01 am, DreamBig wrote:
> Thanks..
>
> On Feb 7, 2:31 pm, kavitha.c.k2...@gmail.
We are in the process of evaluating our puppet related test and
release process and interested in knowing what other folks are doing.
We are in a position that is not ideal but is not unique from what I
can tell. Our current testing process is basically the
responsibility of each person making
I have a weird issue. I'm using puppet 3.2.3 and I have a simple module to
install an msi (module below).
If I run manually (from the start menu, or cmd using puppet agent - it
works fine and installs. If I let the 30 minute scheduled run happen - I
get "Storage to process this request is not
I have a script that I execute to run a mono exe during a setup process. I
would like to automate that with puppet but the exe depends on an
environment variable being set or it will fail. My setup.sh file looks
like this.
export MY_ENV_VAR=$HOME/target_dir
/usr/mono/bin/mono $HOME/path_to_
Hello,
I was looking for a clean way to specify tidy resources in my hiera
hierarchy. Basically, I wanted to be able to specify common tidy
resources, or tidy resources specific to a host without editing a module or
class each time, essentially separating the data from the logic. Here I'm
us
can see above. What is the best way to deal with the sockets and
eliminate these errors?
Thanks in advance,
Derek
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, sen
Hello,
I have been following through some of the documentation trying to make use
of puppet in a test environment. I went ahead and tried to install
puppet-passenger and puppet dashboard.
I think i have succesfully done this, because at mymaster.local:3000/ I get
the dashboard webpage (albeit
Hello,
I am trying to figure out what the best way to use puppet when I am using
passenger. I noticed that if I log in as my normal user on Ubuntu 12.04,
and run "puppet config print" it gives me the incorrect configuration than
what I think I am running when I am using apache/passenger/puppet
You can specify a version string for each package.
package { [ ‘php-xml’, ‘php-common’ ]:
ensure => “5.3.3”,
}
You might have to break them out and add in some dependency.
On Nov 10, 2013, at 6:08 , shlo.af...@gmail.com wrote:
> Hi,
> I'm using Puppet to downgrade php from 5.5.5 to 5.3.
p-5.5.5 and after that install
> php-5.3.3.
> When trying to install php-5.3.3 when php-5.5.5 exist it exit with errors
> about conflict in version.
> How can I ensure that specific version of php is absent?
>
> On Monday, November 11, 2013 4:38:12 PM UTC+2, Derek Harkness wrote:
Hello,
I have cloned the cloudstack_resources git repo into my puppet modules
directory.
I have a working cloudstack management server up and going.
here is my modules/infra/manifests/init.pp file
class infra {
cloudstack_instance { 'foo':
ensure=>present,
Well apparently my transport.yaml file was not formatted correcly. I had
everything starting at column zero, and when I added a tab to make the
spacing for the lines under cloudstack: be indented, it worked.
:shrug:
On Wednesday, November 20, 2013 12:22:11 PM UTC-5, Derek Cole wrote:
>
>
Hello,
I am attempting to use that cloudstack_resources module found here
https://github.com/bodepd/cloudstack_resources
I have been able to succesfully point it to my cloudstack management server
and create VMs. The template I am using is a fresh OS install that already
had puppet agent confi
.
-Derek
nfo: Loading downloaded plugin /var/lib/puppet/lib/puppet/type/anchor.rb
info: Loading downloaded plugin
/var/lib/puppet/lib/puppet/parser/functions/keys.rb
info: Loading downloaded plugin
/var/lib/puppet/lib/puppet/parser/functions/min.rb
info: Loading downloaded plugin
/var/lib/puppet
Hello,
I am not exactly sure how to phrase this, but consider the following:
case $::role {
'access': {
notify {"Applying access packages" :}
include access_packages
freebsd::rc_conf { 'test' :
nd a few nodes that connect to that server with openvpn. This module won't
actually do all of that like I thought.
-Derek
On Tuesday, December 10, 2013 1:25:05 AM UTC-5, Matthew Barr wrote:
>
> In this case, you’ve got 2 issues.
>
> 1, most of that data would, ideally, be in Hie
Just wanted to throw in that you should update to pkgng. pkg_add isnt even
going to be an option in FreeBSD10. I have been using
https://forge.puppetlabs.com/zleslie/pkgng successfully with FreeBSD10 Beta 3
and puppet.
--
You received this message because you are subscribed to the Google Group
configs to these instances? It seems like the luxflux openvpn
module just generates the config. Should I just put them into a modules
file folder, and then use puppet as a file server to push the file based on
a role?
Has anyone else use puppet to distribute and start openvpn for client
c
loop, cssh, or
something similar.
Derek
On Jan 28, 2014, at 15:17, WL wrote:
> Is there a way to deploy puppet agent to all servers rather than installing
> it one by one?
> I am using puppet open source.
>
> Thanks,
>
> Wendy
>
> --
> You received this mess
hanks,
Derek
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to puppet-users+unsubscr...@googlegroups.com.
To view this discussion on the w
In your example it looks like classes is an array not a hash. Should be able
to just do classes.join(“ “).
Derek
> On Apr 17, 2017, at 00:46, Denny Fuchs wrote:
>
> Hello,
>
> for my Icinga2, I want to add all classes to vars, like described in
> https://goo.gl/z798HG
You might try checking c:\programdata\.
On Thursday, January 14, 2016 at 5:12:19 PM UTC-6, Gary Greene wrote:
>
> I’ve got a user on Windows 10 x64 Pro that we’ve been having some issues
> with the puppet install on his machine. To fix, I tried upgrading the
> client from 3.8.3 to 3.8.4 from t
We recently had a situation where servers weren't able to use their
auto-sign'ed certificates because their local clock was months off from
real-time. Of course, it was brand-new hardware straight off the dock and
hadn't yet had a chance to have ntp sync the clock to the correct time because,
Cobbler to load the operating system and do basic configurations. Then
> I hand off to Puppet. One thing I do with Cobbler is the initial setting of
> the system clock using ntpdate or ntpd -q
> Hope this helps
>
> -Original Message-
> From: Derek J. Balling
> To:
Is there rsync access to that repo? I'd like to mirror it behind our firewall
so our machines can access it, and HTTP mirroring is so sub-optimal.
D
On Mar 13, 2012, at 12:58 PM, Michael Stahnke wrote:
> Use the Puppet Labs repo,
>
> http://yum.puppetlabs.com it will always be updated. It
On May 3, 2012, at 1:05 PM, Pieter van de Bruggen wrote:
> As many of you may be aware, Hiera will be tightly integrated into Puppet in
> the upcoming release of Puppet 3.0.
>
What will this mean for sites that have specifically avoided using Hiera? I
would presume that this should just mean "b
On May 7, 2012, at 11:54 AM, Nigel Kersten wrote:
> Yes. If you're not planning to externalize data at all, the only difference
> you'll see is that you'll now have Hiera installed on your system when you
> install Puppet 3.0.
Cool. Was really panicking there for a moment.
I kinda like having
On May 7, 2012, at 12:47 PM, Christopher Wood wrote:
> Wrapper script (similar concept for anywhere with a yaml reader):
Still have to *write* the YAML files.
> Out of nosiness, how do you handle the edgier cases in your manifests? For
> example, how everything is a standard syslog client, exce
FWIW, we are experiencing exactly the same thing in 2.7 that you are. We used
to average 6-9 seconds for compilation time and now it's anywhere from 15 to
250 to "timed out".
D
On May 8, 2012, at 7:07 AM, Arnau Bria wrote:
> Compiled catalog for td055.pic.es in environment production in 4.25 s
Todd,
Do you have an ETA for 2.7.x RPMs in that repo by any chance?
Cheers,
D
On Jun 23, 2011, at 11:21 AM, Todd Zullinger wrote:
> Michael Stahnke wrote:
>> This release is a maintenance release of the 2.6.x series of Puppet.
>> This will likely be the last release in the 2.6.x series for Pupp
We just started testing CentOS 6.0 here, and I'm using Facter 1.6.0
If I run this command from my CentOS 5.x test machine:
[root@puppetclient.nj1:~]# facter --version
1.6.0
[root@puppetclient.nj1:~]# facter | grep lsb
lsbdistcodename => Final
lsbdistdescription => CentOS release 5.3 (Final)
lsbdi
On Aug 1, 2011, at 11:30 AM, Daniel Piddock wrote:
> You need to have the lsb_release command installed for the lsb* results
> to appear.
>
> Fedora/Redhat have it in the redhat-lsb package, so it possibly has a
> similar name under CentOS.
Thanks to you and everyone else who pointed it out. Ap
On Aug 2, 2011, at 8:35 PM, Len Rugen wrote:
> In puppet, passwd =>
> "$6$PVOar6qN$WUTN7HG838PnAdzLYCB4HHVSzE/SX100VVdsiIYlBo7TM5c79R38gx942Lkm710v1HMRmS5VnPbHZ2MwY96wt0",
Make sure to use single-quotes, or puppet will try to evaluate variables
"$PVOar", "$WUTN", etc., etc.
D
--
You received
On Jun 21, 2010, at 9:03 PM, Patrick Mohr wrote:
> Anyone have advice? I don't want to put puppet in cron if I can avoid it.
We did this:
service { puppet :
enable => true,
require => [ File['etc-sysconfig-puppet'],File['puppet.conf'] ],
subscribe => [ File['etc-sysconfig-puppet']
Has anyone had any luck in actually disabling certificates entirely. Just trust
the hostname you get from DNS and treat that info as authoritative.
I'm in the Puppet BoF @ LISA, and (essentially) was told that's never going to
happen, even though I have *no* need for the security that the certif
On Nov 11, 2010, at 6:26 PM, donavan wrote:
> From your comment in #3958 I think autosign[1] with "*.domain.tld"
> would work for you.
Nope. Because "autosign" doesn't also "auto-overwrite".
- New Host "foo001.domain.tld" is created
- Certs are exchanged for foo001 with the puppetmaster, life is
On Jan 18, 2011, at 9:38 PM, Bostjan Skufca wrote:
> Would anyone else fancy a wildcard path expansion in module path
> specification?
>
> Example:
>
> modulepath = /etc/puppet/modules/*
>
> ---[ above should expand to this
> equivalent ]--
> [ provided that repo
On Jan 28, 2011, at 2:02 PM, Daniel Pittman wrote:
> Yes. On the other hand, you will very quickly run into a problem:
>
> The puppet master uses the name in the SSL certificate that the client
> supplies as the "node" identifier. So, if you use that wildcard for
> your nodes you will not be ab
I tried looking in the language tutorial for this, but I couldn't find a
reference for how to do it, but I'm sure it must be possible.
So I've got two modules, one for "random_app" and one for "dns_config".
"dns_config" has a file resource "resolv.conf" which is just what the name
implies.
I w
> For what it is worth, for an extremely well known interface like
> /etc/resolv.conf I would subscribe to the file resource, but for most
> cases I prefer to depend on the class. So, I think both answers are
> right, and I didn't explain why I chose the apparently tighter binding
> this time arou
>size = self.logs.size
>if size == 0 then
>system "/usr/lib/nagios/eventhandlers/submit_puppet_result
> " + ip + " puppet-report 0 \"There has been no change\""
>else
>system "/usr/lib/nagios/eventhandlers/submit_puppet_result
> " + ip + " puppet-rep
On Feb 16, 2011, at 2:49 PM, donavan wrote:
> Off hand you may be interested in the metrics portion of the report.
> Something like metrics["changes"][:failed] would give you access to
> any resources that failed to apply.
> I don't recall how/if actual catalog failures are show in reports. A
> sy
On Feb 18, 2011, at 9:29 AM, Felix Frank wrote:
> Ugly workaround: Schedule the restart using atd from within the catalog
> run. (I've used "at now+2min" and it works so far).
Well, that's "less ugly" I suppose than the client just vanishing in the middle
of a catalog-run. :-)
But also my compl
On Feb 18, 2011, at 3:01 PM, Daniel Pittman wrote:
> Just to be specific: puppet doesn't do anything except use those
> standard functions, so we are not actually capable of doing anything
> portable to solve these problems. It really isn't so much "puppet
> ignores the change to..." as "the OS l
FWIW, we use our pre-existing F5s (which we've got for production traffic) so
we carved off a Puppetmaster VIP on those with no problem at all.
D
On Feb 15, 2011, at 9:30 PM, trey85stang wrote:
> while I am at it, what is the best way to load balance between
> multiple servers using passenger?
We've been tracking Bug 3360:
https://projects.puppetlabs.com/issues/3360
which controls what the puppetmaster does when it receives a new CSR for a host
that already exists. Like you and and OP, we have little to no use for the
security aspects of Puppet's CA design, and build in a completely
83 matches
Mail list logo
