So… I stopped using the push stuff in puppet a long time ago, because it required the puppet agent to be demonized and yeah, that never worked very well for me. In the puppet space, the best way to solve that would be to use mcollective, it allows you to run puppet agent across a set of your infrastructure. I never had it properly setup and always ended up writing an ssh in a for loop command.
In Chef there are two things… The first is pushy, which, to be honest, I am not super familiar with, but could go get more info for you if you needed it. For me personally, I just use knife ssh with the chef server. Basically, I do `knife ssh 'role:supermarket-app' ‘sudo chef-client'` and it runs the chef client in parallel on those hosts. Basically, I can run commands against any collection of hosts that I can use search to return and that I can log into. And, of course, you could always use the trusty ssh in a for loop too. And of course, since it sounds like you are working in environments like ones I have worked in the past, I just ran `puppet agent -t` as root on the box that I wanted the latest config NOW. — cwebber > On Nov 12, 2014, at 2:39 PM, Edward Ned Harvey (lopser) > <[email protected]> wrote: > >> From: Christopher Webber [mailto:[email protected]] >> >> Full disclosure: I work for Chef now > > Ok, question for you. ;-) The first thing that tipped me toward puppet > instead of chef was the lack of push. Has that changed? Actually - it's a > couple of things on these lines - I don't know what people think they're > using these systems for, but I never have hundreds of identical machines. I > have a hardened base, and then an additional process to configure the web > front end, which will be done on the www machines, and another process to add > the database, and another to add the monitoring system, etc. Sometimes these > are private servers, some development, some public production servers. So it > seems kind of insane that the managed systems would have to call back to the > configuration system - Having the web exposed systems polling a server on my > LAN - I want the configuration system to make outbound connections only. And > I'm paid by the hour, so I need to make a change and push it now - Even if I > weren't paid by the hour, I would expect to see instant gratification for the > work I'm doing, rather than wait for the client agent to poll my > configuration server - How does chef handle this? _______________________________________________ Tech mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
