Re: Use Puppet for configuration

From: Sriram Ramkrishna <sri ramkrishna me>
To: Olav Vitters <olav bkor dhs org>
Cc: gnome-infrastructure gnome org
Subject: Re: Use Puppet for configuration
Date: Wed, 24 Jun 2009 09:07:15 -0700

We use cfengine at work, and the cfengine configurations were always put into svn. There was three branches: production, testing, experimental. Changes were put into testing, and when people were sure that the stuff was correct it would be committed to the production branch. The experimental was for testing a bunch of stuff on a number of test machines. It's been working very well for us at work and we have a very large set of machines (about 8000+ machines) where a goof up could mean a delay of a product.

Never tried puppet, but might be interesting to check out. I didn't like cfengine much as it seemed very complex since it had its own built in language. automateit was something I checked out at the Open Source Bridge which had a number of tracks on config management.

Anyways, I wanted to comment since there is a degree of risk when playing around these things.

sri

On Wed, Jun 24, 2009 at 7:11 AM, Olav Vitters <olav bkor dhs org> wrote:

Owen initially setup Puppet. This is a tool which can handle machine
configuration. It is now minimally documented at:
http://live.gnome.org/Sysadmin/Puppet

I've added a node entry for fixed.gnome.org and put it under the control
of Puppet (thanks to Owens instructions).

Whenever existing machines are added you have to be *really* careful,
this as various existing files are replaced. Anyway, if people want to
play with the current config of Puppet, see above URL for how to git
clone the puppet config.

Todo:
1. Add iptables under control of puppet
2. Public IP for the puppet machine
3. Allow non-Red Hat machines to make use of Puppet (see #2)
4. Convert existing machines to Puppet
5. Add config to create sysadmin /etc/passwd + /etc/shadow (etc) entries
from LDAP, if possible
6. Add Fixed postfix change back to puppet (only allow emails from
menubar)

When moving an existing machine:
1. Look at postfix config (/etc/postfix/aliases -> /etc/aliases,
/etc/postfix/main.cf)

--
Regards,
Olav
_______________________________________________
gnome-infrastructure mailing list
gnome-infrastructure gnome org
http://mail.gnome.org/mailman/listinfo/gnome-infrastructure

References:
- Use Puppet for configuration
  - From: Olav Vitters

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]