Does anyone have the source for a *working* shorewall module? I''ve searched the list and the interwebs and it looks like a few other are having the same problems. Namely: Configuration could not be instantiated: Could not find dependent Exec [concat_/var/lib/puppet/modules/shorewall/policy.d] I see forks on github[1][2] and other places[3][4]. I''ve tried a few but I continue to get something similar to the above error every time (sometimes routestopped.d, sometimes policy.d). I have the common module loaded AFAICT and the concatenated_file define seems to be available. I''m running out of ideas... Scott ----------- [1] http://github.com/duritong/puppet-shorewall/ [2] http://github.com/puzzle/puppet-shorewall/ [3] http://git.black.co.at/?p=module-shorewall;a=summary [4] https://git.puppet.immerda.ch/?p=module-shorewall;a=summary --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
Hi> Does anyone have the source for a *working* shorewall module? I''ve > searched the list and the interwebs and it looks like a few other are > having the same problems. Namely: > > Configuration could not be instantiated: Could not find dependent Exec > [concat_/var/lib/puppet/modules/shorewall/policy.d] > > I see forks on github[1][2] and other places[3][4]. I''ve tried a few > but I continue to get something similar to the above error every time > (sometimes routestopped.d, sometimes policy.d). I have the common > module loaded AFAICT and the concatenated_file define seems to be > available. > > I''m running out of ideas... > Scott > ----------- > [1] http://github.com/duritong/puppet-shorewall/ > [2] http://github.com/puzzle/puppet-shorewall/ > [3] http://git.black.co.at/?p=module-shorewall;a=summary > [4] https://git.puppet.immerda.ch/?p=module-shorewall;a=summaryas I''m involved in 1,2 and 4 I try to answer: 1 and 4 should be nearly identical, 1 is more or less just a mirror of 4. However 4 is the one which should be more uptodate. both (1,2) and 4 are active in productive environments and are working fine. the exec referenced in you''re error sounds like something wrong in the common module. are you importing the common and the shorewall module on top of your site.pp? which common module are you using? I would suggest to use either david''s shorewall and david''s common module together, or mine combined, but not mixed up. can you further check if the common module is doing an alias on a exec in the concatenated_file that an exec named/aliased as above should be generated? these are the only problems I currently can think about. The reason while sometimes another exec might fail, is that ordering in puppet isn''t always the same, if you don''t define any dependecies. which aren''t needed in this case. I never got any answers if people got it working in the past. Would be nice to know what the reason for your problem have been and how it could be fixed. cheers pete --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
>> [4] https://git.puppet.immerda.ch/?p=module-shorewall;a=summary > > as I''m involved in 1,2 and 4 I try to answer: > 1 and 4 should be nearly identical, 1 is more or less just a mirror of 4. > However 4 is the one which should be more uptodate.OK, I''ve just tried the common and shorewall modules from 4 and the problem persists.> both (1,2) and 4 are active in productive environments and are working fine.So it is something I''m doing wrong (this is good to hear but still frustrating).> the exec referenced in you''re error sounds like something wrong in the > common module. > > are you importing the common and the shorewall module on top of your > site.pp?My site.pp begins with the following line: import "modules" I have a modules.pp that has the following lines: import "common" import "shorewall" import "nodes" I''m using it like so (in nodes.pp): class firewall inherits shorewall::debian { ## base interface shorewall::interface { ''virbr1'': zone => ''net''; ''virbr0'': zone => ''loc''; } ... } node ''fw.example.com'' { include firewall }> which common module are you using? I would suggest to use either david''s > shorewall and david''s common module together, or mine combined, but not > mixed up.I''m using the one from 4. Just downloaded it 5mins ago.> can you further check if the common module is doing an alias on a exec in > the concatenated_file that an exec named/aliased as above should be > generated?I believe that is what is happening. The important part of concatenated_file.pp is: $dir_real = $dir ? { '''' => "${name}.d", default => $dir } ... exec { "concat_${name}": command => "/usr/bin/find ${dir_real} -maxdepth 1 -type f ! -name ''*puppettmp'' -print0 | sort -z | xargs -0 cat ${additional_cmd} >| ${name}", refreshonly => true, subscribe => [ File[$dir_real] ], before => File[$name], alias => [ "concat_${dir_real}"] , }> I never got any answers if people got it working in the past. Would be nice > to know what the reason for your problem have been and how it could be > fixed.Don''t worry, I''m pretty determined to solve this problem. :) Thanks for taking the time to help! Scott --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
bump... ideas? On Thu, Feb 5, 2009 at 9:25 AM, Scott Beardsley <sc0ttbeardsley@gmail.com> wrote:>>> [4] https://git.puppet.immerda.ch/?p=module-shorewall;a=summary >> >> as I''m involved in 1,2 and 4 I try to answer: >> 1 and 4 should be nearly identical, 1 is more or less just a mirror of 4. >> However 4 is the one which should be more uptodate. > > OK, I''ve just tried the common and shorewall modules from 4 and the > problem persists. > >> both (1,2) and 4 are active in productive environments and are working fine. > > So it is something I''m doing wrong (this is good to hear but still frustrating). > >> the exec referenced in you''re error sounds like something wrong in the >> common module. >> >> are you importing the common and the shorewall module on top of your >> site.pp? > > My site.pp begins with the following line: > > import "modules" > > I have a modules.pp that has the following lines: > > import "common" > import "shorewall" > import "nodes" > > I''m using it like so (in nodes.pp): > > class firewall inherits shorewall::debian { > ## base interface > shorewall::interface { > ''virbr1'': zone => ''net''; > ''virbr0'': zone => ''loc''; > } > ... > } > > node ''fw.example.com'' { > include firewall > } > >> which common module are you using? I would suggest to use either david''s >> shorewall and david''s common module together, or mine combined, but not >> mixed up. > > I''m using the one from 4. Just downloaded it 5mins ago. > >> can you further check if the common module is doing an alias on a exec in >> the concatenated_file that an exec named/aliased as above should be >> generated? > > I believe that is what is happening. The important part of > concatenated_file.pp is: > > $dir_real = $dir ? { '''' => "${name}.d", default => $dir } > ... > exec { "concat_${name}": > command => "/usr/bin/find ${dir_real} -maxdepth 1 > -type f ! -name ''*puppettmp'' -print0 | sort -z | xargs -0 cat > ${additional_cmd} >| ${name}", > refreshonly => true, > subscribe => [ File[$dir_real] ], > before => File[$name], > alias => [ "concat_${dir_real}"] , > } > >> I never got any answers if people got it working in the past. Would be nice >> to know what the reason for your problem have been and how it could be >> fixed. > > Don''t worry, I''m pretty determined to solve this problem. :) Thanks > for taking the time to help! > > Scott >--~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
Hi> bump... ideas?not really. I never had the problem that puppet isn''t seeing an alias, nor this problem with the shorewall module. Btw: Did you restart once the puppetmaster? Sometimes there is some strange issue, where puppetmaster will ignore changed manifests as they have a typo or so und you''ll have to restart it. And which version are you running? cheers pete --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
AHH HA! I got busy but I just now took another look at this and have
solved my problem. I fixed it by changing the node definition as
follows:
node ''foo.com'' {
include shorewall::debian
}
to:
node ''foo.com'' {
include shorewall
}
I wasn''t creating an instance of the shorewall class (I mistakenly
thought I could just include shorewall::debian). I noticed that
shorewall includes shorewall::debian for me so I changed it and
everything worked like a champ.
Thanks
Scott
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to
puppet-users+unsubscribe@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en
-~----------~----~----~----~------~----~------~--~---