thr3ads.net - Puppet users - [Puppet Users] "Cannot access mount[plugins]" error with mongrel [May 2009]

If this information is useful, please help other people find it:
Share via:

Robin Sheat

2009-May-25 10:15 UTC

[Puppet Users] "Cannot access mount[plugins]" error with mongrel

(resend: I meant to send this to puppet-users rather than -dev, sorry)

Hi, my puppet master is now running behind apache, via mongrel. However one of 
the clients (which is on a different subnet to the others) gives me this 
error:

May 25 21:34:02 puppet puppetmasterd[23792]: (mount[plugins]) *client* cannot 
access /plugins
May 25 21:34:02 puppet puppetmasterd[23792]: Permission denied: Cannot access 
mount[plugins]

I have no idea where it''s getting the information as to what is and is
not
allowed to access the mount from, given it''ll only be seeing 127.0.0.1
for the
clients (I expect.)

Despite this, I''ve put the following in the namespaceauth.conf, but it
makes
no difference. The client that is having the error is on the 10.8.x.x subnet. 
I also tried adding ''allow *'' to everything, but it made no
difference either.

[fileserver]
    allow *.lan
    allow 10.12.0.0/24
    allow 10.8.0.0/24
    allow 127.0.0.1/32

[puppetmaster]
    allow *.lan
    allow 10.12.0.0/24
    allow 10.8.0.0/24
    allow 127.0.0.1/32

[puppetrunner]
    allow puppet.lan

[puppetbucket]
    allow *.lan
    allow 10.12.0.0/24
    allow 10.8.0.0/24
    allow 127.0.0.1/32

[puppetreports]
    allow *.lan
    allow 10.12.0.0/24
    allow 10.8.0.0/24
    allow 127.0.0.1/32

[resource]
    allow puppet.lan

[plugins]
    allow *.lan
    allow 10.12.0.0/24
    allow 10.8.0.0/24
    allow 127.0.0.1/32


-- 
Robin <robin@kallisti.net.nz> JabberID:
<eythian@jabber.kallisti.net.nz>
http://www.kallisti.net.nz/blog       |||       http://identi.ca/eythian

PGP Key 0xA99CEB6D = 5957 6D23 8B16 EFAB FEF8  7175 14D3 6485 A99C EB6D

Robin Sheat

2009-May-25 10:17 UTC

head link

[Puppet Users] Re: "Cannot access mount[plugins]" error with mongrel

On Monday 25 May 2009 22:15:16 Robin Sheat wrote:>   Hi, my puppet master is now running behind apache, via mongrel. However
> one of the clients (which is on a different subnet to the others) gives me
> this error:
Just a followup, if I do things like ''allow all'' and so on,
the puppetmaster
just dies. It claims it''s running, but apache reports:

[Mon May 25 22:10:19 2009] [error] [client 10.8.0.154] (70014)End of file 
found: proxy: error reading status line from remote server 127.0.0.1
[Mon May 25 22:10:19 2009] [error] [client 10.8.0.154] proxy: Error reading 
from remote server returned by /RPC2

there is nothing at all useful in the logs, it just fails. This is quite a bad 
failure mode as there is nothing to indicate what is going on.

-- 
Robin <robin@kallisti.net.nz> JabberID:
<eythian@jabber.kallisti.net.nz>
http://www.kallisti.net.nz/blog       |||       http://identi.ca/eythian

PGP Key 0xA99CEB6D = 5957 6D23 8B16 EFAB FEF8  7175 14D3 6485 A99C EB6D

Puppet users - May 2009 - "Cannot access mount[plugins]" error with mongrel

[Puppet Users] "Cannot access mount[plugins]" error with mongrel

[Puppet Users] Re: "Cannot access mount[plugins]" error with mongrel