Displaying 20 results from an estimated 60000 matches similar to: "getting a list of rules out of iptables"
2010 Dec 14
11
Configure firewall with Puppet
Hello Everybody,
We need to open some ports on the target machine, let''s say
694:udp and 3306:tcp
I couldn''t find any documentation how can I do this with Puppet. What
the best way of doing this?
Thank you
Dmytro
--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To post to this group, send email to
2011 Jun 16
7
Problem with usage of arrays
Hi there,
i can''t use array in puppet. Here is my codesnipplet:
$callapidata = [ ''wert1'',''wert2'']
notice $callapidata[1]
A puppetrun results in:
Could not retrieve catalog from remote server: Error 400 on SERVER:
can''t convert String into Integer at /etc/puppet/myenv/modules/
uc4client/manifests/init.pp:41 on node testnode
Thanks for your
2009 Apr 21
1
realizing virtual ssh_authorized_key
I''m trying to use ssh_authorized_key to manage my user''s ssh keys. I
basically have this (across a couple of files):
class user::virtual {
@user { "seph":
ensure => "present",
uid => "2001",
comment => "seph",
home => "/home/seph",
shell =>
2009 Jul 30
7
arrays, loops, etc
Inspired by the recent thread titled "Array input of dirs, ensuring
their existence" I thought I''d write up the problem I''m running into. I
was chatting on irc about it, I don''t think puppet has a clean solution.
Like the other poster, I''m defining an object that takes an array. In
my case, I''m defining gpg keystore, which can contain a
2009 Nov 17
3
SSH Keys
Hi all,
I want to use puppet to distribute keys to multiple users. I wanted
to do something like we have already:
- define a key per real person
- define groups containing several keys, people can be in multiple
groups
- deploy these groups of keys to specific users
however it looks like the ssh_authorized_key resource ties a key and a
user together so it looks like I fall at the first
2006 Jan 05
5
multiple links and nat
Hi, this might be a dumb question, but I''m not finding much
information online.
I''m trying to setup a 2.6 linux box to run nat across multiple
upstream links as a simple way to aggregate bandwidth. I found the
instructions in lartc section 4.2
(http://lartc.org/howto/lartc.rpdb.multiple-links.html) fairly clear
and straightforward. I implemented those, and a couple of trivial
2009 Apr 20
2
CA different than hostname?
I''m trying to setup a puppetmaster, and I''ve got a couple of questions.
The first, is a design question. Since I expect to eventually have
multiple puppetmaster servers, I''d like to name this one to be named
puppet1.example.com. But I''d like my clients to connect via a cname as
puppet.example.com. Is this pretty standard? Is there some more common
way?
2007 Nov 08
7
Best practice for users/groups on solaris
Hi all, I''m a new puppet user and I''m running into some weirdness
around creating users on solaris. (puppet version 0.23.2)
The virt_all_users way of managing users seems pretty reasonable, but
I don''t see how to deal with user specific groups with that.
I have:
class virt_all_users {
@user { "seph":
ensure => "present",
2011 Jun 15
3
Puppet Class execution order
For the life of me I''m not sure why this isn''t working properly but Puppet
appears to execute classes in the order it feels like, not how I''m
specifying it within the language.
I''ve tried the newer sytax
Class[''one''] -> Class[''two'']
Yet, I see Class two get executed first.
I''ve also tried doing it by defining
2007 Dec 05
9
machine network interfaces, dhcpd.conf, and zone files
I''m still thinking about how my puppet deployment will go. Right now,
I''m thinking each of my machines will have their network interfaces
defined/configured by puppet. But, I''d like to generate my zone files
and dhcpd.conf from this data as well.
How do people generally do this? I expect I''ll end up generating the
nodes.pp files from some database, but
2013 Aug 21
11
Confusion with puppetdb (storeconfig) and query database
Hello,
I have configured puppet and puppetdb (storeconfig) with postgresql and the
service run and the collecting are good for example:
I can make query with the next command and responds ok .
[.........................]
[root@master]# curl -X GET -H ''Accept: application/json''
http://127.0.0.1:8080/v2/facts --data-urlencode ''query=["=", "name",
2011 Jun 20
2
Using modules from PuppetForge
Hello All,
New puppet user here. I''ve been able to create and use my own puppet
modules, but I''m at a loss on how to use modules from PuppetForge,
which seem quite a bit more advanced. For example, I''ve installed the
camptocamp/apt module via the command ''puppet-module install
camptocamp/apt'' into /etc/puppet/modules. I then tried to add the
following
2010 Jul 05
5
File-based Distribution, Module Function Logic and Per Setting (Augeas); Which method do you think is best for the env i help to support and why?
I am having a difficult time understanding and determining which
module method is best for the env I help to support.
Overview of systems supported:
-There are 17+ clients.
-4+ envs (dev, stage, beta, prod ..) per client
-Several flavors and versions of OS ( Mostly fedora and centos )
-All are apache, some mongrel and most passenger
-code deployments are capistrano
-configurations are done with
2013 Jun 27
2
IPTables Firewall modules Question
Greetings,
I have a question about "best practices" for the puppet firewall module. I
have pasted my basic config files below and I am curious about a few things.
* The ports that all nodes share in common I am adding to the
modules/my_firewall/manifests/init.pp file, but the ports that are specific
to a node I am adding to the node definition in manifests/site.pp. What
should I do
2012 Feb 15
21
puppetlabs-firewall stages and persistence
Hi all,
I''m attempting to use the puppetlabs-firewall module. In testing,
rules are enabled in a random order, so it seems necessary to utilize
puppet stages to guarantee proper ordering.
I created a module to organize my firewalling. It consists of
localfw::pre to open the INPUT chain for established and related
connections, localfw::default for most normal rules, and localfw::post
to
2010 Feb 11
14
vmwaretools
hi, i am trying to run /usr/bin/vmware-config-tools.pl -d, but i was
end with exec timeout. I cannot find any think on google. Have anyone
experience with this?
It works, when I run it normally from shell.
this is my exec resource.
{ "vmwaretools_config":
subscribe => [ Package["VMwareTools"] ],
refreshonly => true,
path =>
2011 Nov 28
2
Using firewall module, how do I clear iptables before rules are applied?
I am currently using Puppet''s firewall module:
http://forge.puppetlabs.com/puppetlabs/firewall
I am trying to have Puppet flush iptables before it applies firewall
rules. I tried the following:
exec { ''clear-firewall'':
command => ''/sbin/iptables -F'',
refreshonly => true,
}
Firewall {
subscribe =>
2013 May 08
14
PuppetDB: SSL problems
Hi all,
I''m setting up puppetdb to for storing facts et cetera. I installed
puppetdb-1.3.0-1.el6.noarch.rpm on my puppetdb.local host (which is
puppetized). This seems to work, service starts :).
When I edit the settings on my puppetmaster (puppet.local), something goes
wrong. I am following the guide [1]. I put the settings (storeconfigs =
true, storeconfigs_backend=puppetdb) on my
2007 Mar 29
4
wondershaper and dmzs
I have a pretty simple setup. I''ve got a linux nat box, with some
internal hosts. I''ve also got some servers in a dmz. It looks
something like this:
Internet
|
(external network)
| |
| |
linux dmz
nat hosts
|
2012 Mar 12
5
Database and user not created (Puppetlabs mysql module)
Hi everyone,
I am new to Puppet and try to make some simple "automation things".
I have succeed with apache2, ssh modules, but have problems with
Puppetlabs mysql module.
It installs mysql server, changes/creates admin user password, but
does not create database and user.
I cannot find anything wrong in logs (--debug --verbose). I see that
manifests is read, but no db/user in mysql.