https://www.puppet.com/community logo
Join Slack
Powered by
# puppet
  • p
    Copy code
    if has_key($facts, 'ipaddress6_lo') {
    // do_config
  }
  • p
    Copy code
    if has_key($facts, 'ipaddress6_lo') {
    // do_config
  }
  • s
    This message was deleted.
    b
    h
    • 3
    • 3
  • s
    This message was deleted.
    c
    n
    • 3
    • 6
  • n
    hi all, I see following warning in puppetserver.log on puppetserver, what does thi mean ?
    Copy code
    WARN  [qtp576017119-70] [puppetserver] Puppet The node parameter 'fqdn' for node '<http://win1.my-do.int|win1.my-do.int>' was already set to '<http://win1.my-do.int|win1.my-do.int>'. It could not be set to '<http://win1.my-do.int|win1.my-do.int>'
  • h
    Here is the source for TypeFactory: https://github.com/puppetlabs/puppet/blob/main/lib/puppet/pops/types/type_factory.rb - it has lots of methods for creating various puppet data types in Ruby.
  • s
    This message was deleted.
    b
    p
    +2
    • 5
    • 26
  • p
    we are trying to proxy puppet services using cloudflare. we want user machines to reach out to open.puppet.com in public network which will proxy to internal.puppet.com. internal.puppet.com is our puppet server which is accessed only in private network(VPN) The CA is defined as internal.puppet.com and CN are machine1.internal.puppet.com Any suggestions/Help or use case documents is much appreciated.... Thanks in Advance
  • m
    Puppet 7 test setup with 2 servers and 1 server acting as the CA plus puppetdb and postgresql. When I run 
    puppet agent -t
    I get an error stating
    Copy code
    Error: certificate verify failed [self signed certificate in certificate chain for CN=<one of the puppet servers>]
    I’ve recreated all the certificates but the error still persists. How can I troubleshoot this?
  • h
    On the agent, grab the cert from the puppetserver:8140, use 
    openssl
    to look at the issuer field and compare that against what you have in 
    puppet config print localcacert
  • s
    This message was deleted.
    c
    • 2
    • 1
  • s
    This message was deleted.
    m
    r
    • 3
    • 3
  • j
    hello, is there any way to declare hiera data at the node level? or does automatic parameter lookup only work within a class?
  • j
    something like
    Copy code
    nodename.test.internal::service_specific:
 - a
 - b
  • h
    in your controlrepo, you have a hiera.yaml that declares the hierarchy
  • h
    you can set that to whatever you like
    Copy code
    ---
version: 5
defaults:
  datadir: data
  data_hash: yaml_data
hierarchy:
  - name: "hieradata"
    paths:
      - nodes/%{trusted.certname}.yaml
      - roles/%{trusted.extensions.pp_rule}.yaml
      - common.yaml
    and that would let you have a layer for the nodes, the role and a generic one
  • d
    ```- lost a level. (Karma: -74)
  • j
    yup already got that
    Copy code
    paths: 
      - "%{::environment}/%{::fqdn}.yaml"
      - "%{::environment}.yaml"
      - "role/%{node_role}.yaml"
      - "role/%{node_sub_role}.yaml"
      - "common.yaml"
  • h
    so you can put the hieradata for your specific node in the first layer
  • h
    remember that hiera is a key/value pair
  • j
    Copy code
    nodename.test.internal::service_specific:
    is not valid, i am clearly missing something
  • j
    and i dont have class parameters at the node level
  • h
    the key is comprised of module parameters
  • h
    so nodename.test.internal would be the name of a puppet module
  • j
    so I guess my issue is that it isnt clear to me how to link the hiera to the node
  • h
    service_specific is the name of a parameter
  • j
    what i am trying to do is have the hiera avalible at the node scope
  • j
    what i am trying to do is have the hiera avalible at the node scope
  • h
    if you have a node named nodename.test.internal and it is loading the apache class which has a parameter named port, and in your common.yaml you have
    Copy code
    apache::port: 80
    and you want to override it for nodename.test.internal, then you would add to 
    <controlrepo>/data/production/nodename.test.internal.yaml
    the key
    Copy code
    apache::port: 8080
  • j
    i get that part
1...177178179...428Latest