Monday, 2009-06-15

[2009/06/15 00:04:54] @ Log started by gepetto
[2009/06/15 00:04:54] @ womble left channel #puppet ("Oooh! Shiny!")
[2009/06/15 00:10:49] @ WALoeIII joined channel #puppet
[2009/06/15 00:30:36] @ Quit: jmeeuwen: Remote closed the connection
[2009/06/15 00:31:07] @ jmeeuwen joined channel #puppet
[2009/06/15 00:45:21] @ Quit: magnachef__: "going, going....gone!"
[2009/06/15 00:49:30] <beawesomeinstead> is there any way to automagically setup a fresh machine to be a puppet client?
[2009/06/15 00:52:14] @ Quit: m6d4: "Leaving."
[2009/06/15 01:06:11] @ andrewcshafer joined channel #puppet
[2009/06/15 01:12:04] @ gaveen_ joined channel #puppet
[2009/06/15 01:12:14] @ M- joined channel #puppet
[2009/06/15 01:12:54] @ Quit: gaveen__: No route to host
[2009/06/15 01:23:59] @ Quit: lak:
[2009/06/15 01:30:42] @ Quit: mfoster: "Leaving."
[2009/06/15 01:30:42] @ mfoster1 joined channel #puppet
[2009/06/15 01:32:39] @ Quit: shake-n-bake:
[2009/06/15 01:40:27] @ Quit: gaveen_: Read error: 104 (Connection reset by peer)
[2009/06/15 01:50:10] @ Quit: mfoster1: Read error: 110 (Connection timed out)
[2009/06/15 02:00:02] @ gaveen_ joined channel #puppet
[2009/06/15 02:10:01] @ mfournier joined channel #puppet
[2009/06/15 02:36:08] @ madrescher joined channel #puppet
[2009/06/15 02:38:07] @ Quit: gaveen_: Connection timed out
[2009/06/15 02:39:05] @ gaveen_ joined channel #puppet
[2009/06/15 02:43:24] @ DavidS joined channel #puppet
[2009/06/15 02:45:20] @ DavidS1 joined channel #puppet
[2009/06/15 02:45:35] @ monzie joined channel #puppet
[2009/06/15 02:50:13] @ pleemans joined channel #puppet
[2009/06/15 02:50:35] @ Robbie_ joined channel #puppet
[2009/06/15 03:06:00] @ Quit: DavidS: Read error: 110 (Connection timed out)
[2009/06/15 03:09:42] @ Quit: Robbie_: Read error: 104 (Connection reset by peer)
[2009/06/15 03:09:54] @ Robbie_ joined channel #puppet
[2009/06/15 03:17:01] @ aymerick joined channel #puppet
[2009/06/15 03:18:58] @ Quit: Djelibeybi: "Leaving"
[2009/06/15 03:25:37] @ Welsh_Dwarf joined channel #puppet
[2009/06/15 03:29:38] @ Innocenti joined channel #puppet
[2009/06/15 03:37:43] @ MattyM joined channel #puppet
[2009/06/15 03:40:14] @ Quit: gaveen_: No route to host
[2009/06/15 03:40:47] @ gaveen_ joined channel #puppet
[2009/06/15 03:43:19] @ Quit: M-: "Leaving"
[2009/06/15 03:46:24] @ lazzurs joined channel #puppet
[2009/06/15 03:50:08] @ Quit: gaveen_: "Enough lurking for now"
[2009/06/15 03:52:10] @ dromero joined channel #puppet
[2009/06/15 03:52:26] <dromero> hello :)
[2009/06/15 03:52:28] <dromero> someone here?
[2009/06/15 03:53:20] <fux> no
[2009/06/15 03:53:24] <dromero> lol
[2009/06/15 03:54:00] <fux> SCNR
[2009/06/15 03:54:10] @ glaw joined channel #puppet
[2009/06/15 03:56:22] @ DavidS1 left channel #puppet ()
[2009/06/15 04:02:31] @ alex___ joined channel #puppet
[2009/06/15 04:11:51] @ Quit: QMan:
[2009/06/15 04:18:57] @ poison joined channel #puppet
[2009/06/15 04:28:02] @ Quit: zipkid: "leaving"
[2009/06/15 04:28:14] @ zipkid joined channel #puppet
[2009/06/15 04:34:33] @ thegcat joined channel #puppet
[2009/06/15 04:42:49] <FiXion> I am about to install augeas to use with puppet 0.24.8
[2009/06/15 04:42:58] <FiXion> should I use the latest 0.5.1 version?
[2009/06/15 04:43:27] <FiXion> I can see that the latest version in both Debian and ubuntu is 0.2.0 for ruby1.8
[2009/06/15 04:43:33] <FiXion> figured there might be a reason
[2009/06/15 04:48:04] <FiXion> it seems libaugeas0 is what I need and it's v0.5.1 in sid :)
[2009/06/15 04:48:10] * FiXion grabs it and builds for hardy
[2009/06/15 04:50:30] @ yumas joined channel #puppet
[2009/06/15 04:55:48] @ nakano_ is now known as nakano
[2009/06/15 04:59:55] <thegcat> DavidS around?
[2009/06/15 05:01:40] @ kolla joined channel #puppet
[2009/06/15 05:07:57] <FiXion> libaugeas is appearently seperate ruby bindings which version isn't tied to augeas
[2009/06/15 05:09:41] @ tim\|macbook joined channel #puppet
[2009/06/15 05:09:53] @ Quit: glut: Read error: 60 (Operation timed out)
[2009/06/15 05:12:05] @ tuf joined channel #puppet
[2009/06/15 05:12:48] <FiXion> anyone have a link to an example of modifying /etc/hosts using augeas type in puppet?
[2009/06/15 05:13:11] * FiXion has come up short with his google foo for now
[2009/06/15 05:14:47] @ glut joined channel #puppet
[2009/06/15 05:15:10] @ aymerick left channel #puppet ()
[2009/06/15 05:16:12] @ HarryCalahan joined channel #puppet
[2009/06/15 05:19:24] @ Quit: glaw: Remote closed the connection
[2009/06/15 05:25:18] @ glaw joined channel #puppet
[2009/06/15 05:45:00] @ marcoecc joined channel #puppet
[2009/06/15 05:53:10] @ tim\|macbook_ joined channel #puppet
[2009/06/15 05:53:12] @ Quit: tim\|macbook: Read error: 104 (Connection reset by peer)
[2009/06/15 05:53:37] @ melopt joined channel #puppet
[2009/06/15 05:56:16] <FiXion> anyone have an example for setting a hostname in /etc/hosts using puppet+augeas?
[2009/06/15 05:56:40] <FiXion> I need one name - to point on different ip addresses - on different hosts
[2009/06/15 05:57:25] <FiXion> so I'd like something like: set "x.x.x.1 myalias" and override any hits for myalias - regardless of the ip
[2009/06/15 05:57:39] <FiXion> and ofcourse it shouldn't edit the file if it's already set correctly
[2009/06/15 05:57:50] @ tim\|macbook joined channel #puppet
[2009/06/15 05:58:14] <Volcane> FiXion: whats wrong with using the host{} type that exists for this reason?
[2009/06/15 05:58:20] @ Quit: tim\|macbook_: Read error: 104 (Connection reset by peer)
[2009/06/15 05:58:38] @ Quit: pinoyskull:
[2009/06/15 05:59:42] <FiXion> Volcane: probably absolutely nothing.. I didn't know it was there..
[2009/06/15 05:59:47] * FiXion goes looking at typereference
[2009/06/15 06:00:34] <FiXion> I'll test it out.
[2009/06/15 06:00:37] <FiXion> thanks
[2009/06/15 06:02:12] @ Quit: andrewcshafer:
[2009/06/15 06:03:15] <FiXion> Volcane: it doesn't remove the old alias :(
[2009/06/15 06:04:00] <FiXion> I now have 2 entries (and on this host with same IP) for the same host
[2009/06/15 06:04:06] @ magick joined channel #puppet
[2009/06/15 06:06:16] <FiXion> now it works.
[2009/06/15 06:06:34] <FiXion> appearently I can't have an alias which wasn't on the original - then it creates a new line instead.
[2009/06/15 06:08:37] @ Quit: magick: Remote closed the connection
[2009/06/15 06:10:57] @ friendly12345 joined channel #puppet
[2009/06/15 06:11:22] @ gsin87 joined channel #puppet
[2009/06/15 06:16:17] @ Quit: mgk: Read error: 113 (No route to host)
[2009/06/15 06:17:05] @ Quit: tim\|macbook:
[2009/06/15 06:17:42] @ QMan joined channel #puppet
[2009/06/15 06:21:10] @ Quit: Welsh_Dwarf: Remote closed the connection
[2009/06/15 06:21:24] @ Quit: dromero: "Lost terminal"
[2009/06/15 06:22:52] @ Quit: pugnacity: Read error: 104 (Connection reset by peer)
[2009/06/15 06:25:03] @ pugnacity joined channel #puppet
[2009/06/15 06:27:54] @ monzie\|work joined channel #puppet
[2009/06/15 06:32:21] @ briandquinn joined channel #puppet
[2009/06/15 06:44:31] @ abien joined channel #puppet
[2009/06/15 06:46:39] @ Quit: monzie: Read error: 110 (Connection timed out)
[2009/06/15 06:47:23] @ Quit: abien: Client Quit
[2009/06/15 06:48:04] @ abien joined channel #puppet
[2009/06/15 07:10:02] @ alho joined channel #puppet
[2009/06/15 07:11:53] <alho> hi,
[2009/06/15 07:12:55] <alho> i'm trying to configure puppet for sles10/sles11. controling files and permissions works very well so far. but now there is a prob
[2009/06/15 07:13:03] <alho> lem: i can't install software with puppet.
[2009/06/15 07:13:25] <alho> if i write the following: package { $package: ensure => installed }
[2009/06/15 07:13:34] <alho> i get the following error:
[2009/06/15 07:13:45] <alho> err: //Node[webserver]/apache/Package[apache]/ensure: change from absent to present failed: RPMs must specify a package source at /etc/puppet/manifests/site.pp:70
[2009/06/15 07:14:26] <alho> after that i tried to use the zypper and the rug provider for installing software both don't work
[2009/06/15 07:14:40] <alho> does anyone have an idea what i can do to solve this problem?
[2009/06/15 07:15:31] <HarryCalahan> alho: you could try to configure your sles to use rpm and yum for package management.
[2009/06/15 07:16:36] <alho> HarryCalahan: and how can i do that? or where should i start?
[2009/06/15 07:17:09] <HarryCalahan> alho: google. i haven't seen a suse since 5.3. Sorry.
[2009/06/15 07:17:15] <alho> :-)
[2009/06/15 07:17:17] <henk> can anyone point me to a good recipe using 'define' and 'template'?
[2009/06/15 07:19:44] <HarryCalahan> henk: you mean define a variable and then access it inside a template?
[2009/06/15 07:20:31] <henk> HarryCalahan: with definition i mean this: http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial#definitions
[2009/06/15 07:21:18] <HarryCalahan> henk: ok. and what is the relation to a template
[2009/06/15 07:21:40] <Dyresen> henk: you can use templates in defines just like would elsewere.
[2009/06/15 07:22:33] <henk> HarryCalahan: i need to provide a file to a client. i want to use a template for that file since (it's xml and) i need to put an ip in one of the tags. that's what i want to use templating for. i can't get the ip from facter but only from a human being so i thought definitions were a good way to solve that. i'm not sure if i made myself clear :)
[2009/06/15 07:23:12] <henk> Dyresen: so i'd make a 'define' and in there a 'file' resource with 'content => template("bla.erb")'?
[2009/06/15 07:23:20] <HarryCalahan> henk: you can access any variable from inside a template.
[2009/06/15 07:24:08] <henk> correction: i need to provide the (roughly, apart from that ip) same file to many clients. the ip is always different.
[2009/06/15 07:24:36] <HarryCalahan> henk: i'll strip an example. standby
[2009/06/15 07:25:07] <QMan> henk - does this help? http://www.devco.net/pubwiki/Puppet/GettingStarted/5
[2009/06/15 07:25:39] @ tim\|macbook joined channel #puppet
[2009/06/15 07:27:53] <HarryCalahan> henk: http://pastie.org/512373
[2009/06/15 07:28:14] <Dyresen> henk: quick and dirty example:
[2009/06/15 07:28:16] <Dyresen> http://pastie.org/512374
[2009/06/15 07:29:04] <henk> wow, yes, perfect, just what i had in mind :)
[2009/06/15 07:29:07] <HarryCalahan> hehe, two examples right behind each other.
[2009/06/15 07:29:18] <henk> thanks to all of you HarryCalahan, Dyresen and QMan! :)
[2009/06/15 07:29:33] <henk> HarryCalahan: even on the same pastebin 'g'
[2009/06/15 07:29:48] <HarryCalahan> henk: and only one number apart.
[2009/06/15 07:29:56] <Dyresen> lol
[2009/06/15 07:30:04] <QMan> do I get points for bucking the trend? :)
[2009/06/15 07:30:54] <HarryCalahan> QMan: you post ist NaN ;)
[2009/06/15 07:31:35] @ Quit: monzie\|work:
[2009/06/15 07:32:43] @ Quit: gsin87: "ChatZilla 0.9.84 [Firefox 3.0.10/2009042708]"
[2009/06/15 07:33:12] <QMan> HarryCalahan: dang :)
[2009/06/15 07:33:39] <henk> is there a reference for the syntax of 'define'?
[2009/06/15 07:35:06] <Dyresen> http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial#definitions
[2009/06/15 07:35:13] @ Quit: poison: Remote closed the connection
[2009/06/15 07:35:31] @ benoit1 left channel #puppet ()
[2009/06/15 07:35:47] <henk> Dyresen: 'reference' != simple example ;)
[2009/06/15 07:36:06] <henk> i remember seeing a default value for the variables in one example somewhere...
[2009/06/15 07:36:50] <henk> can i use 'define bla( bla = "hons", foo = $ipaddress_eth0 )'?
[2009/06/15 07:37:52] <Dyresen> Never tried having facter values in the construction, but try it out.
[2009/06/15 07:38:19] @ Quit: ckrough_: Read error: 110 (Connection timed out)
[2009/06/15 07:38:25] <HarryCalahan> henk: you can at least concat them inside the define, as facter variables should be available
[2009/06/15 07:38:58] <Dyresen> bla='hons' is all good
[2009/06/15 07:39:19] <HarryCalahan> it should be $bla='hons'
[2009/06/15 07:39:37] <henk> right, sorry, that's what i have in fact
[2009/06/15 07:39:58] <Dyresen> The way I do it is to set value to default if needed and then run a case statement inside the define.
[2009/06/15 07:40:31] <Dyresen> That way you have "optional" arguments :)
[2009/06/15 07:41:20] <HarryCalahan> http://pastie.org/512390
[2009/06/15 07:47:51] @ Quit: friendly12345: "Leaving."
[2009/06/15 07:51:24] <Dyresen> henk: I recommend reading "pulling strings with puppet" it covers these kind of things very well.
[2009/06/15 07:54:38] @ jmarki joined channel #puppet
[2009/06/15 08:03:53] @ Quit: cwebber:
[2009/06/15 08:08:05] @ D-CoDe joined channel #puppet
[2009/06/15 08:08:10] @ Quit: tim\|macbook:
[2009/06/15 08:16:07] @ Quit: D-CoDe: "Leaving."
[2009/06/15 08:21:17] <henk> Dyresen: i think i've heard of that... thanks
[2009/06/15 08:25:01] @ lludwig joined channel #puppet
[2009/06/15 08:25:07] @ lludwig left channel #puppet ()
[2009/06/15 08:31:24] @ ctso joined channel #puppet
[2009/06/15 08:32:07] @ rsquared joined channel #puppet
[2009/06/15 08:33:17] @ mfoster joined channel #puppet
[2009/06/15 08:36:45] @ Quit: fujin:
[2009/06/15 08:41:20] @ Quit: mfoster: "Leaving."
[2009/06/15 08:43:03] @ skiold joined channel #puppet
[2009/06/15 08:50:40] @ Bass10 joined channel #puppet
[2009/06/15 08:55:05] @ devicenull__ joined channel #puppet
[2009/06/15 08:56:27] @ lak joined channel #puppet
[2009/06/15 09:01:46] @ malraid joined channel #puppet
[2009/06/15 09:02:51] @ matty91 joined channel #puppet
[2009/06/15 09:04:05] @ d3vilb0x joined channel #puppet
[2009/06/15 09:04:30] @ mccune joined channel #puppet
[2009/06/15 09:05:34] @ Quit: lak:
[2009/06/15 09:08:30] @ Quit: abien:
[2009/06/15 09:12:28] @ Quit: devicenull_: Read error: 110 (Connection timed out)
[2009/06/15 09:13:25] @ pvenkata joined channel #puppet
[2009/06/15 09:14:43] @ Quit: jmarki: "Leaving"
[2009/06/15 09:16:06] <pvenkata> Hello all, I am new to Puppet and having an issue with Mongrel+Apache setup.... Is this the right place to ask for help?
[2009/06/15 09:19:56] <Volcane> 1st week july
[2009/06/15 09:19:58] <Volcane> oops...
[2009/06/15 09:20:23] <HarryCalahan> Volcane: right thats the release week.
[2009/06/15 09:22:02] <Volcane> heh, organising a trip to south afirca :P
[2009/06/15 09:22:24] <HarryCalahan> you won, much nicer thing to organize. want to change?
[2009/06/15 09:23:02] @ cwebber joined channel #puppet
[2009/06/15 09:23:09] @ joe-mac joined channel #puppet
[2009/06/15 09:25:30] @ pearcec left channel #puppet ()
[2009/06/15 09:25:47] @ Quit: vinci: Read error: 113 (No route to host)
[2009/06/15 09:26:58] @ phantez joined channel #puppet
[2009/06/15 09:29:05] @ Quit: tim\|imac:
[2009/06/15 09:30:27] @ Quit: Mandus: Read error: 60 (Operation timed out)
[2009/06/15 09:31:05] @ Quit: alho: "leaving"
[2009/06/15 09:31:33] @ tim\|imac joined channel #puppet
[2009/06/15 09:31:52] @ kngus joined channel #puppet
[2009/06/15 09:32:07] @ Mandus joined channel #puppet
[2009/06/15 09:33:11] @ coofamani joined channel #puppet
[2009/06/15 09:33:33] @ vinci joined channel #puppet
[2009/06/15 09:41:25] @ notbrien joined channel #puppet
[2009/06/15 09:42:44] @ Quit: themurph: "Leaving"
[2009/06/15 09:44:25] @ Quit: cwebber:
[2009/06/15 09:49:48] @ Quit: QMan:
[2009/06/15 09:57:51] @ Quit: mccune: "Leaving."
[2009/06/15 09:58:05] @ mccune joined channel #puppet
[2009/06/15 09:59:24] @ andrewcshafer joined channel #puppet
[2009/06/15 09:59:28] <pvenkata> Hello, My puppet master (Apache+mongrel+puppet) is unable to receive client requests for certificate creation. How do I fix this?
[2009/06/15 10:00:56] @ cwebber joined channel #puppet
[2009/06/15 10:04:54] @ delewis joined channel #puppet
[2009/06/15 10:07:04] @ bobbyz joined channel #puppet
[2009/06/15 10:13:41] @ Quit: pleemans: "Ex-Chat"
[2009/06/15 10:15:04] @ erm_ joined channel #puppet
[2009/06/15 10:17:35] <Telmo> if your puppetmaster able to receive the certificates when running on its own?
[2009/06/15 10:17:45] <Telmo> s/if/is/
[2009/06/15 10:18:17] @ Quit: thegcat:
[2009/06/15 10:20:53] @ rellis__ is now known as rellis_
[2009/06/15 10:21:34] <pvenkata> Telmos - Yes, When running on it's own, it can receive the client requests
[2009/06/15 10:21:58] <Telmo> What's the error you get in the client when running it on debug mode?
[2009/06/15 10:24:24] <HarryCalahan> permission problem? starting apache/mongrel most likely uses a different user then webrick.
[2009/06/15 10:24:49] <pvenkata> warning: peer certificate won't be verified in this SSL session
[2009/06/15 10:24:49] <pvenkata> err: Could not call puppetca.getcert: #<RuntimeError: HTTP-Error: 502 Proxy Error>
[2009/06/15 10:24:49] <pvenkata> err: Could not request certificate: Certificate retrieval failed: HTTP-Error: 502 Proxy Error
[2009/06/15 10:24:50] @ pleemans joined channel #puppet
[2009/06/15 10:25:11] <pvenkata> These are the errors I get on my client when I ask for certificate
[2009/06/15 10:25:21] <joe-mac> look in apache's error logs
[2009/06/15 10:25:32] <joe-mac> if you don't see much change loglevel to debug and get ready for data-fun
[2009/06/15 10:26:10] <pvenkata> [Mon Jun 15 09:33:02 2009] [error] [client 10.104.194.254] proxy: Error reading from remote server returned by /RPC2
[2009/06/15 10:26:10] <pvenkata> [Mon Jun 15 09:51:02 2009] [error] [client 10.104.194.254] proxy: error reading status line from remote server localhost
[2009/06/15 10:26:18] <Telmo> pvenkata: did you use the apache conf from the Wiki? http://reductivelabs.com/trac/puppet/wiki/UsingMongrel
[2009/06/15 10:26:33] <pvenkata> These are the errors I found in the apache error logs.
[2009/06/15 10:26:48] <pvenkata> Yes, I followed the wiki for the apache config
[2009/06/15 10:27:50] <joe-mac> pvenkata: what do you use to connect apache to mongrel?
[2009/06/15 10:28:06] <joe-mac> the balancer module?
[2009/06/15 10:28:14] <pvenkata> Yes, the balancer module
[2009/06/15 10:30:14] <Telmo> I am not too familiar with mongrel + apache, I use passenger + apache. :(
[2009/06/15 10:30:36] <joe-mac> what happens when you do something like this from a client openssl s_client -connect puppet:8140
[2009/06/15 10:31:14] <pvenkata> will try that now
[2009/06/15 10:31:49] <joe-mac> atre you sure you have your mod_balancer pointed at a running instance of puppet with mongrel? Is servertype set to mongrel in puppet.conf? you probably want to pastie teh apache config and the puppet config...
[2009/06/15 10:32:28] <pvenkata> ProxyRequests Off
[2009/06/15 10:32:29] <pvenkata> <Proxy balancer://myservername.com>
[2009/06/15 10:32:29] <pvenkata> BalancerMember http://localhost:18140 keepalive=on max=2 retry=30
[2009/06/15 10:32:29] <pvenkata> </Proxy>
[2009/06/15 10:32:29] <pvenkata> <VirtualHost *:8140>
[2009/06/15 10:32:30] <pvenkata> SSLEngine on
[2009/06/15 10:32:31] <pvenkata> SSLCipherSuite SSLv2:-LOW:-EXPORT:RC4+RSA
[2009/06/15 10:32:33] <pvenkata> SSLCertificateFile /etc/opt/csw/puppet/ssl/certs/myservername.com.pem
[2009/06/15 10:32:35] <pvenkata> SSLCertificateKeyFile /etc/opt/csw/puppet/ssl/private_keys/myservername.com.pem
[2009/06/15 10:32:36] <HarryCalahan> pvenkata: pastie.org!
[2009/06/15 10:32:37] <pvenkata> SSLCertificateChainFile /etc/opt/csw/puppet/ssl/ca/ca_crt.pem
[2009/06/15 10:32:39] <pvenkata> SSLCACertificateFile /etc/opt/csw/puppet/ssl/ca/ca_crt.pem
[2009/06/15 10:32:41] <pvenkata> SSLCARevocationFile /etc/opt/csw/puppet/ssl/ca/ca_crl.pem
[2009/06/15 10:32:41] <joe-mac> oh jesus
[2009/06/15 10:32:43] <pvenkata> SSLVerifyClient optional
[2009/06/15 10:32:45] <pvenkata> SSLVerifyDepth 1
[2009/06/15 10:32:47] <pvenkata> SSLOptions +StdEnvVars
[2009/06/15 10:32:49] <pvenkata> RequestHeader set X-Client-DN %{SSL_CLIENT_S_DN}e
[2009/06/15 10:32:50] @ jmarki joined channel #puppet
[2009/06/15 10:32:51] <pvenkata> RequestHeader set X-Client-Verify %{SSL_CLIENT_VERIFY}e
[2009/06/15 10:32:53] <pvenkata> <Location />
[2009/06/15 10:32:53] <joe-mac> <sol rosenberg> oh jesus </sol rosenberg>
[2009/06/15 10:32:55] <pvenkata> SetHandler balancer-manager
[2009/06/15 10:32:57] <pvenkata> Order allow,deny
[2009/06/15 10:32:59] <pvenkata> Allow from all
[2009/06/15 10:33:01] <pvenkata> </Location>
[2009/06/15 10:33:03] <pvenkata> ProxyPass / balancer://myservername.com:8140/
[2009/06/15 10:33:05] <pvenkata> ProxyPassReverse / balancer://myservername.com:8140/
[2009/06/15 10:33:07] <pvenkata> ProxyPreserveHost on
[2009/06/15 10:33:09] <pvenkata> </VirtualHost>
[2009/06/15 10:33:19] <joe-mac> pvenkata: please, use pastie.org
[2009/06/15 10:33:33] <HarryCalahan> at least now we know that there is no autokick for pasting in this channel.
[2009/06/15 10:33:40] @ Quit: fsweetser: Remote closed the connection
[2009/06/15 10:33:41] <joe-mac> rofl, yea
[2009/06/15 10:34:35] <pvenkata> Sorry for the paste, I pasted it on pastie.org now
[2009/06/15 10:35:22] @ poison joined channel #puppet
[2009/06/15 10:35:23] <pvenkata> http://pastie.org/512536
[2009/06/15 10:36:31] <joe-mac> pvenkata: also pastie the following: your puppet.conf, and the output of "netstat -tnap" <-- that command might be different on solaris, but on gnu netstat that will give you tcp sockets, no name resolution, and the program running on the socket
[2009/06/15 10:37:18] <HarryCalahan> joe-mac: netstat -tnlp (to get only listening sockets)
[2009/06/15 10:37:34] <joe-mac> yea there ya go, always forget to switch out l and a
[2009/06/15 10:37:59] @ lak joined channel #puppet
[2009/06/15 10:38:41] <pvenkata> puppet.conf - http://pastie.org/512548
[2009/06/15 10:39:36] @ gebi joined channel #puppet
[2009/06/15 10:40:53] <malraid> i have a quick question, when the puppetd is running, how often does it check to see if changes to policies have been made?
[2009/06/15 10:41:22] <Telmo> 180 seconds is the default
[2009/06/15 10:41:32] <Telmo> or 30 minutes
[2009/06/15 10:41:44] <Telmo> not 180 seconds :D
[2009/06/15 10:41:51] <joe-mac> 1800, you meant
[2009/06/15 10:41:52] <pvenkata> Listen sockets - http://pastie.org/512553
[2009/06/15 10:41:55] <Telmo> yah
[2009/06/15 10:42:12] <joe-mac> i would say this is a problem .18140 .* 0 0 49152 0 LISTEN .18140 .* 0 0 49152 0 LISTEN
[2009/06/15 10:42:14] <Telmo> sorry I haven't had coffee yet
[2009/06/15 10:42:19] <joe-mac> you've got two things listening on the same socket
[2009/06/15 10:42:29] <joe-mac> might not be the problem, but i wouldn't say that's normal
[2009/06/15 10:42:55] <joe-mac> in solaris, i'm not sure how, but in linux with lsof or netstat you can see what program is on what tcp port
[2009/06/15 10:43:02] <pvenkata> openssl comd o/p - http://pastie.org/512557
[2009/06/15 10:43:04] <realist> joe-mac: you'd need to grep for LISTEN on solaris
[2009/06/15 10:43:05] <joe-mac> my solaris books are at home since we don't use it here
[2009/06/15 10:43:23] <pvenkata> Let me verify if any other process is using 18140
[2009/06/15 10:43:25] <Telmo> solaris doesn't have lsof installed, there are packages outthere to install it though
[2009/06/15 10:43:32] <realist> It doesn't have a -l switch, IIRC
[2009/06/15 10:43:47] <realist> You're better off using DTrace on Solaris
[2009/06/15 10:44:08] <joe-mac> isn't dtrace kind of ahh, a little much to bust out just to find out what program is on wh at port?
[2009/06/15 10:44:16] <Telmo> yeah
[2009/06/15 10:44:49] <Telmo> if he is having issues figuring out whats listening where, DTrace will send his head for a quick spin
[2009/06/15 10:45:46] <pvenkata> 18140 is in use ny puppetmasterd alone
[2009/06/15 10:45:57] @ gazzerh joined channel #puppet
[2009/06/15 10:46:17] <joe-mac> pvenkata: did you start two puppetmasterd's
[2009/06/15 10:47:12] <pvenkata> No, only one. I think it's the default behavior of Solaris to show 2 listens
[2009/06/15 10:48:08] @ ctso1 joined channel #puppet
[2009/06/15 10:49:07] @ scylla joined channel #puppet
[2009/06/15 10:49:22] <Telmo> mine only shows one
[2009/06/15 10:50:14] @ Quit: scylla: Client Quit
[2009/06/15 10:50:14] <Telmo> nm, I have a few services with the same port listed twice
[2009/06/15 10:50:33] <Telmo> I'll shutup now and go get some coffee
[2009/06/15 10:51:00] <HarryCalahan> Telmo: and then? four ports?
[2009/06/15 10:52:13] @ flakrat joined channel #puppet
[2009/06/15 10:53:40] @ alfism joined channel #puppet
[2009/06/15 10:54:27] @ MaGicKanGaRoo joined channel #puppet
[2009/06/15 10:55:44] <joe-mac> lol, idk makes NO sense to me but IANASA
[2009/06/15 10:57:17] <HarryCalahan> maybe part of the threads
[2009/06/15 10:58:41] @ Quit: rsquared: "Leaving"
[2009/06/15 11:00:49] <joe-mac> pvenkata: so i see from th at output your certificate is not from puppet.yourdomain.com.... are your nodes trying to connect to puppet.yourdomain.com?
[2009/06/15 11:02:03] <malraid> Telmo and joe-mac: thanks !!
[2009/06/15 11:02:36] @ Quit: andrewcshafer:
[2009/06/15 11:03:08] @ coofamani left channel #puppet ()
[2009/06/15 11:03:46] @ Quit: ctso: Read error: 110 (Connection timed out)
[2009/06/15 11:04:22] @ ckrough joined channel #puppet
[2009/06/15 11:04:31] @ Quit: Robbie_: Remote closed the connection
[2009/06/15 11:05:23] <jbk> anyone used puppet with zones on solaris 10+?
[2009/06/15 11:05:59] <joe-mac> malraid: 9 was unaware i helped you, but ok no problem have a great day lol
[2009/06/15 11:06:04] <joe-mac> s/9/i
[2009/06/15 11:06:49] <Volcane> lsof can show who owns what sockets
[2009/06/15 11:09:42] <pvenkata> jbk - I am trying to use Puppet on a Solaris 10 Zone
[2009/06/15 11:09:47] @ Quit: pleemans: Read error: 110 (Connection timed out)
[2009/06/15 11:10:04] <jbk> pvenkata: do you have multiple IPs assigned to a zone?
[2009/06/15 11:10:16] <pvenkata> jbk - no, only 1 IP
[2009/06/15 11:10:23] <jbk> oh hrm..
[2009/06/15 11:10:32] <jbk> i think there's a bug when there's multiple ips on a zone
[2009/06/15 11:11:37] <pvenkata> joe-mac - Does the name of the master need to be puppet.*.com? Can't it be from x.y.z.com? I mean does the master's name need to be "puppet"?
[2009/06/15 11:11:59] <joe-mac> it can be whatever pvenkata, except you need to do some configuration and ensure things are right
[2009/06/15 11:12:00] <Volcane> pvenkata: no, but it makes a lot of things simpler
[2009/06/15 11:12:05] <jbk> pvenkata: that's just the default.. IIRC, you can change it in puppet.conf
[2009/06/15 11:12:11] <joe-mac> yea, i really recommend using 'puppet'
[2009/06/15 11:12:16] <joe-mac> just makes life easier for all involved
[2009/06/15 11:12:29] <jbk> but being the default, it has the nice feature of not needing a puppet.conf on the clients (or an empty one)
[2009/06/15 11:12:32] <pvenkata> Ok, Will make that change and try again
[2009/06/15 11:12:34] <Volcane> pvenkata: ideally make it a cname regardless, cos if you ever change the master and get a new hostname, all ssl certs need to be redone
[2009/06/15 11:13:28] <pvenkata> volcane - Point noted.
[2009/06/15 11:13:52] <pvenkata> Any other changes that I need to make before I test again?
[2009/06/15 11:14:16] @ D-CoDe joined channel #puppet
[2009/06/15 11:14:47] * HarryCalahan never ties services to hostnames. always a cname
[2009/06/15 11:15:44] @ matty91_ joined channel #puppet
[2009/06/15 11:18:50] @ Quit: HarryCalahan: "."
[2009/06/15 11:19:02] @ fsweetser joined channel #puppet
[2009/06/15 11:19:08] @ Quit: D-CoDe: Read error: 104 (Connection reset by peer)
[2009/06/15 11:19:55] @ andrewcshafer joined channel #puppet
[2009/06/15 11:25:57] @ d3vilb0x_ joined channel #puppet
[2009/06/15 11:26:47] @ Quit: MaGicKanGaRoo: Remote closed the connection
[2009/06/15 11:30:08] @ Quit: matty91: Read error: 110 (Connection timed out)
[2009/06/15 11:30:25] @ Quit: madrescher: Read error: 110 (Connection timed out)
[2009/06/15 11:32:41] @ madrescher joined channel #puppet
[2009/06/15 11:37:22] @ D-CoDe joined channel #puppet
[2009/06/15 11:42:32] @ Quit: d3vilb0x: Read error: 110 (Connection timed out)
[2009/06/15 11:45:56] @ Quit: d3vilb0x_: Remote closed the connection
[2009/06/15 11:46:07] @ d3vilb0x joined channel #puppet
[2009/06/15 11:52:02] @ tecto joined channel #puppet
[2009/06/15 11:52:26] @ Quit: lak:
[2009/06/15 11:54:02] @ lak joined channel #puppet
[2009/06/15 11:54:42] @ Quit: alfism: "Connection reset by beer"
[2009/06/15 11:54:55] @ Quit: Innocenti: "leaving"
[2009/06/15 11:56:49] @ rsquared joined channel #puppet
[2009/06/15 11:57:35] @ Quit: rsquared: Client Quit
[2009/06/15 11:58:31] @ shake-n-bake joined channel #puppet
[2009/06/15 11:59:25] @ skiold left channel #puppet ()
[2009/06/15 11:59:52] @ claymation joined channel #puppet
[2009/06/15 12:01:40] <pvenkata> Hello all, I changed the master's name to "puppet", restarted puppetmasterd and apache on the master, and from a new client, I tried to get the cert and I get the same error.
[2009/06/15 12:01:57] <pvenkata> err: Could not call puppetca.getcert: #<RuntimeError: HTTP-Error: 502 Proxy Error>
[2009/06/15 12:01:57] <pvenkata> err: Could not request certificate: Certificate retrieval failed: HTTP-Error: 502 Proxy Error
[2009/06/15 12:03:22] <Volcane> what does your webserves log say
[2009/06/15 12:03:27] @ Quit: shake-n-bake: Client Quit
[2009/06/15 12:04:27] @ shake-n-bake joined channel #puppet
[2009/06/15 12:05:36] <pvenkata> [Mon Jun 15 12:03:46 2009] [error] [client 10.104.195.210] proxy: error reading status line from remote server localhost
[2009/06/15 12:05:36] <pvenkata> [Mon Jun 15 12:03:46 2009] [error] [client 10.104.195.210] proxy: Error reading from remote server returned by /RPC2
[2009/06/15 12:05:38] @ Quit: WALoeIII: Read error: 60 (Operation timed out)
[2009/06/15 12:06:13] @ Quit: MattyM: "ta ta"
[2009/06/15 12:06:20] <Volcane> and any errors in your syslog from puppetmasterd?
[2009/06/15 12:08:01] <pvenkata> none
[2009/06/15 12:08:26] <Volcane> are you just starting out with puppet or already have loads of clients?
[2009/06/15 12:09:28] @ Quit: matty91_:
[2009/06/15 12:09:42] @ matty91 joined channel #puppet
[2009/06/15 12:10:09] <pvenkata> Just starting
[2009/06/15 12:10:21] <pvenkata> no production clients yet
[2009/06/15 12:10:36] <Volcane> so why do you start out with the complex setup instead of the default webrick server?
[2009/06/15 12:11:15] <pvenkata> I tried the webrick server, but I have a dir of ~ 100 MB, and file transfers were timing out
[2009/06/15 12:11:28] <pvenkata> so, thought of moving to mongrel instead
[2009/06/15 12:11:40] <Volcane> no serving ~100meg with puppet is just a bad idea at present
[2009/06/15 12:11:45] <Volcane> regardless of frontend server
[2009/06/15 12:12:38] <pvenkata> I read somewhere that mongrel can be used for better file transfers
[2009/06/15 12:12:47] <pvenkata> so, was giving it a try
[2009/06/15 12:13:05] <pvenkata> What are the workarounds available for me?
[2009/06/15 12:13:09] <fsweetser> mongrel is better than webbrick
[2009/06/15 12:13:26] <fsweetser> however, there are some serious inefficiencies in puppetmaster itself that cause problems serving large files
[2009/06/15 12:13:38] <fsweetser> it should be fixed for real in 0.25
[2009/06/15 12:13:38] <pvenkata> ok...
[2009/06/15 12:13:46] <Volcane> pvenkata: the problem is in 0.24.x puppet will encode each file in a SOAP response - so each file becomes a huge load of XML encoded junk, which is very heavy, timeconsuming and just overall shit.
[2009/06/15 12:14:02] <pvenkata> ah, ok, got it
[2009/06/15 12:14:05] <fsweetser> until then, the best workarounds are to either use an exec that does rsync or something similar, or package up the files and use rpm/dpkg as appropriate
[2009/06/15 12:14:10] <Volcane> pvenkata: in future versions it will use a more traditional approach to file serving, but for now puppet isnt a file server for bulk things, its for config management
[2009/06/15 12:14:34] <pvenkata> so, the 0.25 beta that came out today, Can I give it a try?
[2009/06/15 12:15:06] <Volcane> you could
[2009/06/15 12:15:09] <Volcane> what is in this directory?
[2009/06/15 12:16:18] @ Quit: gazzerh: "This computer has gone to sleep"
[2009/06/15 12:16:45] <pvenkata> One file (weblogic.jar) is around 75 MB and some 30 small files, ~ 1 MB each
[2009/06/15 12:16:59] <Volcane> ah
[2009/06/15 12:17:06] <Volcane> see you really should be using packages for this
[2009/06/15 12:17:08] <pvenkata> The 30 smalls go thur fine, but this 75 MB blocks
[2009/06/15 12:17:09] <Volcane> and a proper package manager
[2009/06/15 12:17:21] <Volcane> rather than let puppet manage 100s of files, thats the correct approach
[2009/06/15 12:17:54] <pvenkata> Volcane - Good idea, point noted.
[2009/06/15 12:18:09] @ Quit: erm_: "leaving"
[2009/06/15 12:18:45] <pvenkata> Ok All, Thank you very much for your help. You were very responsive and very helpful. Appreciate all the hardwork you guys are putting in for making Puppet work.
[2009/06/15 12:19:39] <Volcane> np :)
[2009/06/15 12:19:54] <pvenkata> Good Day everyone, Bye
[2009/06/15 12:20:02] @ Quit: pvenkata: "Nettalk6 - www.ntalk.de"
[2009/06/15 12:22:50] @ mfoster joined channel #puppet
[2009/06/15 12:24:11] @ gaveen joined channel #puppet
[2009/06/15 12:25:58] @ Quit: D-CoDe: Read error: 104 (Connection reset by peer)
[2009/06/15 12:26:50] @ WALoeIII joined channel #puppet
[2009/06/15 12:32:14] @ pleemans joined channel #puppet
[2009/06/15 12:32:18] @ Quit: shake-n-bake:
[2009/06/15 12:35:10] @ Quit: alex___: Remote closed the connection
[2009/06/15 12:36:20] @ D-CoDe joined channel #puppet
[2009/06/15 12:38:12] @ Quit: D-CoDe: Client Quit
[2009/06/15 12:38:20] @ alfism joined channel #puppet
[2009/06/15 12:38:58] @ Quit: glaw: ""Between two evils, I always pick the one I never tried before" Mae West"
[2009/06/15 12:52:04] @ fzzzt joined channel #puppet
[2009/06/15 12:52:35] <Telmo> for environments, can you force a client into an specific environment from the server or only the client can identify itself as part of that environment?
[2009/06/15 12:52:41] <fzzzt> Do I have to enable something to create parent directories when I create a child directory?
[2009/06/15 12:53:03] <Telmo> fzzzt: Puppet doesn't create the parent directories
[2009/06/15 12:53:07] <Volcane> fzzzt: you need file{} resources for everything
[2009/06/15 12:53:25] <fzzzt> ok, so it shouldn't be a problem to have file{}s for /a and /a/b and /a/b/c?
[2009/06/15 12:53:30] <Volcane> fzzzt: file{["/some", "/some/long", "/some/long/dir"]: ensure => directory} is a common shorthand
[2009/06/15 12:53:35] <fzzzt> ok
[2009/06/15 12:53:39] @ Quit: poison: Remote closed the connection
[2009/06/15 12:53:45] @ justindossey joined channel #puppet
[2009/06/15 12:54:07] <Telmo> Volcane: do you happen to know what am I talking about? :F
[2009/06/15 12:54:10] <Telmo> :D
[2009/06/15 12:54:26] <Volcane> Telmo: only the client can put itself into an environment
[2009/06/15 12:54:40] <Telmo> ok, lots of work to do then :(
[2009/06/15 12:54:51] <Volcane> you can specify a default on the server is all
[2009/06/15 12:57:52] @ Quit: pleemans: Read error: 110 (Connection timed out)
[2009/06/15 12:58:03] <Volcane> Telmo: if possible through some logic you can figure out the environment a machine should be in you can use a fact
[2009/06/15 12:58:17] <Volcane> Telmo: like say *.dev.your.com should be in 'development' then thats easy
[2009/06/15 12:58:28] <Volcane> donno if it applies to you but anyway
[2009/06/15 12:58:49] <Telmo> I am actually, just going to manage puppet.conf with puppet and then set the environment like that
[2009/06/15 12:59:30] <ctso1> with a node-level $environment variable definition?
[2009/06/15 12:59:37] <Telmo> yes
[2009/06/15 12:59:46] <Volcane> that wont work
[2009/06/15 12:59:50] <Volcane> (node level)
[2009/06/15 13:00:17] <ctso1> ? i had the impression that node-level defined attributes were usable anywhere in module manifests
[2009/06/15 13:00:32] <Volcane> yes, but the envrionment isnt just a variable its more than that
[2009/06/15 13:00:48] <Volcane> the client needs to send it in the initial stages of talking to the master
[2009/06/15 13:00:48] <Telmo> if I have a switch statement with a defined variable pointing to the directory where the puppet.conf is it should work
[2009/06/15 13:01:05] <Telmo> case $myenv
[2009/06/15 13:01:19] <Telmo> 1: path => "/path/to/prod/puppet.conf
[2009/06/15 13:01:34] <Telmo> 2: path => "path/to/dev/puppet.conf"
[2009/06/15 13:01:36] <Telmo> and so on so for
[2009/06/15 13:01:52] <fzzzt> That's what I do
[2009/06/15 13:01:53] <ctso1> Volcane: ah, so.. it needs a full restart as opposed to just the auto-reparsing of puppet.conf you mean?
[2009/06/15 13:01:56] <Volcane> source => "puppet://puppet/puppet.conf.${myenv}"
[2009/06/15 13:02:00] <fzzzt> er, no
[2009/06/15 13:02:18] <Volcane> ctso1: i mean the client needs to know its environment, its not enough to just set it in the node {} block
[2009/06/15 13:02:19] <Telmo> that is just to set the proper environment the first time
[2009/06/15 13:02:40] @ erm_ joined channel #puppet
[2009/06/15 13:02:52] <Telmo> I don't want to manually modify the 150+ clients I have running :P
[2009/06/15 13:02:52] <ctso1> ... yeah, i just meant you'd use the variable from the node-level definition in the puppet module
[2009/06/15 13:02:57] <ctso1> k, coo
[2009/06/15 13:04:26] @ docelic joined channel #puppet
[2009/06/15 13:07:37] @ Quit: briandquinn:
[2009/06/15 13:12:42] @ D-CoDe joined channel #puppet
[2009/06/15 13:17:11] @ mfoster left channel #puppet ()
[2009/06/15 13:20:38] @ Quit: madrescher: Read error: 110 (Connection timed out)
[2009/06/15 13:22:18] @ Quit: melopt: "Leaving"
[2009/06/15 13:23:09] @ madrescher joined channel #puppet
[2009/06/15 13:23:14] @ Welsh_Dwarf joined channel #puppet
[2009/06/15 13:23:20] @ Quit: Welsh_Dwarf: Read error: 54 (Connection reset by peer)
[2009/06/15 13:23:36] @ Welsh_Dwarf joined channel #puppet
[2009/06/15 13:26:36] @ Quit: lak:
[2009/06/15 13:26:36] <joe-mac> Volcane: don't you do like a bootstrap env, then into production env?
[2009/06/15 13:29:19] <Volcane> yup
[2009/06/15 13:31:13] <Volcane> i have like 3 machines that arent in 'production' so easy enough to manage with facts/custom puppet.confs
[2009/06/15 13:31:31] @ plathrop-away is now known as plathrop
[2009/06/15 13:33:16] <Volcane> other places where i have more i use a fact
[2009/06/15 13:33:29] <Volcane> looking at the network addresses to figure out what environment a machine is in
[2009/06/15 13:38:10] @ schwifty joined channel #puppet
[2009/06/15 13:38:56] <joe-mac> how do you do the transition from bootstrap to production Volcane, a factt?
[2009/06/15 13:39:10] @ poison joined channel #puppet
[2009/06/15 13:39:22] <Volcane> yeah, or config file
[2009/06/15 13:39:43] <Volcane> so bootstrap environment puts the right config on the box
[2009/06/15 13:39:47] <Volcane> so future runs are in the right place
[2009/06/15 13:40:17] <Volcane> boostrap is the default environment on the master, so anything that doesnt know what it is ends up in there
[2009/06/15 13:41:00] @ Quit: D-CoDe: "Leaving."
[2009/06/15 13:41:55] <joe-mac> man, per-environment autosign would be awesome for that
[2009/06/15 13:42:09] <Volcane> how will that help?
[2009/06/15 13:42:17] <joe-mac> just autosign in bootstrap but for anything that goes into production you have to still sign by hand
[2009/06/15 13:42:25] <Volcane> ie. how will it be more/less secure than just autosigning?
[2009/06/15 13:42:59] <joe-mac> i guess there would need to be some other form of authentication while in the bootstrap env
[2009/06/15 13:43:05] <Volcane> cos once your box has a cert it has a cert, it doesnt get a new cert swhen it becomes part of the production environment typically, unless u have one of those where you bootstrap in a lab then move the box and change ip etc?
[2009/06/15 13:44:00] <joe-mac> yea i bootstrap on a separate physical lan
[2009/06/15 13:44:09] <Volcane> right
[2009/06/15 13:44:16] <Volcane> well then do you also have a seperate master there?
[2009/06/15 13:44:27] <joe-mac> no, currently through nat it hits the master
[2009/06/15 13:44:31] <joe-mac> the main one i mean
[2009/06/15 13:44:33] <Volcane> ah
[2009/06/15 13:44:54] <Volcane> usually ppl paranoid enough to do that doesnt enable their other networks to bootstrap machines
[2009/06/15 13:45:03] <Volcane> so you'd need pxe/dhcp/puppet etc thats dedicated there
[2009/06/15 13:45:35] <joe-mac> hmm
[2009/06/15 13:46:42] <Volcane> but i guess it depends on why you're bootstrapping elsewhere what you'd do :)
[2009/06/15 13:46:55] <Volcane> my machines are all remote and in other countries etc and often not on networks i control
[2009/06/15 13:47:26] <Volcane> other places we have seperate teams who take care of the physical side of things, they FAI machines to our specs, we then make them do whatever with puppet
[2009/06/15 13:48:04] @ Quit: happymcplaksin: Remote closed the connection
[2009/06/15 13:48:36] @ skarab joined channel #puppet
[2009/06/15 13:49:54] @ happymcplaksin joined channel #puppet
[2009/06/15 13:50:42] @ happymcplaksin left channel #puppet ("ERC Version 5.3 (IRC client for Emacs)")
[2009/06/15 13:52:50] <ctso1> on the topic of environments.. what do you usually do when you're done developing in the dev environment in regards to your current production machines? sort of just swap out all the current production modules and replace with the dev modules?
[2009/06/15 13:53:18] <Volcane> ctso1: my odule paths are like /path/to/production/modules:/path/to/common/modules
[2009/06/15 13:53:41] <Volcane> ctso1: so if i want to work on a module, i branch it to /path/to/development/modules/apache - work on it etc, till i am happy - and only my dev machines get it
[2009/06/15 13:53:58] <Volcane> ctso1: then when dont i merge the branch back to common and kill the dev branch
[2009/06/15 13:54:17] @ thegcat joined channel #puppet
[2009/06/15 13:54:46] <Volcane> ctso1: alternative could be to have a master on development running against head of your SCM or whatever, the tagging a release and rsyncing that release onto your master based on the tag - many approaches other than rsync obviously
[2009/06/15 13:55:07] <Volcane> where the master getting the rsync is your production master of course
[2009/06/15 13:55:32] <Volcane> or just changing your production module path to whatever tag you choose, also easy
[2009/06/15 13:55:45] <Volcane> then u only need 1 master
[2009/06/15 13:56:08] <ctso1> Volcane: oic.. hm, heh, thanks, good alternatives, really should have thought this through the first time
[2009/06/15 13:56:31] @ Quit: jmarki: "Leaving"
[2009/06/15 14:00:12] @ Robbie joined channel #puppet
[2009/06/15 14:00:58] @ lak joined channel #puppet
[2009/06/15 14:02:54] @ Quit: Robbie: Client Quit
[2009/06/15 14:04:23] @ rsquared joined channel #puppet
[2009/06/15 14:05:25] @ Quit: thegcat:
[2009/06/15 14:08:28] @ pleemans joined channel #puppet
[2009/06/15 14:10:32] @ ckrough left channel #puppet ()
[2009/06/15 14:13:12] @ mvn071 joined channel #puppet
[2009/06/15 14:14:05] @ Quit: Welsh_Dwarf: Remote closed the connection
[2009/06/15 14:14:51] @ nakano is now known as nakano_
[2009/06/15 14:16:46] @ bjoern__ joined channel #puppet
[2009/06/15 14:20:46] @ Quit: gaveen: No route to host
[2009/06/15 14:22:17] @ gaveen joined channel #puppet
[2009/06/15 14:23:34] <Telmo> Could someone clue me in as to why when I parse http://www.pastie.org/512832 I get errors for my puppet_conf ?
[2009/06/15 14:23:53] <Telmo> debug: importing '/opt/comcast/puppet/manifests/development/templates.pp'
[2009/06/15 14:23:54] <Telmo> Could not parse for environment production: Syntax error at '{'; expected '}' at /opt/comcast/puppet/manifests/development/templates.pp:11
[2009/06/15 14:24:15] <Telmo> I've tried replacing the {} with () with the same result
[2009/06/15 14:24:47] <ctso1> i think you need a define if you want to put in variables
[2009/06/15 14:25:07] <ctso1> err. is puppet_conf::client a class or a definition?
[2009/06/15 14:25:14] <Telmo> definition
[2009/06/15 14:25:27] <ctso1> you don't include definnitions i think
[2009/06/15 14:25:37] <Telmo> class puppet_conf {
[2009/06/15 14:25:37] <Telmo>
[2009/06/15 14:25:37] <Telmo> define client($environment = 'development'){
[2009/06/15 14:25:37] <Telmo>
[2009/06/15 14:26:33] <Telmo> so its a definition inside a class
[2009/06/15 14:27:43] <Telmo> oh.. I see
[2009/06/15 14:27:47] <Telmo> duh
[2009/06/15 14:28:40] @ happymcplaksin joined channel #puppet
[2009/06/15 14:31:25] @ Quit: happymcplaksin: Remote closed the connection
[2009/06/15 14:32:37] @ happymcplaksin joined channel #puppet
[2009/06/15 14:35:14] @ Quit: gaveen: Operation timed out
[2009/06/15 14:35:47] @ reyjrar joined channel #puppet
[2009/06/15 14:44:09] @ Quit: happymcplaksin: Remote closed the connection
[2009/06/15 14:44:35] @ happymcplaksin joined channel #puppet
[2009/06/15 14:49:11] @ zahna joined channel #puppet
[2009/06/15 14:50:09] <zahna> lak: regarding your modules in github, what distro do they focus on?
[2009/06/15 14:50:20] <lak> debian, i think
[2009/06/15 14:50:26] <justdave> I'd like to get puppet set up so that machines continue to check in every 30 minutes and update their node/facter info as needed, but that configuration changes (regardless of what the recipe says) don't actually happen until someone okays it specific to that client machine. Is that possible to do?
[2009/06/15 14:50:28] <lak> it's been a while, as you can tell by the modification dates :)
[2009/06/15 14:50:42] <zahna> heh. that's ok.
[2009/06/15 14:50:43] <lak> justdave: add noop = true in puppet.conf
[2009/06/15 14:51:20] <justdave> lak: is there an easy way to override that when it's time to apply the changes?
[2009/06/15 14:52:01] <zahna> is there any companion to puppet for package upgrade management?
[2009/06/15 14:52:34] <joe-mac> zahna: i use capistrano to upgrade packages
[2009/06/15 14:52:45] <zahna> joe-mac: really?
[2009/06/15 14:52:50] <joe-mac> affirmative
[2009/06/15 14:52:58] <lak> justdave: you can run puppetd with --no-noop
[2009/06/15 14:53:06] <joe-mac> i have my servers split into roles, and i have this one task called aptup_all, thatll upgrade all my machines
[2009/06/15 14:53:11] @ Quit: kolla: Remote closed the connection
[2009/06/15 14:53:15] <joe-mac> i think that's around like 50 right now
[2009/06/15 14:53:16] <justdave> the other part of it I was looking at might be similar to what zahna's looking for... a way to say "this requested config change is okay to apply" and puppet would actually do it on the next pass, queued from the central server or something
[2009/06/15 14:53:31] <joe-mac> beware that if your keys are bigger than 2048 bits you might cause your ssh agent to crap its pants
[2009/06/15 14:53:39] <justdave> without having to log into each server and override puppetd on the command line
[2009/06/15 14:54:08] <zahna> joe-mac: i haven't thought about using cap for that
[2009/06/15 14:54:23] <lak> justdave: i'm pretty sure you can override noop with puppetrun
[2009/06/15 14:54:39] <joe-mac> yea i don't use cap for anything push related cause i think it's kind of insecure. once you can push from a local checked out copy via rsync i might use it, but until then i use it for admin stuff
[2009/06/15 14:55:19] <zahna> i was looking into pssh for it, but still seems too manual
[2009/06/15 14:55:24] @ Quit: bjoern__: "Ex-Chat"
[2009/06/15 14:55:25] <joe-mac> stuff that you bneed to execute on a load of, or a group of machines that you want to push the button for, cap is good for that
[2009/06/15 14:55:34] <joe-mac> zahna: yea, i felt the same way
[2009/06/15 14:55:39] <joe-mac> cap is where it's at
[2009/06/15 14:55:43] <joe-mac> best part is cap shell
[2009/06/15 14:55:56] <joe-mac> when you invoke it, and you type an arbitrary command, it executes it on all your hosts
[2009/06/15 14:56:11] <ctso1> why can't you use puppet for package upgrade mgmt?
[2009/06/15 14:56:15] <zahna> and i get to see the return code? or at least the output?
[2009/06/15 14:56:26] <zahna> ctso1: because puppet isn't designed for that
[2009/06/15 14:56:29] <joe-mac> obviously, you need to be careful with this kind of power but you can also do something like "with webservers "sudo netstat -tap \| wc -l""
[2009/06/15 14:56:44] <joe-mac> and get all the connection counts on just your webservers
[2009/06/15 14:56:49] <joe-mac> stupid example, but, it rocks
[2009/06/15 14:57:01] <joe-mac> and instead of a command you just add an ! to make it a cap task
[2009/06/15 14:57:05] <ctso1> zahna: what do you mean by package management? like managing the versions of packages via your distribution's package manager?
[2009/06/15 14:57:14] <zahna> ctso1: yes
[2009/06/15 14:58:03] <ctso1> zahna: then i dont understand; since i use puppet to manage my package versions through the aptitude provider
[2009/06/15 14:58:37] @ ad4m joined channel #puppet
[2009/06/15 14:58:53] @ gaveen joined channel #puppet
[2009/06/15 14:58:55] <justdave> yeah, we manage packages with puppet, too... at least for packages that are requirements for apps we run and so forth
[2009/06/15 14:59:00] @ Quit: ad4m: Client Quit
[2009/06/15 14:59:00] <joe-mac> ctso1: i am talking more like upgrades. unless you do ensure => latest which is kind of weird
[2009/06/15 14:59:05] <joe-mac> not weird but, not something i';d do
[2009/06/15 14:59:10] @ ad4m joined channel #puppet
[2009/06/15 14:59:46] <justdave> ensure => latest works when you manage your own repo and copy the new files into it after you've tested them
[2009/06/15 14:59:48] <ctso1> heh, no i agree that would be weird
[2009/06/15 14:59:51] <justdave> mrepo comes in handy for that
[2009/06/15 15:00:28] <joe-mac> justdave: true... my custom repo only has some updated packages in it. i suppose in one of those like critical must test everything setups that would be ideal
[2009/06/15 15:01:06] @ Quit: lak:
[2009/06/15 15:01:24] @ lak joined channel #puppet
[2009/06/15 15:01:33] <ad4m> hey, i'm running puppet 0.24.8 from a rpm in epel, and i'm getting this strange cert error on the client side that i haven't been able to figure out
[2009/06/15 15:01:47] <joe-mac> ad4m: you wanna pastie the error?
[2009/06/15 15:01:51] <joe-mac> and by pastie i mean pastie.org...
[2009/06/15 15:01:52] <ad4m> would pasting 3 short log lines in here be annoying?
[2009/06/15 15:01:59] <ad4m> sure i'll use pastie
[2009/06/15 15:02:02] <joe-mac> it wouldn't annoy me, but it sure might annoy someone else
[2009/06/15 15:02:14] @ Quit: lak: Client Quit
[2009/06/15 15:02:46] <ad4m> http://pastie.org/512886
[2009/06/15 15:03:06] <ad4m> so i've searched around and found some older problems regarding ruby's openssl stuff
[2009/06/15 15:03:11] <ad4m> from back in 2007 i think
[2009/06/15 15:03:47] <ctso1> what's your server's hostname
[2009/06/15 15:04:00] <ad4m> i've tried all sorts of things here
[2009/06/15 15:04:15] <ad4m> i've used the master's fqdn on the client
[2009/06/15 15:04:20] <ctso1> well the default sign is "puppet"
[2009/06/15 15:04:52] <ad4m> err, it signs the client certs with a cert for the hostname puppet?
[2009/06/15 15:04:53] <ctso1> so if you didnt change the cert hostname config, i think you need to set your hostname to puppet.blahblah.com
[2009/06/15 15:05:30] <ad4m> you change the cert hostname config via the certname config directive on the master?
[2009/06/15 15:05:46] <ctso1> i think there is a directive on the master, though i've never used it myself
[2009/06/15 15:05:50] @ Quit: devicenull__: Read error: 110 (Connection timed out)
[2009/06/15 15:05:53] <ctso1> but yeah, it signs the CA cert with hostname puppet
[2009/06/15 15:06:13] <ad4m> hmm that might be the problem
[2009/06/15 15:06:26] <ad4m> although i have set up puppet before and i didn't remember doing anything like that
[2009/06/15 15:06:32] <ad4m> and i wasn't using the hostname 'puppet' for the master
[2009/06/15 15:06:55] <ad4m> the ca cert gets generated when you first run puppetmaster right?
[2009/06/15 15:07:22] <ctso1> yeah, you'll probably need to run some cleans... or just blow out the ssl dir altogether, i ended up doing that quite a few times when i started out
[2009/06/15 15:07:25] <joe-mac> yes, do openssl -sclient -host yourservername -port 8140
[2009/06/15 15:07:29] <joe-mac> the output will say what it's sigfned as
[2009/06/15 15:07:52] <ad4m> ok let me start fresh and blow everything away because i've been monkeying with it for a bit
[2009/06/15 15:11:23] @ mfournie1 joined channel #puppet
[2009/06/15 15:12:15] @ xyz joined channel #puppet
[2009/06/15 15:13:18] <Telmo> anyone managing puppet.conf with puppet itself has run into the problem where both the client and the server share the same config file so if you have a puppet_conf::server and a puppet_conf::client you get an error because both try to control puppet.conf? if so how did you solve it?
[2009/06/15 15:13:43] <Telmo> trying not to reinvent the wheel
[2009/06/15 15:13:44] @ Innocenti joined channel #puppet
[2009/06/15 15:14:26] <Volcane> Telmo: virtual resources
[2009/06/15 15:14:38] <Telmo> didn't think of that
[2009/06/15 15:14:42] <Volcane> Telmo: or simply abstraction
[2009/06/15 15:14:48] <Volcane> Telmo: puppet::common::config
[2009/06/15 15:14:55] <Volcane> Telmo: the others include that
[2009/06/15 15:15:10] <Telmo> I am still trying to get my head around the Virtual and Exported resources
[2009/06/15 15:15:33] <ad4m> joe-mac: what am i looking for here? the certificate chain?
[2009/06/15 15:15:40] <Volcane> easiest is just to do a class that makes the config and then include it in both
[2009/06/15 15:15:41] <joe-mac> should say who signed it
[2009/06/15 15:15:55] <joe-mac> it's most likely puppet.whatever
[2009/06/15 15:16:01] <Telmo> can I call the class puppet? I thought that would conflict with the Puppet ruby class..
[2009/06/15 15:16:03] <joe-mac> abnd you're connecting to srv012398.wehatever onm your nodes
[2009/06/15 15:16:17] <joe-mac> puppet can be a class, i have puppet::node and puppet::master in my setup
[2009/06/15 15:16:22] <Volcane> Telmo: you can call it puppet yeah
[2009/06/15 15:16:28] <Telmo> awesome
[2009/06/15 15:17:16] <ad4m> joe-mac: only hostname i'm seeing is the fqdn of the system i'm running puppetmaster on
[2009/06/15 15:19:06] <joe-mac> ad4m can you run puppetd -dtv on your node and pastie that output? also pastie your puppet.conf
[2009/06/15 15:19:17] <ad4m> sure, give me a few minutes
[2009/06/15 15:19:20] <joe-mac> np
[2009/06/15 15:19:35] <joe-mac> will probably take a few minutes for a response, i am documenting a bunch of stuff at work
[2009/06/15 15:19:44] <ad4m> so i just did a fresh install of puppet on the client
[2009/06/15 15:19:54] <ad4m> should i go through the signing process?
[2009/06/15 15:19:58] <ad4m> the puppetca stuff?
[2009/06/15 15:20:04] <ad4m> and get back to the error that i was getting before
[2009/06/15 15:20:07] <ad4m> or do something else?
[2009/06/15 15:20:11] @ Quit: cwebber:
[2009/06/15 15:22:21] @ Quit: mfournier: Read error: 113 (No route to host)
[2009/06/15 15:26:32] @ lak joined channel #puppet
[2009/06/15 15:32:44] @ Quit: drmikecrowe: " Want to be different? Try HydraIRC -> http://www.hydrairc.com <-"
[2009/06/15 15:34:10] @ zahna left channel #puppet ()
[2009/06/15 15:34:36] @ Quit: Innocenti: "leaving"
[2009/06/15 15:34:45] @ Innocenti joined channel #puppet
[2009/06/15 15:35:23] @ Quit: xyz: "ChatZilla 0.9.84 [Firefox 3.0.11/2009061317]"
[2009/06/15 15:38:24] <ad4m> joe-mac: i'm just lame, cleaning everything out and starting over fixed it all
[2009/06/15 15:38:43] <ad4m> i guess i had something screwed up some place and i really wasn't cleaning everything out when i thought i was
[2009/06/15 15:41:38] <justindossey> What's the best way for a module to require a different module?
[2009/06/15 15:42:40] <justindossey> i.e. "if you want to include X, you must also include Y in your node definition" or "by including X, you automatically include Y"
[2009/06/15 15:42:52] @ Quit: Innocenti: "leaving"
[2009/06/15 15:43:05] <joe-mac> ad4m: sometimes if you're not too deep in that's the best way, unless you're out to learn something strictly
[2009/06/15 15:43:12] <joe-mac> the PHB's generally don't care about that though heh
[2009/06/15 15:43:30] <ad4m> phb's?
[2009/06/15 15:43:49] <justdave> dilbertism
[2009/06/15 15:43:52] <justdave> pointy-haired boss
[2009/06/15 15:43:55] <ad4m> oh
[2009/06/15 15:44:10] <ad4m> i'm pretty sure i know what was going on
[2009/06/15 15:44:19] @ Innocenti joined channel #puppet
[2009/06/15 15:44:28] <ad4m> i had created a puppet hostname based on the hostnames we use here, and tried to use that at the start
[2009/06/15 15:44:42] <ad4m> had problems, then reverted back to using the fqdn of the system running puppetmaster
[2009/06/15 15:44:55] <ad4m> i must have had a cert signed somewhere with the puppet hostname i created
[2009/06/15 15:45:03] <ad4m> and it was just not cleared out
[2009/06/15 15:45:18] <ad4m> stupid problem to have
[2009/06/15 15:45:20] @ Quit: tessier_: Read error: 104 (Connection reset by peer)
[2009/06/15 15:45:21] <ad4m> :-)
[2009/06/15 15:45:37] @ cwebber joined channel #puppet
[2009/06/15 15:45:43] <justdave> justindossey: if you ahve a class defined for Y you can "include Y" in your class definition for X, or you can defined class X inherits Y {
[2009/06/15 15:46:49] @ thegcat joined channel #puppet
[2009/06/15 15:47:25] <Volcane> class x inherits y has nothing to do with include
[2009/06/15 15:47:35] @ Quit: cwebber: Client Quit
[2009/06/15 15:47:37] <Volcane> ie. dont use the two interchangeably
[2009/06/15 15:48:15] @ cwebber joined channel #puppet
[2009/06/15 15:48:50] <justindossey> justdave: thanks. Volcane: of course, include means "is a" and inherits means "is a kind of"
[2009/06/15 15:49:32] <Volcane> not really
[2009/06/15 15:49:46] <justindossey> Volcane: explain then?
[2009/06/15 15:49:49] <Volcane> include just does what the other class do at the point you include it
[2009/06/15 15:50:15] <Volcane> the other makes a object orientated inheritance that u should only do if you're actually going to override extend etc, else performance wise its better just to include
[2009/06/15 15:50:27] <Volcane> and maintenance wise too
[2009/06/15 15:50:48] <justindossey> I think of include like Ruby's include-- slurp everything between the class curly braces and insert in place of the include statement
[2009/06/15 15:51:12] <matty91> What is the preferred method to restart services after a file {} resource is applied? exec?
[2009/06/15 15:51:28] <Volcane> justindossey: yeah thats right, but that doesnt reall mean 'is a'
[2009/06/15 15:51:48] <justindossey> I do wish I could find a better guide to proper use of puppet's object orientation-- class naming, inheritance, subclasses, etc
[2009/06/15 15:51:53] <Volcane> matty91: use service{} to manage the service and in the file{} do notify => Service["foo"]
[2009/06/15 15:52:09] <matty91> Volcane: right on -- thanks!
[2009/06/15 15:52:44] <jrojas> does puppet support the != ?
[2009/06/15 15:52:49] <jrojas> for if statements?
[2009/06/15 15:52:50] <justindossey> last Friday, I asked what the difference between class XXX inherits YYY and class XXX { class YYY {}} was, and I still don't know
[2009/06/15 15:52:58] <jrojas> n/m
[2009/06/15 15:53:24] <Volcane> justindossey: class yyy { class xxx { } } makes: class yyy::xxx
[2009/06/15 15:53:33] <Volcane> justindossey: they dont inherit or anything etc
[2009/06/15 15:54:00] <justindossey> Volcane: so nested classes don't inherit from their parent containers; it just provides a naming structure
[2009/06/15 15:54:03] <Volcane> justindossey: you could also just say class xxx::yyy { ... } achieves the same
[2009/06/15 15:55:05] <Volcane> justindossey: wiki:ModuleOrganisation is where you'd mostly find it
[2009/06/15 15:55:13] <gepetto> Volcane: justindossey: wiki:ModuleOrganisation is http://reductivelabs.com/trac/puppet/wiki/ModuleOrganisation
[2009/06/15 15:55:16] <justindossey> Volcane: so these two statements are functionally equivalent: class YYY::XXX inherits YYY {} and class XXX { class YYY inherits XXX {} }
[2009/06/15 15:55:27] <Volcane> justindossey: no they're totally different :)
[2009/06/15 15:55:39] <justindossey> Volcane: gepetto: yeah, I just read that. It didn't really help much
[2009/06/15 15:55:51] <Volcane> justindossey: ah actually yes same, sorry didnt read properly
[2009/06/15 15:56:17] <justindossey> Volcane: whew, that's a relief. I'm writing a lot of modules right now and I really want to get it right
[2009/06/15 15:56:41] <joe-mac> inheritance is pretty much only useful when you need to override a resource parameter
[2009/06/15 15:56:57] <justindossey> joe-mac: which I do, frequently :(
[2009/06/15 15:57:05] <joe-mac> like one of my classes is for an app that doesn't play well with my general firewall, so i have it inherit iptables and change the source parameter of the rules file
[2009/06/15 15:57:10] <joe-mac> ah, i c
[2009/06/15 15:57:47] <Volcane> justindossey: what kind of stuff do you override? i find if you're inheriting often you're probably overnegineering
[2009/06/15 15:57:48] <justindossey> retrofitting puppet to an organic mid-size organization means there are many exceptions to any rule
[2009/06/15 15:59:34] <justindossey> Volcane: for instance, I have a Samba class and the different kind of Samba servers we run get subclasses which inherit from Samba, so their wildly customized smb.conf files can be distributed
[2009/06/15 16:00:09] <Volcane> justindossey: using different templates or what?
[2009/06/15 16:01:00] <Volcane> justindossey: ie. what diferences do you do to config
[2009/06/15 16:01:27] <justindossey> Volcane: the top level smb.conf is templatized, but the one-offs are distributed as files
[2009/06/15 16:02:19] <Volcane> nods, would need to see some i guess
[2009/06/15 16:02:33] @ tessier_ joined channel #puppet
[2009/06/15 16:02:40] <justindossey> I could probably declare extra lines in variables in the node definitions, but that's pretty messy
[2009/06/15 16:03:41] <justindossey> another place I use inheritance is for mail servers. There are inbound relays, outbound relays, delivery endpoints, greylisters, spamassassin, clamav, clamassassin, dkfilter, etc
[2009/06/15 16:04:34] <justindossey> since resources can only be defined once, I find myself using inheritance to capture all the varieties
[2009/06/15 16:05:06] <matty91> How are folks handling package installations on hosts (e.g., Solaris ) that don't support a package repository?
[2009/06/15 16:05:39] <Volcane> justindossey: can you show an example of what u do?
[2009/06/15 16:05:44] <matty91> It appears (according to the docs) that puppetd won't retrieve packages from the entry in source =>
[2009/06/15 16:06:17] <Volcane> matty91: correct, u need to copy them to the box somehow first if your package manager doesnt support it
[2009/06/15 16:06:46] <matty91> bummer
[2009/06/15 16:07:13] <Volcane> puppets not a package manager :)
[2009/06/15 16:07:15] <matty91> Volcane: do you happen to know if there are plans to add remote fetching support to puppet?
[2009/06/15 16:07:33] <Volcane> matty91: its there already, file{}
[2009/06/15 16:07:56] <matty91> good point
[2009/06/15 16:08:15] <Volcane> matty91: use define to make a package resource of your own that copies the file and installs it with package
[2009/06/15 16:13:53] @ Quit: skarab: "bah"
[2009/06/15 16:14:28] @ Quit: pleemans: Read error: 110 (Connection timed out)
[2009/06/15 16:15:24] @ Quit: cwebber:
[2009/06/15 16:16:31] <Volcane> justindossey: donno, i cant help but think you might find a better way than inheritance for your case, i can take a peek if you show me some samples
[2009/06/15 16:17:28] <justindossey> Volcane: http://pastie.org/512990 is one example
[2009/06/15 16:18:30] @ Quit: nmalik: "leaving"
[2009/06/15 16:18:37] @ fzzzt left channel #puppet ()
[2009/06/15 16:18:56] @ nmalik joined channel #puppet
[2009/06/15 16:19:19] <justindossey> Volcane: left off inherits, fixed here: http://pastie.org/512993
[2009/06/15 16:19:58] <justindossey> lunchtime, biab
[2009/06/15 16:20:38] @ Innocent1 joined channel #puppet
[2009/06/15 16:21:01] <Volcane> justindossey: http://pastie.org/512996
[2009/06/15 16:21:47] <Volcane> justindossey: so it will take the first one of the file array that exist, so you can just override it per fqdn, per type of server or fall back to some sane default config
[2009/06/15 16:21:51] @ Quit: Innocent1: Client Quit
[2009/06/15 16:22:18] @ Quit: dchen_: "leaving"
[2009/06/15 16:22:34] @ Innocent1 joined channel #puppet
[2009/06/15 16:23:15] <ctso1> ah, that is a good way to do things
[2009/06/15 16:23:46] @ Quit: Innocenti: "leaving"
[2009/06/15 16:23:51] @ Quit: Innocent1: Client Quit
[2009/06/15 16:23:54] @ Innocenti joined channel #puppet
[2009/06/15 16:25:37] @ xyz joined channel #puppet
[2009/06/15 16:27:21] @ Quit: poison: Remote closed the connection
[2009/06/15 16:28:46] @ kambiz_away is now known as kambiz
[2009/06/15 16:32:13] <Volcane> ctso1: and something u just cant do with inheritance - set a variable that affects the base code
[2009/06/15 16:32:33] <Volcane> ctso1: yet it often allows for a lot more useful and simpler to read code
[2009/06/15 16:34:19] <ctso1> Volcane: ah yes includes over inheritance
[2009/06/15 16:34:45] <ctso1> Volcane: actually, on that note I have a question about variable definitions, particularly at the node level
[2009/06/15 16:35:11] <Volcane> yeah?
[2009/06/15 16:35:42] <ctso1> Volcane: im extending iclassify to support node trees, and i was planning on having the external classifier output all the attributes of parent nodes + child nodes
[2009/06/15 16:35:51] <ctso1> are all attributes accessible anywhere in modules?
[2009/06/15 16:36:09] <ctso1> *child node, not nodes
[2009/06/15 16:36:14] <Volcane> yeah
[2009/06/15 16:36:29] <ctso1> sweet
[2009/06/15 16:36:31] <Volcane> as long as you dont inherit from a base node
[2009/06/15 16:36:47] <justindossey> Volcane: thanks for the paste, I like your way better
[2009/06/15 16:37:09] <ctso1> yeah, i've been trying to set cluster-level variables by making a class that my nodes inherit from
[2009/06/15 16:37:27] <ctso1> but those variables are only accessible to modules that are included in that class
[2009/06/15 16:37:39] <Volcane> ctso1: node inheritance isnt awesome
[2009/06/15 16:37:42] <ctso1> im kinda blowing the scope open by defining them all at the node-level through the external classifier
[2009/06/15 16:37:53] <ctso1> err not inheritance either actually, includes
[2009/06/15 16:38:05] <Volcane> ah
[2009/06/15 16:38:17] <ctso1> and.. keeping track of the cluster-level variables with a parent node in the ext classifier
[2009/06/15 16:38:23] <Volcane> i use http://nephilim.ml.org/~rip/puppet/extlookup.rb for external data needs
[2009/06/15 16:38:24] <ctso1> dont know if that sounds like a lot of hacking around
[2009/06/15 16:39:20] @ Quit: mfournie1: Read error: 113 (No route to host)
[2009/06/15 16:40:10] <hacim> i've got about 100 files I need to manage the permissions for, is there a more convenient way for specifying the path for all of them, or do I need to specify it for each one?
[2009/06/15 16:40:20] <hacim> they all are in the same directory
[2009/06/15 16:40:46] <Volcane> hacim: how did the files get there to begin with?
[2009/06/15 16:41:11] <hacim> there is the path parameter, can I specify $name => filename, $path => "/var/www" and do an array?
[2009/06/15 16:41:19] <hacim> Volcane: how is that relevant?
[2009/06/15 16:41:31] <Volcane> hacim: context is always relevant :)
[2009/06/15 16:41:52] <hacim> some asshat put them there via sftp
[2009/06/15 16:41:56] <Volcane> lol
[2009/06/15 16:42:13] <hacim> and keeps overwriting them, and setting the perms to 777
[2009/06/15 16:42:18] <Volcane> ouch
[2009/06/15 16:42:37] <hacim> anyways, now you see that I'm annoyed :)
[2009/06/15 16:42:47] <hacim> and am wanting to solve this once and for all
[2009/06/15 16:43:15] <Volcane> well it seems that this will do it:
[2009/06/15 16:43:33] <Volcane> file{"/tmp/t": recurse => true, mode => xxx }
[2009/06/15 16:43:34] <hacim> i want to do something like: http://micah.riseup.net/pastes/2009-06-15T164321
[2009/06/15 16:43:45] <hacim> Volcane: that only works if everything in that dir should be set that way
[2009/06/15 16:43:49] <Volcane> heh
[2009/06/15 16:43:52] <hacim> Volcane: sadly, some things need different permissions
[2009/06/15 16:44:13] <ctso1> hhmm
[2009/06/15 16:44:31] <ctso1> can u set the specific ones to different ones, then require the recursed file definition so that it runs after?
[2009/06/15 16:45:04] <Volcane> hacim: http://pastie.org/513022
[2009/06/15 16:45:51] <hacim> ctso1: if I do that, then the permissions are going to be changed on every puppet run
[2009/06/15 16:45:53] <Volcane> hacim: that sets bar to 755 and teh rest to 777
[2009/06/15 16:46:31] <hacim> Volcane: hmm, does that actually work?
[2009/06/15 16:46:40] <Volcane> seems so
[2009/06/15 16:46:50] <hacim> it seems like one might fire at different times
[2009/06/15 16:46:54] <hacim> causing different results
[2009/06/15 16:47:48] <Volcane> hacim: nah, its a known way to handle this kind of thing, u can use it to purge unmanaged files too etc
[2009/06/15 16:48:19] <Volcane> hacim: 0.25.x so far suffers from the bug you mention - might be fixed now, 0.24.x not :)
[2009/06/15 16:49:14] @ Quit: d3vilb0x: Read error: 110 (Connection timed out)
[2009/06/15 16:50:11] <Volcane> hacim: anyway, worth a try i tested it but not particularly comlex testing
[2009/06/15 16:50:20] <hacim> Volcane: thanks, I'll give it a shot
[2009/06/15 16:50:32] <Volcane> hacim: however i do use the hack to clear out unmanaged files from dirs and i do that in very complex scenarios, there it works 100%
[2009/06/15 16:50:49] @ kambiz is now known as kambiz_away
[2009/06/15 16:51:44] <Volcane> ah and its fixed in 0.25.x too
[2009/06/15 16:53:29] <plathrop> oh rubygems.
[2009/06/15 16:53:50] <Volcane> plathrop: evil
[2009/06/15 16:54:01] <plathrop> Volcane: yes. They just bit me again.
[2009/06/15 16:54:09] <plathrop> But I have their number
[2009/06/15 16:56:19] @ Quit: Innocenti: "leaving"
[2009/06/15 16:57:29] <Volcane> so far been kind of lucky with turning them into rpms
[2009/06/15 16:57:32] <Volcane> but still, hate them
[2009/06/15 16:57:46] <Volcane> not found a gem2deb or whatever
[2009/06/15 16:58:45] <Volcane> but also not looked much, debian client is ruby allergic
[2009/06/15 17:03:51] @ Quit: andrewcshafer:
[2009/06/15 17:06:14] @ fbe_ joined channel #puppet
[2009/06/15 17:06:38] @ fbe_ is now known as fbe_is
[2009/06/15 17:07:13] @ fbe_is is now known as fbeis
[2009/06/15 17:07:20] @ Quit: flakrat: "Leaving"
[2009/06/15 17:09:03] @ pastie joined channel #puppet
[2009/06/15 17:10:08] @ Quit: ad4m:
[2009/06/15 17:10:43] @ snuffet joined channel #puppet
[2009/06/15 17:10:58] @ bobbyz_ joined channel #puppet
[2009/06/15 17:12:58] @ Quit: bobbyz: Read error: 54 (Connection reset by peer)
[2009/06/15 17:13:59] @ Quit: notbrien:
[2009/06/15 17:15:28] @ snuffet left channel #puppet ("Leaving")
[2009/06/15 17:19:41] @ poison joined channel #puppet
[2009/06/15 17:22:09] @ Quit: fbe: Read error: 110 (Connection timed out)
[2009/06/15 17:22:19] @ Quit: xyz: "ChatZilla 0.9.84 [Firefox 3.0.11/2009061317]"
[2009/06/15 17:26:29] <jamesturnbull> madduck: re your patch - did you test that code?
[2009/06/15 17:28:41] <Volcane> jamesturnbull: heh
[2009/06/15 17:32:26] @ andrewcshafer joined channel #puppet
[2009/06/15 17:35:33] @ bobbyz joined channel #puppet
[2009/06/15 17:38:02] @ Quit: bobbyz_: Read error: 110 (Connection timed out)
[2009/06/15 17:40:42] <plathrop> Is it a known bug that having an ssh_authorized_key require=> a user results in an error?
[2009/06/15 17:40:46] <plathrop> warning: Configuration could not be instantiated: user search doesn't exist
[2009/06/15 17:41:35] @ Innocenti joined channel #puppet
[2009/06/15 17:44:53] @ Djelibeybi joined channel #puppet
[2009/06/15 17:45:01] <Volcane> plathrop: when/how was the user created? or does it happen every run?
[2009/06/15 17:45:19] @ Quit: erm_: Read error: 110 (Connection timed out)
[2009/06/15 17:45:26] <joe-mac> plathrop: works fine here on .24.8, but both the key and the user are in the same definition
[2009/06/15 17:45:41] @ cwebber joined channel #puppet
[2009/06/15 17:46:39] <hacim> Volcane: if I do your 'hack', can I require => File[...]; any of the sub files, or does that make it not work? e.g.: http://pastie.org/513099
[2009/06/15 17:47:13] <madduck> jamesturnbull: i think so, not sure i remember.
[2009/06/15 17:47:16] <Volcane> hacim: that require gets made automagically for you by puppet
[2009/06/15 17:47:24] @ Quit: cwebber: Client Quit
[2009/06/15 17:48:08] <Volcane> hacim: but yes, it should all work just as normal
[2009/06/15 17:49:00] <hacim> yeah thats true
[2009/06/15 17:49:23] <plathrop> Volcane: I've got a puppet user resource defined in a parent class, and an ssh_authorized_key in the child class - this fails to work.
[2009/06/15 17:49:45] <Volcane> plathrop: odd, whats the error?
[2009/06/15 17:50:05] <Volcane> oh u did say
[2009/06/15 17:50:07] <Volcane> sorry
[2009/06/15 17:50:10] <plathrop> yeah
[2009/06/15 17:50:10] <Volcane> thats odd yeah
[2009/06/15 17:50:14] <plathrop> It's weitd
[2009/06/15 17:50:16] <plathrop> weird even
[2009/06/15 17:52:09] @ nakano_ is now known as nakano
[2009/06/15 17:53:19] <plathrop> joe-mac: you say it works?
[2009/06/15 17:53:24] <joe-mac> you're requiring it right?
[2009/06/15 17:53:33] <plathrop> joe-mac: can you paste the relevant manifest snippet
[2009/06/15 17:53:35] <plathrop> ?
[2009/06/15 17:53:37] <plathrop> joe-mac: yes
[2009/06/15 17:53:38] <joe-mac> yea h/o
[2009/06/15 17:53:42] <plathrop> pastie: link?
[2009/06/15 17:55:01] <pastie> http://pastie.org/513105 by plathrop.
[2009/06/15 17:55:28] <joe-mac> http://www.pastie.org/513109
[2009/06/15 17:55:32] <joe-mac> oops
[2009/06/15 17:56:30] <joe-mac> that's odd, is 'search' a reserved word somehow?
[2009/06/15 17:56:31] <plathrop> yeah, I can't see why yours works and mine doesn't.
[2009/06/15 17:56:37] <joe-mac> me either
[2009/06/15 17:56:46] <joe-mac> try changing the username to something like slimjim
[2009/06/15 17:56:48] <plathrop> I'm on 0.24.8 as well
[2009/06/15 17:56:51] <joe-mac> surely, slimjim is not a reserved word
[2009/06/15 17:57:21] <Volcane> might be inherit related weirdness, try a simplified example?
[2009/06/15 17:58:25] <plathrop> This combined with the fact that the apt package provider can't downgrade packages because apt is stupid is really making me annoyed.
[2009/06/15 17:58:31] @ Quit: Innocenti: "leaving"
[2009/06/15 18:00:28] <joe-mac> that sucks...
[2009/06/15 18:00:39] <joe-mac> i'm out trying to catch an early train see ya guys
[2009/06/15 18:00:45] @ joe-mac left channel #puppet ()
[2009/06/15 18:01:50] @ Quit: kngus: "Leaving."
[2009/06/15 18:07:15] @ nakano is now known as nakano_
[2009/06/15 18:07:41] @ alex2 joined channel #puppet
[2009/06/15 18:07:53] @ Quit: lak:
[2009/06/15 18:07:56] @ Quit: mvn071: Remote closed the connection
[2009/06/15 18:10:19] @ Quit: gaveen: No route to host
[2009/06/15 18:10:20] @ gaveen_ joined channel #puppet
[2009/06/15 18:10:28] <plathrop> Ah, I think I see what it is...
[2009/06/15 18:10:55] @ erm_ joined channel #puppet
[2009/06/15 18:11:38] @ Quit: andrewcshafer:
[2009/06/15 18:11:38] <plathrop> no...
[2009/06/15 18:11:38] <plathrop> huh
[2009/06/15 18:14:28] @ Quit: reyjrar: "Leaving"
[2009/06/15 18:16:11] <plathrop> This is both bizzare and frustrating
[2009/06/15 18:19:15] <plathrop> I updated the paste with --debug --trace output
[2009/06/15 18:20:57] <plathrop> and... this is why I am a bad Open-Source user. I can't read this code to save my life, it's too clever.
[2009/06/15 18:21:06] @ Quit: delewis: "Leaving"
[2009/06/15 18:21:33] @ gazzerh joined channel #puppet
[2009/06/15 18:22:04] @ jsimpson joined channel #puppet
[2009/06/15 18:22:25] <Volcane> plathrop: simple test works :( http://pastie.org/513146
[2009/06/15 18:22:56] @ Quit: madrescher: Read error: 104 (Connection reset by peer)
[2009/06/15 18:23:46] <plathrop> Volcane: yeah, that seems extra-weird
[2009/06/15 18:23:53] <plathrop> I can make that work too
[2009/06/15 18:24:19] <jsimpson> Hi peeps. Has anybody encountered a bug on puppet 24.4 where you declare a file type as a file, but Puppet insists on making it a directory?
[2009/06/15 18:24:38] @ madrescher joined channel #puppet
[2009/06/15 18:24:47] <Volcane> jsimpson: nope
[2009/06/15 18:24:51] <jsimpson> Did search the trac, but it doesn't seem happy.
[2009/06/15 18:25:43] <plathrop> jsimpson: can you pastie an example?
[2009/06/15 18:27:08] <jsimpson> plathrop: http://pastie.org/513154
[2009/06/15 18:28:25] <jsimpson> just did puppetd --test
[2009/06/15 18:28:44] <Volcane> jsimpson: 0.24.4 doesnt set $name to the name of a class
[2009/06/15 18:28:44] <jsimpson> got: drwxr-xr-x 2 root root 4096 Jun 15 23:27 nginx.conf
[2009/06/15 18:28:59] <Volcane> jsimpson: so what you're doing is really "puppet://$puppetmaster/files/"
[2009/06/15 18:29:13] @ Quit: markl_: Read error: 104 (Connection reset by peer)
[2009/06/15 18:29:21] <Volcane> jsimpson: anyway, $name in that case would be "webserver" in newer versions
[2009/06/15 18:29:22] <jsimpson> Volcane: Ah.
[2009/06/15 18:29:23] @ markl_ joined channel #puppet
[2009/06/15 18:29:30] <plathrop> jsimpson: And ensure => present defaults to making a directory
[2009/06/15 18:29:34] <Volcane> jsimpson: inside a define though you'd have $name correctly
[2009/06/15 18:29:35] <plathrop> jsimpson: so... there ya go
[2009/06/15 18:29:56] <plathrop> jsimpson: ignore me.
[2009/06/15 18:30:01] <plathrop> jsimpson: I'm clearly wrong
[2009/06/15 18:30:08] <plathrop> jsimpson: listen to Volcane
[2009/06/15 18:30:19] <Volcane> plathrop: hmm, ensure => present makes me a file...
[2009/06/15 18:30:33] <jsimpson> Volcane: ah. okay. Thanks very much.
[2009/06/15 18:30:41] <Volcane> plathrop: no i cant reproduce your problem :)
[2009/06/15 18:30:49] <Volcane> jsimpson: so about that lunch you slippery b'tard.
[2009/06/15 18:30:51] <plathrop> Volcane: hence my following statements... :-P
[2009/06/15 18:30:59] <Volcane> jsimpson: you still in soho?
[2009/06/15 18:31:06] <jsimpson> plathrop: I've tried several permutations tonight. :)
[2009/06/15 18:31:33] <jsimpson> Volcane: I was wondering if you'd be up. I'm still near soho.
[2009/06/15 18:31:37] <plathrop> jsimpson: the funny thing is, I know better and I still typed it, because I'm having One Of Those Days
[2009/06/15 18:31:53] <Volcane> jsimpson: well I'll have Ben over at my office morrow if you feel like lunch
[2009/06/15 18:32:48] <jsimpson> Volcane: okay. let's get together. been too long. Things are very mad but we area still allowed to eat.
[2009/06/15 18:33:11] <Volcane> jsimpson: kewl, will be in contact 11ish 'morrow to let u know what ben and i figure out
[2009/06/15 18:33:27] <jsimpson> Volcane: cool.
[2009/06/15 18:34:25] <jsimpson> Volcane: thanks for your help. I'm going to put some string literals in my puppet manifetss and get some sleep.
[2009/06/15 18:34:48] <jsimpson> plathrop: thanks for your help too! Hope your day improves.
[2009/06/15 18:34:53] @ Quit: tecto:
[2009/06/15 18:35:01] <Volcane> jsimpson: no probs, keep well
[2009/06/15 18:35:02] @ cwebber joined channel #puppet
[2009/06/15 18:35:28] <jsimpson> Volcane: :)
[2009/06/15 18:35:37] <jsimpson> night all!
[2009/06/15 18:35:41] @ Quit: jsimpson:
[2009/06/15 18:45:38] @ Quit: cwebber:
[2009/06/15 18:46:09] @ andrewcshafer joined channel #puppet
[2009/06/15 18:49:01] @ Quit: bobbyz: Read error: 60 (Operation timed out)
[2009/06/15 18:49:55] <hMz> I have cronjobs that arent making it into the crontab but show up in the statusfile
[2009/06/15 18:50:00] <hMz> er statefile
[2009/06/15 18:50:37] <hMz> (ie: no synched time)
[2009/06/15 18:51:33] <Volcane> and puppetd --test doesnt give u errors about them?
[2009/06/15 18:51:55] <hMz> it finishes successfully
[2009/06/15 18:52:01] <hMz> (which is odd)
[2009/06/15 18:52:16] <Volcane> --debug --verbose then :)
[2009/06/15 18:52:21] <hMz> thats how i'm running it
[2009/06/15 18:52:22] <hMz> -dvt
[2009/06/15 18:52:32] <hMz> i use dvt pretty much all the time :P
[2009/06/15 18:54:07] <hMz> i see lots of crontab -l's
[2009/06/15 18:56:27] @ cwebber joined channel #puppet
[2009/06/15 18:58:19] <Volcane> odd, if they're in state it should have either made them or spewed errors
[2009/06/15 18:59:24] @ Quit: andrewcshafer:
[2009/06/15 18:59:24] <Volcane> and i assume as root: 'ralsh cron' doesnt show anything?
[2009/06/15 19:00:03] <hMz> i dont even see them in the debug output
[2009/06/15 19:00:22] <Volcane> odd
[2009/06/15 19:00:29] <hMz> `hash2trans': You must specify a title for objects of type Puppet::Type::Cron (Puppet::Error)
[2009/06/15 19:01:13] <Volcane> hmm, dont have any machines with no cronjobs not sure if thats just a bug of no cronjobs
[2009/06/15 19:01:22] @ Quit: madrescher: Read error: 104 (Connection reset by peer)
[2009/06/15 19:01:25] <hMz> there are cronjobs that are being populated from puppet
[2009/06/15 19:01:27] <hMz> just not all of them
[2009/06/15 19:01:33] <hMz> (even more weird)
[2009/06/15 19:01:37] <Volcane> yeah
[2009/06/15 19:01:46] <hMz> and this box has cronjobs IN the crontab
[2009/06/15 19:06:25] @ Quit: erm_: Read error: 110 (Connection timed out)
[2009/06/15 19:07:16] @ QMan joined channel #puppet
[2009/06/15 19:08:24] @ Quit: ssm: Read error: 60 (Operation timed out)
[2009/06/15 19:13:34] @ andrewcshafer joined channel #puppet
[2009/06/15 19:15:17] @ ssm joined channel #puppet
[2009/06/15 19:15:56] @ Quit: cwebber:
[2009/06/15 19:19:15] @ schwifty_ joined channel #puppet
[2009/06/15 19:19:18] @ Quit: schwifty_: Client Quit
[2009/06/15 19:22:22] @ schwifty_ joined channel #puppet
[2009/06/15 19:22:28] <hMz> think i might have caught it
[2009/06/15 19:25:21] @ Quit: tessier_: Read error: 104 (Connection reset by peer)
[2009/06/15 19:26:26] @ cwebber joined channel #puppet
[2009/06/15 19:35:04] <hMz> or not.
[2009/06/15 19:35:35] @ Quit: schwifty: Read error: 110 (Connection timed out)
[2009/06/15 19:38:58] @ Quit: schwifty_: Read error: 110 (Connection timed out)
[2009/06/15 19:39:11] @ cwebber_ joined channel #puppet
[2009/06/15 19:39:17] @ kolla joined channel #puppet
[2009/06/15 19:41:22] @ tessier_ joined channel #puppet
[2009/06/15 19:42:16] @ schwifty joined channel #puppet
[2009/06/15 19:43:06] @ Quit: schwifty: Client Quit
[2009/06/15 19:43:55] <hMz> ≈/sc
[2009/06/15 19:44:54] @ Quit: cwebber: Read error: 60 (Operation timed out)
[2009/06/15 19:46:39] @ Quit: ssm: Read error: 61 (Connection refused)
[2009/06/15 19:47:41] <hMz> any other clues on my disobedient cronjobs?
[2009/06/15 19:47:52] @ Quit: cwebber_:
[2009/06/15 19:49:24] @ ssm joined channel #puppet
[2009/06/15 19:51:08] <mmcgrath> hMz: define "the crontab"
[2009/06/15 19:51:26] <hMz> all forms of the word are true
[2009/06/15 19:51:32] <mmcgrath> hMz: sorry if you went over it but you're only looking in /etc/crontab not /var/spool/cron/
[2009/06/15 19:51:32] <hMz> crontab -l, /var/cron, etc
[2009/06/15 19:51:56] <hMz> er /var/spool/cron (sorry)
[2009/06/15 19:52:06] <hMz> i dont see any cronjob or any header in cron that looks similar to my cronjobs
[2009/06/15 19:52:06] <mmcgrath> and your crond isn't in some funky state?
[2009/06/15 19:52:13] <hMz> and theres no synced state in the state file
[2009/06/15 19:52:14] <mmcgrath> /etc/cron.d ?
[2009/06/15 19:52:16] <hMz> so its never 'tried' to update it
[2009/06/15 19:52:19] <hMz> its solaris
[2009/06/15 19:52:27] <mmcgrath> hmm
[2009/06/15 19:52:46] <mmcgrath> well my very tiny bag of crond tricks is empty
[2009/06/15 19:52:50] <hMz> i've deleted the whole crontab
[2009/06/15 19:52:57] <hMz> i've tried commented out a couple
[2009/06/15 19:53:08] <hMz> i'm deep down the well of desperation
[2009/06/15 19:53:08] <hMz> :P
[2009/06/15 19:53:09] <mmcgrath> and you've only got one crond running?
[2009/06/15 19:53:25] <hMz> yup
[2009/06/15 19:53:30] <hMz> cron.d looks right
[2009/06/15 19:53:32] <hMz> i'm not in cron.deny
[2009/06/15 19:53:58] <mmcgrath> sorry and you've defined a cron job that's not showing up, or you've got a cron job running and can't fin dit?
[2009/06/15 19:54:01] @ nakano_ is now known as nakano
[2009/06/15 19:54:09] <hMz> i have a cronjob that never gets implemented
[2009/06/15 19:54:13] @ nakano is now known as nakano_
[2009/06/15 19:54:15] <hMz> theres like a dozen of them that dont work
[2009/06/15 19:54:20] <hMz> but one in another module that works
[2009/06/15 19:54:31] <hMz> so i have one cronjob in my now empty root crontab
[2009/06/15 19:54:35] <hMz> and its the one that works
[2009/06/15 19:54:38] <hMz> not the other 11
[2009/06/15 19:54:38] <hMz> ;P
[2009/06/15 19:55:05] <mmcgrath> yep, at a loss.
[2009/06/15 19:55:12] <mmcgrath> disk isn't full or something silly like that? :)
[2009/06/15 19:56:13] <hMz> huh
[2009/06/15 19:56:15] <hMz> thats an interesting idea
[2009/06/15 19:56:16] <hMz> lemme look
[2009/06/15 19:57:09] <hMz> nah
[2009/06/15 19:57:19] <mmcgrath> heh, well now I'm just grasping at straws
[2009/06/15 19:57:36] <hMz> thanks for your time
[2009/06/15 19:58:32] @ Quit: gaveen_: Read error: 60 (Operation timed out)
[2009/06/15 19:58:45] <mmcgrath> good luck
[2009/06/15 19:59:23] <mmcgrath> my only other suggestion would be to make another puppet change (add /tmp/puppettest file or something) to make sure puppet's still behaving properly
[2009/06/15 19:59:34] <mmcgrath> I've rarely seen issues that restarting puppetmaster has fixed.
[2009/06/15 20:01:18] <hMz> yea, i thought that was just me
[2009/06/15 20:01:21] <hMz> i've actually restarted it
[2009/06/15 20:01:26] <hMz> (just for fun)
[2009/06/15 20:01:29] <hMz> lemme try a bogus change tho
[2009/06/15 20:13:17] @ Quit: alfism: "http://opensolaris.com/"
[2009/06/15 20:14:12] @ gaveen_ joined channel #puppet
[2009/06/15 20:14:57] @ Quit: Bass10: Connection timed out
[2009/06/15 20:15:44] @ plathrop is now known as plathrop-away
[2009/06/15 20:16:14] @ plathrop-away is now known as plathrop
[2009/06/15 20:16:48] @ Quit: andrewcshafer:
[2009/06/15 20:19:24] @ plathrop is now known as plathrop-away
[2009/06/15 20:38:41] @ cwebber joined channel #puppet
[2009/06/15 20:41:24] @ Quit: docelic: "http://www.spinlocksolutions.com/"
[2009/06/15 20:44:02] @ Quit: gaveen_: Read error: 60 (Operation timed out)
[2009/06/15 20:53:29] @ Quit: matty91:
[2009/06/15 20:57:16] @ gaveen_ joined channel #puppet
[2009/06/15 20:59:33] @ Quit: justindossey: "Leaving."
[2009/06/15 21:03:15] @ Quit: cwebber:
[2009/06/15 21:09:48] @ Quit: Djelibeybi: "Leaving"
[2009/06/15 21:22:04] @ Djelibeybi joined channel #puppet
[2009/06/15 21:22:15] @ matty91 joined channel #puppet
[2009/06/15 21:29:21] @ unxfrek joined channel #puppet
[2009/06/15 21:32:29] <ricky> Hey, is it possible to have a require on a defined resource?
[2009/06/15 21:32:50] @ Quit: WALoeIII: "Bai."
[2009/06/15 21:32:56] <ricky> I've defined apache::website, but I'm not sure how to reference it
[2009/06/15 21:42:54] <jrojas> so, your define is like a custom function?
[2009/06/15 21:43:14] <jrojas> require => apache::website ?
[2009/06/15 21:44:22] <ricky> Yup, I'm currently trying Apache::Website, because it looks like resource_reference.rb has code that turns it into that, but I'm not sure it'll work
[2009/06/15 21:47:03] <ricky> Hm, that seemed to work, nice.
[2009/06/15 21:54:00] @ joe-mac1 joined channel #puppet
[2009/06/15 21:54:16] <joe-mac1> is there a secret handshake i have to do to get on the puppet dev list?
[2009/06/15 21:57:09] <Djelibeybi> joe-mac1: nope -- http://groups.google.com/group/puppet-dev?hl=en
[2009/06/15 21:58:37] @ Quit: unxfrek: Remote closed the connection
[2009/06/15 22:01:27] @ Quit: alex2: Read error: 104 (Connection reset by peer)
[2009/06/15 22:10:47] @ lak joined channel #puppet
[2009/06/15 22:17:16] @ cwebber joined channel #puppet
[2009/06/15 22:21:30] @ Quit: claymation:
[2009/06/15 22:22:32] @ maxagaz joined channel #puppet
[2009/06/15 22:28:30] @ Quit: matty91:
[2009/06/15 22:32:01] @ Quit: gaveen_: Connection timed out
[2009/06/15 22:33:18] @ gaveen_ joined channel #puppet
[2009/06/15 22:48:14] @ Quit: beawesomeinstead: Read error: 60 (Operation timed out)
[2009/06/15 23:01:47] @ Quit: gaveen_: No route to host
[2009/06/15 23:02:12] @ gaveen_ joined channel #puppet
[2009/06/15 23:04:16] @ beawesomeinstead joined channel #puppet
[2009/06/15 23:14:22] @ pinoyskull joined channel #puppet
[2009/06/15 23:15:59] @ Quit: cwebber:
[2009/06/15 23:26:18] @ cwebber joined channel #puppet
[2009/06/15 23:32:25] @ Quit: cwebber:
[2009/06/15 23:32:55] @ thegcat_ joined channel #puppet
[2009/06/15 23:38:07] @ erm_ joined channel #puppet
[2009/06/15 23:39:37] @ Quit: lak:
[2009/06/15 23:41:37] @ mfoster joined channel #puppet
[2009/06/15 23:42:26] @ cwebber joined channel #puppet
[2009/06/15 23:47:18] @ joe-mac joined channel #puppet
[2009/06/15 23:48:25] @ Quit: joe-mac1: Read error: 110 (Connection timed out)
[2009/06/15 23:49:37] @ Quit: thegcat: Read error: 110 (Connection timed out)

Generated by irclog2html.py 2.6 by Marius Gedminas - find it at mg.pov.lt!