DISQUS

DISQUS Hello! Homo-Adminus Blog is using DISQUS, a powerful comment system, to manage its comments. Learn more.

Community Page

Homo-Adminus Blog

Jump to original thread »
Author

Puppet - Admin’s Best Friend

Started by Scoundrel · 9 months ago

If you’ve ever worked in companies with 5-10+ servers and it was your responsibility to install new boxes, change some configuration files and install new software on many boxes you definitely know how painful this work is. Every time you need to change something on 3-5-100 boxes, ... Continue reading »

6 comments

  • DM

    1 year ago

    To make it work together should I have external IP on client machine? Can't make it work with certificates.
    reply
  • Scoundrel

    1 year ago

    2DM: No, it works on backbone interface for me. First thing I did was assigning puppet master machine a name like puppet.local and adding an appropriate record to /etc/hosts. Then I've specified this name in /etc/puppetmasterd.conf:

    [puppetmasterd]
    reports = store,rrdgraph,tagmail,log
    certname = puppet.local
    reply
  • Ilya Martynov

    1 year ago

    Puppet is nice in theory. In practice we found it is quite unstable for big installations (~100 servers): there are multiple memory leak issues in both puppetmaster and puppet client, stability issues where both die from time to time and even file corruptions. These problems are being slowly fixed with each new release but right now using puppet for big installations is source of constant problems and wastes a lot of time of our sysops team. Unfortunately you don't notice these problems until you get many servers to manage; on smaller installations it seems to work without problems (or at least they happen less often). In our case number of servers we manage increased slowly so we felt into the trap and now rely on puppet too much so it is quite late to change.

    If you start afresh I'd take a look on cfengine: it is not as flexible and nice as puppet but probably is more stable simply because it is more old. In the long run puppet will be probably ok too as it is being developed actively but right now it is in "beta" state.
    reply
  • robbyt

    1 year ago

    re: Ilya

    Disclaimer: I haven't run puppet in a large install, just have done initial research...

    From my understanding on the inner-workings of puppet, it's written in 100% ruby. How can a scripting language have memory leaks? Your version of Ruby may leak memory, but puppet itself cannot. It's possible that the script may have errors or may not have proper error handling that causes it to be unstable, but i seriously doubt that you're experiencing memory leaks when using puppetd.

    Also, i'm not sure about what sort of file corruptions you're talking about- corrupt configuration files?
    reply
  • Ask Bjørn Hansen

    11 months ago

    Hi Robby,

    Huh? Of course you can have memory leaks in a Ruby program - or something to the same effect.

    I've seen them too in our install of just a few dozen servers, but a restart of the process every few months seems to be plenty to keep it in check. The benefits by far outweigh the problems. I can't imagine managing more than one server without it now.

    One of the really neat things is that it makes it VASTLY easier to recreate a server when you're upgrading or replacing it.

    - ask
    reply
  • Phil

    11 months ago

    Yes, there are bugs in Ruby that cause problems with puppet...

    http://reductivelabs.com/trac/puppet/wiki/Frequ...
    reply

Add New Comment

Returning? Login