“Puppet基础”的版本间的差异

来自linux中国网wiki
跳到导航 跳到搜索
第73行: 第73行:
  
 
**   
 
**   
 +
cat /etc/yum.repos.d/puppet7.repo
 +
[puppet7]
 +
name=Puppet 7 Repository el 7 - $basearch
 +
#baseurl=https://mirrors.aliyun.com/puppet/yum/puppet7/el/7/$basearch
 +
baseurl=http://yum.puppetlabs.com/puppet7/el/7/$basearch
 +
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-puppet7-release
 +
      file:///etc/pki/rpm-gpg/RPM-GPG-KEY-2025-04-06-puppet7-release
 +
enabled=1
 +
gpgcheck=1
 +
 +
 
yum clean all
 
yum clean all
 
yum makecache
 
yum makecache
第79行: 第90行:
 
                                                                                                                                                                              
 
                                                                                                                                                                              
 
  echo 'export PATH=/opt/puppetlabs/bin:$PATH'  >> /etc/profile  && source /etc/profile                                                                                 
 
  echo 'export PATH=/opt/puppetlabs/bin:$PATH'  >> /etc/profile  && source /etc/profile                                                                                 
                                                                                                                                                                          https://puppet.com/docs/puppet/6.19/install_agents.html                                                                                                                     
+
                                                                                                                                                                        https://puppet.com/docs/puppet/6.19/install_agents.html                                                                                                                     
 
                                                                                                                                                                              
 
                                                                                                                                                                              
 
  Start the Puppet service: sudo /opt/puppetlabs/bin/puppet resource service puppet ensure=running enable=true                                                                 
 
  Start the Puppet service: sudo /opt/puppetlabs/bin/puppet resource service puppet ensure=running enable=true                                                                 

2021年10月28日 (四) 01:15的版本

why

一切按官方文档是最好的哦 虽然英文Oct 27 2021 

salt 老是0day问题 ,为了安全 于是上puppet 现在文档真的很少,以前在dovo时,流行得很呢 于是有了本文

install

https://puppet.com/docs/puppet/7/install_agents.html#configure_server_setting

https://puppet.com/docs/puppetserver/5.3/intermediate_ca_configuration.html

https://puppet.com/docs/puppet/7/ssl_regenerate_certificates.html


aliyun mirrors

https://developer.aliyun.com/mirror/puppet https://mirrors.aliyun.com/puppet/

* Enable the Puppet platform repository

RH

 可以用aliyun mirrors 会更加快 

wget -c https://mirrors.aliyun.com/puppet/yum/puppet7/el/7/x86_64/puppet7-release-7.0.0-1.el7.noarch.rpm && rpm -Uvh puppet7-release-7.0.0-1.el7.noarch.rpm

rpm -Uvh https://yum.puppet.com/puppet6-release-el-7.noarch.rpm                                                                                                          
                                                                                                                                                                            
                                                                                                                                                                            
                                                                                                                                                                            

debian 10 or kali 2021 只能是 buster 注意

                                                                                                                                                                            
 记得要改为google dns 8.8.4.4 or alidns                                                                                                                                      
 #wget -c https://apt.puppetlabs.com/puppet6-release-buster.deb && dpkg  -i  puppet6-release-buster.deb              

#on my kali 
wget -c https://mirrors.aliyun.com/puppet/apt/puppet7-release-buster.deb &&  dpkg  -i puppet7-release-buster.deb
#https://mirrors.aliyun.com/puppet/apt/puppet6-release-buster.deb &&                                                         
                                                                                                                                                                             
 wget -c https://mirrors.aliyun.com/puppet/apt/puppet7-release-bullseye.deb        && dpkg -i  puppet7-release-bullseye.deb #debian 11                                                                                                                                                               
 #wget  https://apt.puppet.com/puppet7-release-buster.deb  && dpkg -i dpkg -i  puppet7-release-buster.deb                                                                     
 apt update       

Installing Puppet Server

    
apt update                                                                                                                                                                          
 apt-get install puppetserver                                                                                                                                                
                                                                                                                                                                            
  sudo systemctl start puppetserver                                                                                                                                          
                                                                                                                                                                             
 /opt/puppetlabs/server/apps/puppetserver/bin/puppetserver  -v                                                                                                               
 puppetserver version: 6.14.1                                                                                                                                                
                                                                                                                                                                             
 cp /etc/profile  /etc/profileevanbak                                                                                                                                        
                                                                                                                                                                             
  echo 'export PATH=/opt/puppetlabs/server/apps/puppetserver/bin/:$PATH' >> /etc/profile                                                                                     
                                                                                                                                                                             
                                                                                                                                                                             
 apt-get install default-jdk                                                                                                                                                 
     


如何在 Debian 10 上安装 OpenJDK11/OpenJDK8                                                                                          
                                                                                                                                                                            
                                                                                                                                                                            
Installing JDK on Debian 10                                                                                                  
                                                                                                                                                                            
https://puppet.com/docs/puppet/6.19/server/install_from_packages.html

* 3. Install Puppet agent

                                                                                                                                                  
 ** rpm -Uvh  https://yum.puppet.com/puppet7-release-el-7.noarch.rpm                                                                                                         
                                                                                                                                                                             
 https://yum.puppet.com/puppet7-release-el-8.noarch.rpm                                                                                                                      
 https://yum.puppet.com/puppet6-release-el-7.noarch.rpm      

**   
 cat /etc/yum.repos.d/puppet7.repo 
[puppet7]
name=Puppet 7 Repository el 7 - $basearch
#baseurl=https://mirrors.aliyun.com/puppet/yum/puppet7/el/7/$basearch
baseurl=http://yum.puppetlabs.com/puppet7/el/7/$basearch
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-puppet7-release
       file:///etc/pki/rpm-gpg/RPM-GPG-KEY-2025-04-06-puppet7-release
enabled=1
gpgcheck=1


yum clean all
yum makecache
                                                                                                                                                                       
 yum install puppet-agent                                                                                                                                                    
                                                                                                                                                                             
 echo 'export PATH=/opt/puppetlabs/bin:$PATH'  >> /etc/profile  && source /etc/profile                                                                                 
                                                                                                                                                                         https://puppet.com/docs/puppet/6.19/install_agents.html                                                                                                                     
                                                                                                                                                                             
 Start the Puppet service: sudo /opt/puppetlabs/bin/puppet resource service puppet ensure=running enable=true                                                                
                                                                                                                                                                             
 ** deb  
 apt-get install puppet-agent

 source /etc/profile.d/puppet-agent.sh                           

https://puppet.com/docs/puppet/7/install_agents.html

* 4. Install PuppetDB (optional)

configure

https://puppet.com/docs/puppet/7/install_agents.html#agent_primary_server_connections


# 要先配置hosts 

#On the agent node, run:
puppet config set server puppetserver.example.com --section main

#3. Connect the agent to the primary server and sign the certificate

# on agent  node
puppet ssl bootstrap

You will see a message that looks like:

Info: Creating a new RSA SSL key for <agent node>

#On the primary server node, sign the certificate:
#puppetsrver 
sudo puppetserver ca sign --certname <name>
#我是这个 其实最好不要这个 
puppetserver ca sign --all


#On the agent node, run the agent again:

puppet ssl bootstrap

相关配置文件

puppet server

cat /etc/hosts

127.0.0.1    puppetserver.example.com 
192.168.10.32    puppetserver.example.com 
192.168.10.39 puppetagent
192.168.10.33 puppetagent2

cat /etc/puppetlabs/puppet/puppet.conf

# This file can be used to override the default puppet settings.
# See the following links for more details on what settings are available:
# - https://puppet.com/docs/puppet/latest/config_important_settings.html
# - https://puppet.com/docs/puppet/latest/config_about_settings.html
# - https://puppet.com/docs/puppet/latest/config_file_main.html
# - https://puppet.com/docs/puppet/latest/configuration.html
[server]
vardir = /opt/puppetlabs/server/data/puppetserver
logdir = /var/log/puppetlabs/puppetserver
rundir = /var/run/puppetlabs/puppetserver
pidfile = /var/run/puppetlabs/puppetserver/puppetserver.pid
codedir = /etc/puppetlabs/code
[master]
certname = puppetserver.example.com

agent

cat /etc/hosts
127.0.0.1	localhost
#127.0.1.1	puppetserver.example.com	puppetserver
192.168.10.32 	puppetserver.example.com	puppetserver
127.0.1.1	puppetagent

cat /etc/puppetlabs/puppet/puppet.conf 
[main]
server = puppetserver.example.com
# This file can be used to override the default puppet settings.
# See the following links for more details on what settings are available:
# - https://puppet.com/docs/puppet/latest/config_important_settings.html
# - https://puppet.com/docs/puppet/latest/config_about_settings.html
# - https://puppet.com/docs/puppet/latest/config_file_main.html
# - https://puppet.com/docs/puppet/latest/configuration.html
[agent]
runinterval=30

agent2

cat /etc/hosts
127.0.0.1	localhost
127.0.1.1	puppetagent2
#debian11
#127.0.0.1 puppetserver.example.com

192.168.10.32    puppetserver.example.com 

root@puppetagent2:~# cat /etc/puppetlabs/puppet/puppet.conf 
[main]
server = puppetserver.example.com
[agent]
runinterval=30

这里的明天再补上 Sep 26

默认30分钟太久

#on agent  120 秒  ,2 分钟 
vi  /etc/puppetlabs/puppet/puppet.conf 
[agent]
server = master.test.cn
runinterval=120

入门例子

#安装到所有节点  默认是半个小时成效 可以手工执行
 cat /etc/puppetlabs/code/environments/production/manifests/site.pp
node default {
    package { 'emacs':
     ensure => present,
  }
}



# 笨方法  两个节点安装 w3m 
 cat /etc/puppetlabs/code/environments/production/manifests/site.pp
node 'puppetagent' {
    package { 'w3m':
     ensure => present,
  }
}
node 'puppetagent2' {
    package { 'w3m':
     ensure => present,
  }
}

video

Puppet自动化运维企业实战

see also

references

https://en.wikipedia.org/wiki/Puppet_(software)


puppet批量管理500多台服务器

Puppet常识梳理

Puppet组件详解

Puppet类用法示例


puppet多环境配置(puppet自动化系列2)

puppet初始化安装和配置(puppet自动化系列1)

puppet自动化布署配置入门


Puppet自动化管理配置

puppet入门

Puppet 实验五 软件安装测试

Usage

puppet入门:puppet使用基础(puppet 5)


Puppet批量部署实际案例

puppet的配置

应用例子

Puppet批量部署tomcat

Puppet批量部署tomcat