备案控制台
探索云世界
开发者社区 安全 文章 正文

puppet puppet模块、file模块

2018-10-30 969
版权
版权声明:
本文内容由阿里云实名注册用户自发贡献,版权归原作者所有,阿里云开发者社区不拥有其著作权,亦不承担相应法律责任。具体规则请查看《 阿里云开发者社区用户服务协议》和 《阿里云开发者社区知识产权保护指引》。如果您发现本社区中有涉嫌抄袭的内容,填写 侵权投诉表单进行举报,一经查实,本社区将立刻删除涉嫌侵权内容。
简介: 转载:http://blog.51cto.com/ywzhou/1577356作用:通过puppet模块自动控制客户端的puppet配置,当需要修改客户端的puppet配置时不用在客户端一一设置。

转载:http://blog.51cto.com/ywzhou/1577356

作用:通过puppet模块自动控制客户端的puppet配置,当需要修改客户端的puppet配置时不用在客户端一一设置。

1、服务端配置puppet模块

(1)模块清单

[root@puppet ~]# tree /etc/puppet/modules/puppet/
/etc/puppet/modules/puppet/
├── files
├── manifests
│   ├── config.pp
│   ├── init.pp
│   ├── install.pp
│   ├── params.pp
│   └── service.pp
└── templates
    └── puppet.conf.erb

(2)定义参数类

[root@puppet ~]# vi /etc/puppet/modules/puppet/manifests/params.pp
class puppet::params {
  $puppetserver = "puppet.ewin.com"
  case $operatingsystemmajrelease{
    5: {                #定义centos5系列的参数
      $puppet_release = '3.7.1-1.el5'
      $facter_release = '2.2.0-1.el5'
    }
    6: {                #定义centos6系列的参数
      $puppet_release = '3.7.1-1.el6'      #定义软件版本
      $facter_release = '2.2.0-1.el6'      #定义软件版本
    }
    default: {
      fail("Module puppet is not supported on ${::operatingsystem}")
    }
  }
}

(3)定义安装类

[root@puppet ~]# vi /etc/puppet/modules/puppet/manifests/install.pp
class puppet::install {
  package { "puppet":
    ensure => $puppet::params::puppet_release,
  }
  package { "facter":
    ensure => $puppet::params::facter_release,
  }
}

说明:根据系统版本(centos5或centos6)来安装指定版本的puppet和facter

(4)定义配置类

[root@puppet ~]# vi /etc/puppet/modules/puppet/manifests/config.pp
class puppet::config {
  file { "/etc/puppet/puppet.conf":
    ensure  => present,
    content => template("puppet/puppet.conf.erb"), #文件内容来源于模板
    owner   => "root",
    group   => "root",
    mode    => '0644',
    require => Class["puppet::install"], #要求先完成install.pp
    notify  => Class["puppet::service"], #通知并触发service.pp
  }
}

说明:将配置模板传送到客户端的puppet.conf,设置用户、组、权限

(5)定义配置模板

[root@puppet ~]# vi /etc/puppet/modules/puppet/template/puppet.conf.erb
### config by  puppet ###
[main]
    logdir = /var/log/puppet
    rundir = /var/run/puppet
    ssldir = $vardir/ssl
[agent]
    classfile = $vardir/classes.txt
    localconfig = $vardir/localconfig
    server = <%= scope.lookupvar('puppet::params::puppetserver') %>  #参数调用格式<%= 参数 %>
    report = true
    pluginsync = false
    runinterval = 10 #puppet 客户端默认连接到puppetmaster的时间间隔,默认30分钟,这里测试设为10秒,将会生成大量报告,建议测试完后改回1800

说明:模板调用了params.pp中的参数$puppetserver

(6)定义服务类

[root@puppet ~]# vi /etc/puppet/modules/puppet/manifests/service.pp
class puppet::service {
  service { "puppet":
    ensure     => running,    #确保服务puppet处于运行状态
    hasstatus  => true,       #是否支持service puppet status命令查看状态
    hasrestart => true,       #是否支持service puppet restart命令重启服务
    enable     => true,       #是否开机启动服务
    require    => Class["puppet::install"],
  }
}

(7)定义puppet主类

[root@puppet ~]# vi /etc/puppet/modules/puppet/manifests/init.pp
class puppet {
  include puppet::params,puppet::install,puppet::config,puppet::service
}

(8)定义节点文件,调用模块

[root@puppet ~]# vi /etc/puppet/manifests/centostest.pp

node "centostest.ewin.com" {

include ntp, yum, puppet

}

(9)应用节点文件

[root@puppet ~]# vi /etc/puppet/manifests/site.pp
import "centostest.pp"

2、测试:软件安装版本、配置文件、服务启动

(1)查看已安装版本

[root@centostest ~]# facter | grep operatingsystemmajrelease
operatingsystemmajrelease => 6
[root@centostest ~]# rpm -aq|grep puppet
puppet-3.7.3-1.el6.noarch
[root@centostest ~]# rpm -aq|grep facter
facter-2.3.0-1.el6.x86_64

(2)查看服务状态

[root@centostest ~]# /etc/init.d/puppet stop
Stopping puppet agent:                                     [确定]
[root@centostest ~]# /etc/init.d/puppet status
puppet 已停
[root@centostest ~]# chkconfig --list | grep puppet
puppet          0:关闭  1:关闭  2:关闭  3:关闭  4:关闭  5:关闭  6:关闭

(3)查看配置文件

[root@centostest ~]# cat /etc/puppet/puppet.conf 
[main]
    # The Puppet log directory.
    # The default value is '$vardir/log'.
    logdir = /var/log/puppet
    # Where Puppet PID files are kept.
    # The default value is '$vardir/run'.
    rundir = /var/run/puppet
    # Where SSL certificates are kept.
    # The default value is '$confdir/ssl'.
    ssldir = $vardir/ssl
[agent]
    # The file in which puppetd stores a list of the classes
    # associated with the retrieved configuratiion.  Can be loaded in
    # the separate ``puppet`` executable using the ``--loadclasses``
    # option.
    # The default value is '$confdir/classes.txt'.
    classfile = $vardir/classes.txt
    # Where puppetd caches the local configuration.  An
    # extension indicating the cache format is added automatically.
    # The default value is '$confdir/localconfig'.
    localconfig = $vardir/localconfig

(4)客户端执行测试

[root@centostest ~]# puppet agent --server puppet.ewin.com --test --noop
Info: Retrieving pluginfacts
Info: Retrieving plugin
Info: Caching catalog for centostest.ewin.com
Info: Applying configuration version '1415246721'
Notice: /Stage[main]/Puppet::Install/Package[facter]/ensure: current_value 2.3.0-1.el6, should be 2.2.0-1.el6 (noop) #说明:版本将变成2.2.0-1.el6
Notice: /Stage[main]/Puppet::Install/Package[puppet]/ensure: current_value 3.7.3-1.el6, should be 3.7.1-1.el6 (noop) #说明:版本将变成3.7.1-1.el6
Notice: Class[Puppet::Install]: Would have triggered 'refresh' from 2 events
Notice: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content:  #说明:生成puppet.conf配置文件内容
--- /etc/puppet/puppet.conf 2014-11-04 06:23:12.000000000 +0800
+++ /tmp/puppet-file20141106-34117-1abwj46-0  2014-11-06 12:04:04.724000002 +0800
@@ -1,25 +1,12 @@
-[main]
-    # The Puppet log directory.
-    # The default value is '$vardir/log'.
-    logdir = /var/log/puppet
-
-    # Where Puppet PID files are kept.
-    # The default value is '$vardir/run'.
-    rundir = /var/run/puppet
-
-    # Where SSL certificates are kept.
-    # The default value is '$confdir/ssl'.
-    ssldir = $vardir/ssl
-
-[agent]
-    # The file in which puppetd stores a list of the classes
-    # associated with the retrieved configuratiion.  Can be loaded in
-    # the separate ``puppet`` executable using the ``--loadclasses``
-    # option.
-    # The default value is '$confdir/classes.txt'.
-    classfile = $vardir/classes.txt
-
-    # Where puppetd caches the local configuration.  An
-    # extension indicating the cache format is added automatically.
-    # The default value is '$confdir/localconfig'.
-    localconfig = $vardir/localconfig
+### config by  puppet ###
+[main]
+    logdir = /var/log/puppet
+    rundir = /var/run/puppet
+    ssldir = $vardir/ssl
+[agent]
+    classfile = $vardir/classes.txt
+    localconfig = $vardir/localconfig
+    server = puppet.ewin.com
+    report = true
+    pluginsync = false
+    runinterval = 10
\ No newline at end of file
#说明:每行前的-表示删除行,+表示添加行
Notice: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content: current_value {md5}58e2f9765e2994db8e8ab19a3513356e, should be {md5}fa6ae34360e0b6b7755165fc8e950a76 (noop)
Info: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]: Scheduling refresh of Class[Puppet::Service] #说明:配置文件的改变将触发service.pp
Notice: Class[Puppet::Service]: Would have triggered 'refresh' from 1 events
Info: Class[Puppet::Service]: Scheduling refresh of Service[puppet]
Notice: Class[Puppet::Config]: Would have triggered 'refresh' from 1 events
Notice: /Stage[main]/Puppet::Service/Service[puppet]/ensure: current_value stopped, should be running (noop) #说明:服务当前是关闭的,将变成运行
Info: /Stage[main]/Puppet::Service/Service[puppet]: Unscheduling refresh on Service[puppet]
Notice: Class[Puppet::Service]: Would have triggered 'refresh' from 1 events
Notice: Stage[main]: Would have triggered 'refresh' from 3 events
Notice: Finished catalog run in 0.70 seconds

(5)真正执行puppet agent(不带--noop参数)

[root@centostest ~]# puppet agent --server puppet.ewin.com --test
Info: Retrieving pluginfacts
Info: Retrieving plugin
Info: Caching catalog for centostest.ewin.com
Info: Applying configuration version '1415247249'
Notice: /Stage[main]/Puppet::Install/Package[facter]/ensure: ensure changed '2.3.0-1.el6' to '2.2.0-1.el6'
Error: Could not update: Execution of '/usr/bin/yum -d 0 -e 0 -y downgrade puppet-3.7.1-1.el6' returned 1: Error Downloading Packages:
  puppet-3.7.1-1.el6.noarch: failure: puppet-3.7.1-1.el6.noarch.rpm from puppetlabs-products: [Errno 256] No more mirrors to try.
Wrapped exception:
Execution of '/usr/bin/yum -d 0 -e 0 -y downgrade puppet-3.7.1-1.el6' returned 1: Error Downloading Packages:
  puppet-3.7.1-1.el6.noarch: failure: puppet-3.7.1-1.el6.noarch.rpm from puppetlabs-products: [Errno 256] No more mirrors to try.
Error: /Stage[main]/Puppet::Install/Package[puppet]/ensure: change from 3.7.3-1.el6 to 3.7.1-1.el6 failed: Could not update: Execution of '/usr/bin/yum -d 0 -e 0 -y downgrade puppet-3.7.1-1.el6' returned 1: Error Downloading Packages:
  puppet-3.7.1-1.el6.noarch: failure: puppet-3.7.1-1.el6.noarch.rpm from puppetlabs-products: [Errno 256] No more mirrors to try.
Notice: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]: Dependency Package[puppet] has failures: true
Warning: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]: Skipping because of failed dependencies
Notice: /Stage[main]/Puppet::Service/Service[puppet]: Dependency Package[puppet] has failures: true
Warning: /Stage[main]/Puppet::Service/Service[puppet]: Skipping because of failed dependencies
Notice: Finished catalog run in 171.49 seconds

报错:YUM安装失败,无法下载软件包,在客户端yum clean up再yum list恢复仓库后重试

[root@centostest ~]# puppet agent --server=puppet.ewin.com --test
Info: Retrieving pluginfacts
Info: Retrieving plugin
Info: Caching catalog for centostest.ewin.com
Info: Applying configuration version '1415247249'
Notice: /Stage[main]/Puppet::Install/Package[puppet]/ensure: ensure changed '3.7.3-1.el6' to '3.7.1-1.el6'
Notice: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content: 
--- /etc/puppet/puppet.conf 2014-09-16 04:33:01.000000000 +0800
+++ /tmp/puppet-file20141106-35765-10dpf4t-0  2014-11-06 15:04:50.422305001 +0800
@@ -1,25 +1,12 @@
-[main]
-    # The Puppet log directory.
-    # The default value is '$vardir/log'.
-    logdir = /var/log/puppet
-
-    # Where Puppet PID files are kept.
-    # The default value is '$vardir/run'.
-    rundir = /var/run/puppet
-
-    # Where SSL certificates are kept.
-    # The default value is '$confdir/ssl'.
-    ssldir = $vardir/ssl
-
-[agent]
-    # The file in which puppetd stores a list of the classes
-    # associated with the retrieved configuratiion.  Can be loaded in
-    # the separate ``puppet`` executable using the ``--loadclasses``
-    # option.
-    # The default value is '$confdir/classes.txt'.
-    classfile = $vardir/classes.txt
-
-    # Where puppetd caches the local configuration.  An
-    # extension indicating the cache format is added automatically.
-    # The default value is '$confdir/localconfig'.
-    localconfig = $vardir/localconfig
+### config by  puppet ###
+[main]
+    logdir = /var/log/puppet
+    rundir = /var/run/puppet
+    ssldir = $vardir/ssl
+[agent]
+    classfile = $vardir/classes.txt
+    localconfig = $vardir/localconfig
+    server = puppet.ewin.com
+    report = true
+    pluginsync = false
+    runinterval = 10
\ No newline at end of file
Info: Computing checksum on file /etc/puppet/puppet.conf
Info: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]: Filebucketed /etc/puppet/puppet.conf to puppet with sum 58e2f9765e2994db8e8ab19a3513356e
Notice: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content: content changed '{md5}58e2f9765e2994db8e8ab19a3513356e' to '{md5}fa6ae34360e0b6b7755165fc8e950a76'
Info: /Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]: Scheduling refresh of Class[Puppet::Service]
Info: Class[Puppet::Service]: Scheduling refresh of Service[puppet]
Notice: /Stage[main]/Puppet::Service/Service[puppet]/ensure: ensure changed 'stopped' to 'running'
Info: /Stage[main]/Puppet::Service/Service[puppet]: Unscheduling refresh on Service[puppet]
Notice: Finished catalog run in 222.24 seconds

(6)查看客户端日志

[root@centostest ~]# tailf /var/log/message
Nov  6 12:12:50 centostest puppet-agent[34357]: Retrieving pluginfacts
Nov  6 12:12:50 centostest puppet-agent[34357]: Retrieving plugin
Nov  6 12:12:51 centostest puppet-agent[34357]: Caching catalog for centostest.ewin.com
Nov  6 12:12:52 centostest puppet-agent[34357]: Applying configuration version '1415247249'
Nov  6 12:13:29 centostest yum[34565]: Installed: 1:facter-2.2.0-1.el6.x86_64
Nov  6 12:13:31 centostest puppet-agent[34357]: (/Stage[main]/Puppet::Install/Package[facter]/ensure) ensure changed '2.3.0-1.el6' to '2.2.0-1.el6'
Nov  6 12:15:43 centostest puppet-agent[34357]: Could not update: Execution of '/usr/bin/yum -d 0 -e 0 -y downgrade puppet-3.7.1-1.el6' returned 1: Error Downloading Packages:
Nov  6 12:15:43 centostest puppet-agent[34357]:   puppet-3.7.1-1.el6.noarch: failure: puppet-3.7.1-1.el6.noarch.rpm from puppetlabs-products: [Errno 256] No more mirrors to try.
Nov  6 12:15:43 centostest puppet-agent[34357]: Wrapped exception:
Nov  6 12:15:43 centostest puppet-agent[34357]: Execution of '/usr/bin/yum -d 0 -e 0 -y downgrade puppet-3.7.1-1.el6' returned 1: Error Downloading Packages:
Nov  6 12:15:43 centostest puppet-agent[34357]:   puppet-3.7.1-1.el6.noarch: failure: puppet-3.7.1-1.el6.noarch.rpm from puppetlabs-products: [Errno 256] No more mirrors to try.
Nov  6 12:15:43 centostest puppet-agent[34357]: (/Stage[main]/Puppet::Install/Package[puppet]/ensure) change from 3.7.3-1.el6 to 3.7.1-1.el6 failed: Could not update: Execution of '/usr/bin/yum -d 0 -e 0 -y downgrade puppet-3.7.1-1.el6' returned 1: Error Downloading Packages:
Nov  6 12:15:43 centostest puppet-agent[34357]: (/Stage[main]/Puppet::Install/Package[puppet]/ensure)   puppet-3.7.1-1.el6.noarch: failure: puppet-3.7.1-1.el6.noarch.rpm from puppetlabs-products: [Errno 256] No more mirrors to try.
Nov  6 12:15:43 centostest puppet-agent[34357]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]) Dependency Package[puppet] has failures: true
Nov  6 12:15:43 centostest puppet-agent[34357]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]) Skipping because of failed dependencies
Nov  6 12:15:43 centostest puppet-agent[34357]: (/Stage[main]/Puppet::Service/Service[puppet]) Dependency Package[puppet] has failures: true
Nov  6 12:15:43 centostest puppet-agent[34357]: (/Stage[main]/Puppet::Service/Service[puppet]) Skipping because of failed dependencies
Nov  6 12:15:43 centostest puppet-agent[34357]: Finished catalog run in 171.49 seconds

以上日志是第一次执行puppet agent,安装facter成功,但下载puppet-3.7.1失败

Nov  6 15:01:08 centostest puppet-agent[35765]: Retrieving pluginfacts
Nov  6 15:01:08 centostest puppet-agent[35765]: Retrieving plugin
Nov  6 15:01:10 centostest puppet-agent[35765]: Caching catalog for centostest.ewin.com
Nov  6 15:01:10 centostest puppet-agent[35765]: Applying configuration version '1415247249'
Nov  6 15:04:49 centostest yum[35972]: Installed: puppet-3.7.1-1.el6.noarch
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Install/Package[puppet]/ensure) ensure changed '3.7.3-1.el6' to '3.7.1-1.el6'
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) 
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) --- /etc/puppet/puppet.conf#0112014-09-16 04:33:01.000000000 +0800
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +++ /tmp/puppet-file20141106-35765-10dpf4t-0#0112014-11-06 15:04:50.422305001 +0800
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) @@ -1,25 +1,12 @@
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -[main]
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # The Puppet log directory.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # The default value is '$vardir/log'.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    logdir = /var/log/puppet
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # Where Puppet PID files are kept.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # The default value is '$vardir/run'.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    rundir = /var/run/puppet
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # Where SSL certificates are kept.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # The default value is '$confdir/ssl'.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    ssldir = $vardir/ssl
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -[agent]
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # The file in which puppetd stores a list of the classes
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # associated with the retrieved configuratiion.  Can be loaded in
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # the separate ``puppet`` executable using the ``--loadclasses``
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # option.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # The default value is '$confdir/classes.txt'.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    classfile = $vardir/classes.txt
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # Where puppetd caches the local configuration.  An
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # extension indicating the cache format is added automatically.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    # The default value is '$confdir/localconfig'.
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) -    localconfig = $vardir/localconfig
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +### config by  puppet ####015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +[main]#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    logdir = /var/log/puppet#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    rundir = /var/run/puppet#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    ssldir = $vardir/ssl#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +[agent]#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    classfile = $vardir/classes.txt#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    localconfig = $vardir/localconfig#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    server = puppet.ewin.com#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    report = true#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    pluginsync = false#015
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) +    runinterval = 10
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) \ No newline at end of file
Nov  6 15:04:50 centostest puppet-agent[35765]: Computing checksum on file /etc/puppet/puppet.conf
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]) Filebucketed /etc/puppet/puppet.conf to puppet with sum 58e2f9765e2994db8e8ab19a3513356e
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) content changed '{md5}58e2f9765e2994db8e8ab19a3513356e' to '{md5}fa6ae34360e0b6b7755165fc8e950a76'
Nov  6 15:04:50 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]) Scheduling refresh of Class[Puppet::Service]
Nov  6 15:04:50 centostest puppet-agent[35765]: (Class[Puppet::Service]) Scheduling refresh of Service[puppet]
Nov  6 15:04:52 centostest puppet-agent[36125]: Reopening log files
Nov  6 15:04:52 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Service/Service[puppet]/ensure) ensure changed 'stopped' to 'running'
Nov  6 15:04:52 centostest puppet-agent[35765]: (/Stage[main]/Puppet::Service/Service[puppet]) Unscheduling refresh on Service[puppet]
Nov  6 15:04:52 centostest puppet-agent[35765]: Finished catalog run in 222.24 seconds
Nov  6 15:04:52 centostest puppet-agent[36125]: Starting Puppet client version 3.7.1
Nov  6 15:04:52 centostest puppet-agent[36125]: Run of Puppet configuration client already in progress; skipping  (/var/lib/puppet/state/agent_catalog_run.lock exists)
Nov  6 15:05:06 centostest puppet-agent[36135]: Finished catalog run in 0.46 seconds

以上是重新获取YUM仓库后,第二次执行puppet agent的日志, 成功将puppet-3.7.3降为3.7.1版本,因此最好一开始指定好puppet版本安装。

(7)查看客户端测试结果

查看已安装版本:

[root@centostest ~]# rpm -aq|grep facter
facter-2.2.0-1.el6.x86_64
[root@centostest ~]# rpm -aq|grep puppet
puppet-3.7.1-1.el6.noarch

查看服务状态:

[root@centostest ~]# /etc/init.d/puppet status
puppet (pid  36125) 正在运行...
[root@centostest ~]# chkconfig --list | grep puppet
puppet          0:关闭  1:关闭  2:启用  3:启用  4:启用  5:启用  6:关闭

查看配置文件:

[root@centostest ~]# cat /etc/puppet/puppet.conf
### config by  puppet ###
[main]
    logdir = /var/log/puppet
    rundir = /var/run/puppet
    ssldir = $vardir/ssl
[agent]
    classfile = $vardir/classes.txt
    localconfig = $vardir/localconfig
    server = puppet.ewin.com
    report = true
    pluginsync = false
    runinterval = 10

结论:软件版本成功转变成指定版本;服务启动并添加到开机启动中;配备文件成功从模板获取,参数应用成功。

3、测试配置文件的变更影响

客户端修改配置文件导致puppet服务重启:

[root@centostest ~]# echo "#add a line" >> /etc/puppet/puppet.conf
[root@centostest ~]# tailf /var/log/message
Nov  6 15:33:57 centostest puppet-agent[57545]: (/Stage[main]/Puppet::Config/File[/etc/puppet/puppet.conf]/content) content changed '{md5}29acb66e2f297a5cf2ff6cbe731998f5' to '{md5}bb6d66a4b72890ef1bfa048c0cf179d8'
Nov  6 15:33:57 centostest puppet-agent[56826]: Caught HUP; calling restart
Nov  6 15:33:57 centostest puppet-agent[57545]: (/Stage[main]/Puppet::Service/Service[puppet]) Triggered 'refresh' from 1 events
Nov  6 15:33:57 centostest puppet-agent[57545]: Finished catalog run in 1.10 seconds
Nov  6 15:33:58 centostest puppet-agent[56826]: Caught HUP; calling restart
Nov  6 15:33:58 centostest puppet-agent[56826]: Restarting with '/usr/bin/puppet agent'
Nov  6 15:33:59 centostest puppet-agent[57782]: Reopening log files
Nov  6 15:34:00 centostest puppet-agent[57782]: Starting Puppet client version 3.7.1
Nov  6 15:34:02 centostest puppet-agent[57784]: Finished catalog run in 0.63 seconds

结论:成功改变配置文件内容,触发puppet服务重启,接下来是agent启动的信息。

4、file资源

file {'nginx.conf': 
  ensure => file,    #定义类型:文件file或目录directory
  mode   => '0640',  #权限
  owner  => root,    #属于用户
  group  => root,    #属于用户组
}

其他参数

{
  ensure       => present|absent|file|directory|link, #present检查文件是否存在,如果存在则不创建
  backup       => , #通过filebucket备份文件,可备份到其他设备
  checksum     => , #检查文件是否被修改,默认检测法为MD5,其他有md5lite\mtime\ctime\none
  ctime        => , #只读属性,文件的更新时间
  mtime        => , #只读属性
  content      => , #文件的内容 
  force        => , #强制删除文件、软链接及目录,确保ensure=absent
  owner        => , #指定文件的用户名或用户ID
  group        => , #指定文件的用户组名或组ID
  ignore       => , #忽略指定的匹配文件,可以匹配目录结构
  link         => , #软链接,类似于ln命令
  mode         => , #文件权限配置
  path         => '/tmp/test',#文件路径,使用双引号,可用标题代替
  purge        => , #清空目录中未在manifest中定义的文件或目录,必须与recurse=>true使用
  recurse      => true|false|inf|remote, #递归目录
  recurselimit => , #递归的目录的深度,值为数字
  replace      => true|false, #是否允许覆盖文件内容,默认为true(覆盖)
  source       => '/home/123.txt'|'http://'|'puppet:///', #源文件,本地路径或URL路径
  sourceselect => firest|all, #可设置多个source源文件,本参数指定只复制每一个有效文件还是全部文件到目标
  target       => '/tmp/testlink', #指定目录,配合ensure => link使用
  type         => , #只读状态检查文件类型
}
文章标签:
网络安全
关键词:
Puppet file
Puppet模块
sktj
目录
相关文章
sktj
puppet连载17:file资源详解
file {'/tmp/filetest': content => "aaa", ensure => file, } ensure => present file {'/tmp/filetest': content => "aaa", } file {...
sktj
850 0
sktj
|
Java 应用服务中间件 Linux
puppet连载九:linux安装jdk、tomcat模块
安装jdk1.8.0_91和tomcat8.0.36 mkdir -p /etc/puppet/modules/linuxjdktomcat/{manifests,templates,files} vi /etc/puppet/modules/linuxjdktomcat/manifests/init.
sktj
1040 0
sktj
|
MySQL 关系型数据库 Linux
puppet连载10:linux安装percona57/56/55、sysbench、tpcc模块
在服务端/puppet/soft下建my.cnf,内容为https://www.jianshu.com/p/c63fc6c71279 在服务端/puppet/soft下建changemysql57pass.
sktj
1017 0
sktj
|
Linux 开发工具 git
puppet连载七:linux基础组件安装模块
linux基础组件安装模块linuxbaseinstall 更换源,安装gcc gcc-c++ glibc-devel make ncurses-devel openssl-devel autoconf git mkdir -p /etc/puppet...
sktj
1045 0
sktj
puppet连载六:创建测试模块test
创建测试模块 mkdir -p /etc/puppet/modules/test/{manifests,templates,files} vi /etc/puppet/modules/test/manifests/init.
sktj
852 0
sktj
|
网络协议 Linux 安全
puppet连载八:linux优化模块
linux优化模块 在服务端先建立文件limits.con vi /puppet/soft/limits.conf soft nofile 102400 hard nofile 102400 soft nproc 102400 hard nproc 102400 保存,退出 在服务端建立文件sysctl.
sktj
779 0
sktj
|
测试技术
puppet cron 模块
转载:http://blog.51cto.com/ywzhou/1577299 Puppet模块章节环境说明 服务端 | 客户端 操作系统:CentOS 6.
sktj
944 0
sktj
|
安全 Linux 网络协议
puppet yum模块、配置仓储、mount模块
转载:http://blog.51cto.com/ywzhou/1577335 作用:自动为客户端配置YUM源,为使用yum安装软件包提供便捷。 1、服务端配置yum模块 (1)模块清单 [root@puppet ~]# tree /etc/puppe...
sktj
1070 0
sktj
|
监控 网络协议 网络架构
puppet host模块
转载:http://blog.51cto.com/ywzhou/1577432作用:自动配置客户端的hosts文件,解决网络内的计算机之间计算机名称解析问题,适用于没有部署DNS服务器的内网环境。
sktj
1053 0
sktj
|
存储 Linux 网络安全
puppet ssh模块
转载:http://blog.51cto.com/ywzhou/1577502 作用:通过SSH模块管理客户端的ssh远程服务,并用key认证方式替代密码认证方式,提高安全性; 本例分两阶段,首先是ssh的安装、配置及服务管理,然后是使用如何转换成key认证方式。
sktj
1348 0
为什么选择阿里云什么是云计算全球基础设施技术领先稳定可靠安全合规分析师报告
产品和定价全部产品免费试用产品动态产品定价价格计算器云上成本管理
解决方案技术解决方案
文档与社区文档开发者社区天池大赛培训与认证
权益中心免费试用高校计划企业扶持计划推荐返现计划
支持与服务基础服务企业增值服务迁云服务官网公告健康看板信任中心
关注阿里云
关注阿里云公众号或下载阿里云APP,关注云资讯,随时随地运维管控云服务
阿里云APP阿里云微信
联系我们:4008013260
法律声明Cookies政策廉正举报安全举报联系我们加入我们
阿里巴巴集团淘宝网天猫全球速卖通阿里巴巴国际交易市场1688阿里妈妈飞猪阿里云计算AliOS万网高德UC友盟优酷钉钉支付宝达摩院淘宝海外阿里云盘饿了么
© 2009-2024 Aliyun.com 版权所有 增值电信业务经营许可证: 浙B2-20080101 域名注册服务机构许可: 浙D3-20210002 京D3-20220015
浙公网安备 33010602009975号浙B2-20080101-4