Project

General

Profile

Feature #26164

Provide Puppet (CA) multi homing

Added by Ewoud Kohl van Wijngaarden about 4 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Ewoud Kohl van Wijngaarden
Category:
Puppet integration
Target version:
-
Difficulty:
Triaged:
No
Bugzilla link:
Pull request:
https://github.com/theforeman/foreman/pull/6513
Fixed in Releases:
1.24.0
Found in Releases:
Red Hat JIRA:

Description

Currently the generated puppetmaster and puppet_ca_server hostnames are the same as the smart proxy.

This isn't always the case. When you have a setup:

Foreman <-> Smart Proxy <-> Hosts

Here you have a private LAN between Foreman and its Smart Proxies. There is another network which has hosts. Here you'd have the Puppet (CA) on the host network. In hostnames:

  • foreman.lan.example.com (192.0.2.2)
  • proxy.lan.example.com (192.0.2.3)
  • proxy.wan.example.com (198.51.100.3)
  • puppet.wan.example.com (198.51.100.4)
  • puppetca.wan.example.com (198.51.100.5)

In /etc/foreman-proxy/settings.d/puppet_proxy_puppet_api.yml you'd configure:

:puppet_url: https://puppet.wan.example.com:8140

In /etc/foreman-proxy/settings.d/puppetca_http_api.yml (Proxy 1.22) you'd configure:

:puppet_url: https://puppetca.wan.example.com:8140

By using the new capabilities framework we can expose these settings to Foreman. Foreman can use these to present the correct hostnames, like in the provisioning templates.

Related issues

Related to Foreman - Feature #4345: Puppet CA proxyNew2014-02-14
Related to Smart Proxy - Feature #26322: Expose the Puppet API URLsClosed

Associated revisions

Revision c2317d44 (diff)
Added by Ewoud Kohl van Wijngaarden over 3 years ago

Fixes #26164 - Use the proxy configured puppet_url

When the proxy exposes the puppet_url setting for the Puppet or Puppet
CA features this can be used to provide multi homing.

An additional benefit is that we support using a non-standard port for
both the Puppet master and the CA.

History

#1 Updated by The Foreman Bot about 4 years ago

  • Assignee set to Ewoud Kohl van Wijngaarden
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/6513 added

#2 Updated by Ewoud Kohl van Wijngaarden about 4 years ago

#3 Updated by Ewoud Kohl van Wijngaarden about 4 years ago

#4 Updated by Tomer Brisker almost 4 years ago

  • Target version changed from 1.22.0 to 1.23.0

Looks like this didn't make it in to 1.22.

#5 Updated by Tomer Brisker over 3 years ago

  • Target version deleted (1.23.0)

this is still wip and missed the 1.23 branching.

#6 Updated by The Foreman Bot over 3 years ago

  • Fixed in Releases 1.24.0 added

#7 Updated by Ewoud Kohl van Wijngaarden over 3 years ago

  • Status changed from Ready For Testing to Closed

#8 Updated by Amit Upadhye over 3 years ago

  • Category set to PuppetCA

#9 Updated by Ewoud Kohl van Wijngaarden over 3 years ago

  • Category changed from PuppetCA to Puppet integration

Also available in: Atom PDF