From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1QOh3N-00037O-Uu for garchives@archives.gentoo.org; Tue, 24 May 2011 02:09:02 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 512111C319 for ; Tue, 24 May 2011 02:09:01 +0000 (UTC) Received: from mail-pv0-f181.google.com (mail-pv0-f181.google.com [74.125.83.181]) by pigeon.gentoo.org (Postfix) with ESMTP id C4AB51C2D3 for ; Tue, 24 May 2011 01:32:24 +0000 (UTC) Received: by pvg13 with SMTP id 13so4197206pvg.40 for ; Mon, 23 May 2011 18:32:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:sender:from:reply-to:to:subject:date:message-id :x-mailer:mime-version:content-language:content-type :content-transfer-encoding; bh=V5szPm5ciYh/C65NSL4gfhjD4pF+owGxhuTwuoLZb/Y=; b=xHQ1deOPdkIe9+KnfNimKQSs/eYcSCxnS/IdywMtYMLV72WfuBv+W5IuNfY0zyokIQ 0pCMpnEoQu4fRGIYmGxG6XJWYVrL8plHeIKCRXOX2LDfEFPTQCDT1DLRFyMsXXosyeFC Vg+iqJlMhHClxTO3bYSR4QFLDsX9E6ETkBQq0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:from:reply-to:to:subject:date:message-id:x-mailer :mime-version:content-language:content-type :content-transfer-encoding; b=X9Yq55u9zEPsCqtVwFqExtToVMbaHgoWp3KOOYXyzeh1jpJKsVQiogT/8UyzmtHxLY qYktd5+5I3141ZZFo8W5uibU5osK9qacSDAzsuNAotNm0DjOS2tZ0Z1wcn8V6ze4sLTr J0biU0KJQQvS9ZzmilW1vpMC7buOx+pOH2YCA= Received: by 10.143.26.8 with SMTP id d8mr889371wfj.343.1306200743492; Mon, 23 May 2011 18:32:23 -0700 (PDT) Received: from [10.162.164.3] ([180.214.232.20]) by mx.google.com with ESMTPS id p40sm6301702wfc.7.2011.05.23.18.32.19 (version=SSLv3 cipher=OTHER); Mon, 23 May 2011 18:32:22 -0700 (PDT) Sender: Pandu Poluan From: Pandu Poluan To: gentoo-server@lists.gentoo.org Subject: RE: [gentoo-server] Managing multiple servers. Date: Tue, 24 May 2011 08:31:42 +0700 Message-ID: <5BGlqRGJgy6B.GHFSYw3w@smtp.gmail.com> X-Mailer: EPOC Email Version 2.10 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-server@lists.gentoo.org Reply-to: gentoo-server@lists.gentoo.org MIME-Version: 1.0 Content-Language: i-default Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Archives-Salt: X-Archives-Hash: 86bb6bce30cb5013521f09de6481121a -original message- Subject: Re: [gentoo-server] Managing multiple servers. From: kashani Date: 2011-05-24 07:40 On 5/23/2011 3:12 PM, la Bigmac wrote: >> Hello list, >> >> Seems to be a few people recently wanting to discuss Gentoo as a = server >> :-) so thought I would pose a question that has been bugging me. >> >> What would you guys recommend to manage multiple servers and the = package >> versions? >> >> While I have a central emerge server (*rsync)* and sync all of my >> servers to it I still manually update the packages. >> >> Example, openssh how should I be updating openssh on all of my = servers >> other than logging onto each one in turn and running emerge = openssh. >> >> Should I cron schedule an /emerge/ --/update world /and control = the >> repository of packages or is there a more elegant solution? > >I've become a huge Puppet nerd over the last year. I'm not managing = >Gentoo on it, but it's supported and Puppet Labs does seem to fix Gentoo = >bugs in a reasonable time. > >First you'll need Ruby 1.8.7 as 1.9.2 support in Ruby isn't quite there = >yet. I'd also run unstable for Puppet and Facter. You're better off = >jumping in at 2.6.x than 0.25.x. > >Puppet requires facter which is very cool in it's own right. It's local = >discovery of the OS and those facts about your system can be used in = >templates to make decisions. Here's an example for setting higher=20 >thresholds on my large machines. > ><% if processorcount.to_i >=3D 12 then -%> > >and here's an example of a module to make sure sudo is the latest=20 >version and add a config file for my local sudoers additions. > >class sudo { > package { "sudo": ensure =3D> latest, } > > file { "/etc/sudoers.d/my_additions": > ensure =3D> present, > owner =3D> root, group =3D> root, mode =3D> 440, > require =3D> Package["sudo"], > source =3D> "puppet:///modules/sudo/my_additions", > } >} > >In order to make this work you'd really need to have modules for each = >package in your world file and set ensure =3D> latest rather than just = >present. However it does make it easy to keep configs, users, settings, = >which packages in sync across machines. > >That's Puppet in a very very tiny nutshell. They are some unique=20 >challenges with using it well with Gentoo, but it would ultimately make = >your system easier to reproduce. > >kashani Interesting... Now, I've never used Puppet before, so please forgive my apparently = ignorant questions: 1. How does it handle differing USE flags? Or portage/env = variables? 2. How does it update the systems it maintains? I mean, like doing = compiling stuffs and such? 3. Does it use SLOTs to enable rollback, just in case? I'm looking at 8 Gentoo servers -- soon to be 10 -- and I *will* seriously = evaluate *anything* that promises to assist me with managing/maintaining = them. Anecdote time: just last week, I tried deploying a Squid proxy. I don't = know what happened, but I failed doing that on two other distros; one has a = buggy package, and the other just... did not work. It might be my mistake, = but I was pressed for time. So I did a 'stage4' installation of Gentoo, = emerged squid... and it Just Works(tm). Now I'm setting up two more proxies = with Gentoo. (You might've seen my question regarding configure flags back in = [gentoo-user]. Yes, that's me building the 2nd = proxy.) Rgds, -- Pandu E Poluan ~ IT Optimizer ~ Sent from Nokia E72-1