-
-
Save arubdesu/b7c562a016766ebeffcb to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 127.0.0.1 con con.localdomain localhost4 localhost4.localdomain4 | |
| 192.168.80.137 db db.localdomain | |
| 192.168.80.136 puppet master.localdomain | |
| ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| q_database_host='db.localdomain' | |
| q_database_port='5432' | |
| q_fail_on_unsuccessful_master_lookup='y' | |
| q_install='y' | |
| q_pe_database='y' | |
| q_public_hostname='con.localdomain' | |
| q_puppet_cloud_install='y' | |
| q_puppet_enterpriseconsole_auth_database_name='console_auth' | |
| q_puppet_enterpriseconsole_auth_database_password='rq0nJ4ncMEMy6RVayhz4jg' | |
| q_puppet_enterpriseconsole_auth_database_user='console_auth' | |
| q_puppet_enterpriseconsole_auth_password='redacted' | |
| q_puppet_enterpriseconsole_auth_user_email='montyadm@a.com' | |
| q_puppet_enterpriseconsole_database_name='console' | |
| q_puppet_enterpriseconsole_database_password='a1zu8TL_T0yGxetglrMElA' | |
| q_puppet_enterpriseconsole_database_user='console' | |
| q_puppet_enterpriseconsole_httpd_port='443' | |
| q_puppet_enterpriseconsole_install='y' | |
| q_puppet_enterpriseconsole_master_hostname='master.localdomain' | |
| q_puppet_enterpriseconsole_smtp_host='mail.a.com' | |
| q_puppet_enterpriseconsole_smtp_password='' | |
| q_puppet_enterpriseconsole_smtp_port='25' | |
| q_puppet_enterpriseconsole_smtp_use_tls='n' | |
| q_puppet_enterpriseconsole_smtp_user_auth='n' | |
| q_puppet_enterpriseconsole_smtp_username='' | |
| q_puppetagent_certname='con.localdomain' | |
| q_puppetagent_install='y' | |
| q_puppetagent_server='master.localdomain' | |
| q_puppetdb_database_name='pe-puppetdb' | |
| q_puppetdb_database_password='EpM-1_RoCVsMDB59Zohqlg' | |
| q_puppetdb_database_user='pe-puppetdb' | |
| q_puppetdb_hostname='db.localdomain' | |
| q_puppetdb_install='n' | |
| q_puppetdb_port='8081' | |
| q_puppetmaster_certname='master.localdomain' | |
| q_puppetmaster_install='n' | |
| q_skip_backup='y' | |
| q_skip_master_verification='n' | |
| q_vendor_packages_install='y' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 127.0.0.1 db db.localdomain localhost4 localhost4.localdomain4 | |
| 192.168.80.138 con con.localdomain | |
| 192.168.80.136 puppet master master.localdomain | |
| ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| q_database_host='db.localdomain' | |
| q_database_install='y' | |
| q_database_port='5432' | |
| q_database_root_password='Kg8rTV4FUe39WBkjHmkvSg' | |
| q_database_root_user='root' | |
| q_fail_on_unsuccessful_master_lookup='y' | |
| q_install='y' | |
| q_pe_database='y' | |
| q_puppet_cloud_install='y' | |
| q_puppet_enterpriseconsole_auth_database_name='console_auth' | |
| q_puppet_enterpriseconsole_auth_database_password='rq0nJ4ncMEMy6RVayhz4jg' | |
| q_puppet_enterpriseconsole_auth_database_user='console_auth' | |
| q_puppet_enterpriseconsole_database_name='console' | |
| q_puppet_enterpriseconsole_database_password='a1zu8TL_T0yGxetglrMElA' | |
| q_puppet_enterpriseconsole_database_user='console' | |
| q_puppet_enterpriseconsole_install='n' | |
| q_puppetagent_certname='db.localdomain' | |
| q_puppetagent_install='y' | |
| q_puppetagent_server='master.localdomain' | |
| q_puppetdb_database_name='pe-puppetdb' | |
| q_puppetdb_database_password='EpM-1_RoCVsMDB59Zohqlg' | |
| q_puppetdb_database_user='pe-puppetdb' | |
| q_puppetdb_hostname='db.localdomain' | |
| q_puppetdb_install='y' | |
| q_puppetdb_plaintext_port='8080' | |
| q_puppetdb_port='8081' | |
| q_puppetmaster_certname='master.localdomain' | |
| q_puppetmaster_install='n' | |
| q_skip_backup='y' | |
| q_skip_master_verification='n' | |
| q_vendor_packages_install='y' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [vagrant@con ~]$ sudo iptables -L | |
| Chain INPUT (policy ACCEPT) | |
| target prot opt source destination | |
| ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED | |
| ACCEPT icmp -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:https | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:8140 | |
| REJECT all -- anywhere anywhere reject-with icmp-host-prohibited | |
| Chain FORWARD (policy ACCEPT) | |
| target prot opt source destination | |
| ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED | |
| ACCEPT icmp -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| REJECT all -- anywhere anywhere reject-with icmp-host-prohibited | |
| Chain OUTPUT (policy ACCEPT) | |
| target prot opt source destination |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [root@db vagrant]# iptables -L | |
| Chain INPUT (policy ACCEPT) | |
| target prot opt source destination | |
| ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED | |
| ACCEPT icmp -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:tproxy | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:postgres | |
| REJECT all -- anywhere anywhere reject-with icmp-host-prohibited | |
| Chain FORWARD (policy ACCEPT) | |
| target prot opt source destination | |
| ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED | |
| ACCEPT icmp -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| REJECT all -- anywhere anywhere reject-with icmp-host-prohibited | |
| Chain OUTPUT (policy ACCEPT) | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [vagrant@master ~]$ sudo iptables -L | |
| Chain INPUT (policy ACCEPT) | |
| target prot opt source destination | |
| ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED | |
| ACCEPT icmp -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:8140 | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:61613 | |
| ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:hbci | |
| REJECT all -- anywhere anywhere reject-with icmp-host-prohibited | |
| Chain FORWARD (policy ACCEPT) | |
| target prot opt source destination | |
| ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED | |
| ACCEPT icmp -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| REJECT all -- anywhere anywhere reject-with icmp-host-prohibited | |
| Chain OUTPUT (policy ACCEPT) | |
| target prot opt source destination |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [2014-09-16 18:16:35.501 UTC] INFO | |
| [2014-09-16 18:16:35.503 UTC] INFO Complete! | |
| [2014-09-16 18:16:36.030 UTC] INFO Loaded plugins: fastestmirror, security | |
| [2014-09-16 18:16:36.064 UTC] INFO Cleaning repos: puppet-enterprise-installer | |
| [2014-09-16 18:16:36.064 UTC] INFO Cleaning up Everything | |
| [2014-09-16 18:16:36.064 UTC] INFO Cleaning up list of fastest mirrors | |
| [2014-09-16 18:16:36.093 UTC] INFO ## Verifying postgresql credentials... | |
| [2014-09-16 18:16:36.116 UTC] INFO Could not connect to postgres server using the user: console and | |
| [2014-09-16 18:16:36.116 UTC] INFO database: console. Please log in as a privileged user and set up the user | |
| [2014-09-16 18:16:36.117 UTC] INFO or database manually. Example SQL commands: | |
| [2014-09-16 18:16:36.117 UTC] INFO | |
| [2014-09-16 18:16:36.117 UTC] INFO CREATE USER "console" PASSWORD 'a1zu8TL_T0yGxetglrMElA'; | |
| [2014-09-16 18:16:36.117 UTC] INFO CREATE DATABASE "console" OWNER "console" ENCODING 'utf8' LC_CTYPE 'en_US.utf8' LC_COLLATE 'en_US.utf8' template template0; | |
| [2014-09-16 18:16:36.117 UTC] INFO | |
| [2014-09-16 18:16:36.136 UTC] INFO Could not connect to postgres server using the user: console_auth and | |
| [2014-09-16 18:16:36.137 UTC] INFO database: console_auth. Please log in as a privileged user and set up the | |
| [2014-09-16 18:16:36.137 UTC] INFO user or database manually. Example SQL commands: | |
| [2014-09-16 18:16:36.137 UTC] INFO | |
| [2014-09-16 18:16:36.138 UTC] INFO CREATE USER "console_auth" PASSWORD 'rq0nJ4ncMEMy6RVayhz4jg'; | |
| [2014-09-16 18:16:36.138 UTC] INFO CREATE DATABASE "console_auth" OWNER "console_auth" ENCODING 'utf8' LC_CTYPE 'en_US.utf8' LC_COLLATE 'en_US.utf8' template template0; | |
| [2014-09-16 18:16:36.139 UTC] INFO | |
| [2014-09-16 18:16:36.143 UTC] INFO !! ERROR: The provided postgresql credentials could not be verified. Please | |
| [2014-09-16 18:16:36.144 UTC] INFO follow the above instructions and try again. | |
| [2014-09-16 18:16:36.144 UTC] INFO | |
| [2014-09-16 18:16:36.144 UTC] INFO ================================================================================ | |
| [2014-09-16 18:16:36.145 UTC] ERROR Failed to run PE installer on remote host con.localdomain | |
| [2014-09-16 18:16:36.209 UTC] INFO Shutting down after install with status error |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 127.0.0.1 master puppet master.localdomain localhost4 localhost4.localdomain4 | |
| 192.168.80.138 con con.localdomain | |
| 192.168.80.137 db db.localdomain | |
| ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| q_all_in_one_install='n' | |
| q_fail_on_unsuccessful_master_lookup='y' | |
| q_install='y' | |
| q_pe_check_for_updates='y' | |
| q_puppet_cloud_install='y' | |
| q_puppet_enterpriseconsole_install='n' | |
| q_puppetagent_certname='master.localdomain' | |
| q_puppetagent_install='y' | |
| q_puppetagent_server='master.localdomain' | |
| q_puppetdb_hostname='db.localdomain' | |
| q_puppetdb_install='n' | |
| q_puppetdb_port='8081' | |
| q_puppetmaster_certname='master.localdomain' | |
| q_puppetmaster_dnsaltnames='puppet,master' | |
| q_puppetmaster_enterpriseconsole_hostname='con.localdomain' | |
| q_puppetmaster_enterpriseconsole_port='443' | |
| q_puppetmaster_install='y' | |
| q_skip_backup='y' | |
| q_skip_master_verification='n' | |
| q_vendor_packages_install='y' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- mode: ruby -*- | |
| # vi: set ft=ruby : | |
| # Vagrantfile API/syntax version. Don't touch unless you know what you're doing! | |
| VAGRANTFILE_API_VERSION = "2" | |
| Vagrant.configure(VAGRANTFILE_API_VERSION) do |config| | |
| # All Vagrant configuration is done here. The most common configuration | |
| # options are documented and commented below. For a complete reference, | |
| # please see the online documentation at vagrantup.com. | |
| # Every Vagrant virtual environment requires a box to build off of. | |
| config.vm.define "master" do |master| | |
| master.vm.box = "puppetlabs/centos-6.5-64-nocm" | |
| master.vm.network "private_network", ip: "192.168.80.132", | |
| auto_config: false | |
| master.vm.hostname = "master.localdomain" | |
| master.vm.synced_folder "src/", "/guest" | |
| # config.vm.provider "vmware_fusion" do |v| | |
| # v.vmx["numvcpus"] = "2" | |
| # end | |
| end | |
| config.vm.define "db" do |db| | |
| db.vm.box = "puppetlabs/centos-6.5-64-nocm-db" | |
| db.vm.network "private_network", ip: "192.168.80.130", | |
| auto_config: false | |
| db.vm.hostname = "db.localdomain" | |
| # config.vm.provider "vmware_fusion" do |v| | |
| # v.vmx["numvcpus"] = "4" | |
| # end | |
| end | |
| config.vm.define "con" do |con| | |
| con.vm.box = "puppetlabs/centos-6.5-64-nocm-con" | |
| con.vm.network "private_network", ip: "192.168.80.131", | |
| auto_config: false | |
| con.vm.hostname = "con.localdomain" | |
| end | |
| # Disable automatic box update checking. If you disable this, then | |
| # boxes will only be checked for updates when the user runs | |
| # `vagrant box outdated`. This is not recommended. | |
| # config.vm.box_check_update = false | |
| # Create a forwarded port mapping which allows access to a specific port | |
| # within the machine from a port on the host machine. In the example below, | |
| # accessing "localhost:8080" will access port 80 on the guest machine. | |
| # config.vm.network "forwarded_port", guest: 80, host: 8080 | |
| # Create a private network, which allows host-only access to the machine | |
| # using a specific IP. | |
| # Create a public network, which generally matched to bridged network. | |
| # Bridged networks make the machine appear as another physical device on | |
| # your network. | |
| # config.vm.network "public_network" | |
| # If true, then any SSH connections made will enable agent forwarding. | |
| # Default value: false | |
| # config.ssh.forward_agent = true | |
| # Share an additional folder to the guest VM. The first argument is | |
| # the path on the host to the actual folder. The second argument is | |
| # the path on the guest to mount the folder. And the optional third | |
| # argument is a set of non-required options. | |
| # config.vm.synced_folder "../data", "/vagrant_data" | |
| # Provider-specific configuration so you can fine-tune various | |
| # backing providers for Vagrant. These expose provider-specific options. | |
| # Example for VirtualBox: | |
| # | |
| # config.vm.provider "virtualbox" do |vb| | |
| # # Don't boot with headless mode | |
| # vb.gui = true | |
| # | |
| # # Use VBoxManage to customize the VM. For example to change memory: | |
| # vb.customize ["modifyvm", :id, "--memory", "1024"] | |
| # end | |
| # | |
| # View the documentation for the provider you're using for more | |
| # information on available options. | |
| # Enable provisioning with CFEngine. CFEngine Community packages are | |
| # automatically installed. For example, configure the host as a | |
| # policy server and optionally a policy file to run: | |
| # | |
| # config.vm.provision "cfengine" do |cf| | |
| # cf.am_policy_hub = true | |
| # # cf.run_file = "motd.cf" | |
| # end | |
| # | |
| # You can also configure and bootstrap a client to an existing | |
| # policy server: | |
| # | |
| # config.vm.provision "cfengine" do |cf| | |
| # cf.policy_server_address = "10.0.2.15" | |
| # end | |
| # Enable provisioning with Puppet stand alone. Puppet manifests | |
| # are contained in a directory path relative to this Vagrantfile. | |
| # You will need to create the manifests directory and a manifest in | |
| # the file default.pp in the manifests_path directory. | |
| # | |
| # config.vm.provision "puppet" do |puppet| | |
| # puppet.manifests_path = "manifests" | |
| # puppet.manifest_file = "default.pp" | |
| # end | |
| # Enable provisioning with chef solo, specifying a cookbooks path, roles | |
| # path, and data_bags path (all relative to this Vagrantfile), and adding | |
| # some recipes and/or roles. | |
| # | |
| # config.vm.provision "chef_solo" do |chef| | |
| # chef.cookbooks_path = "../my-recipes/cookbooks" | |
| # chef.roles_path = "../my-recipes/roles" | |
| # chef.data_bags_path = "../my-recipes/data_bags" | |
| # chef.add_recipe "mysql" | |
| # chef.add_role "web" | |
| # | |
| # # You may also specify custom JSON attributes: | |
| # chef.json = { mysql_password: "foo" } | |
| # end | |
| # Enable provisioning with chef server, specifying the chef server URL, | |
| # and the path to the validation key (relative to this Vagrantfile). | |
| # | |
| # The Opscode Platform uses HTTPS. Substitute your organization for | |
| # ORGNAME in the URL and validation key. | |
| # | |
| # If you have your own Chef Server, use the appropriate URL, which may be | |
| # HTTP instead of HTTPS depending on your configuration. Also change the | |
| # validation key to validation.pem. | |
| # | |
| # config.vm.provision "chef_client" do |chef| | |
| # chef.chef_server_url = "https://api.opscode.com/organizations/ORGNAME" | |
| # chef.validation_key_path = "ORGNAME-validator.pem" | |
| # end | |
| # | |
| # If you're using the Opscode platform, your validator client is | |
| # ORGNAME-validator, replacing ORGNAME with your organization name. | |
| # | |
| # If you have your own Chef Server, the default validation client name is | |
| # chef-validator, unless you changed the configuration. | |
| # | |
| # chef.validation_client_name = "ORGNAME-validator" | |
| end |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment