The limits of puppetDB a.k.a. etcd with puppet
Posted on May 9, 2014 (Last modified on March 9, 2022) • 2 min read • 358 wordsOkay. Maybe this is the completely wrong way to do this, but I found no other. Comments appreciated.
Situation:
Idea:
So far, so good. Unfortunately there are a few problems with it. My first approach was something like this:
## THIS WILL NOT WORK
# on every DNS server (*)
@@resolv_conf_entry { $my_cluster_ip :
tag = $domain,
}
# on every other machine:
Resolv_conf_entry <<| tag == $domain |>>Unfortunately this will lead to a “duplicate declaration” on the client side - because all of the clustered DNS servers will export this, and the cluster_ip is identical on the DNS server hosts.
The solution I came up with is etcd. A project from the girls and guys of CoreOS, which is basically a REST powered key-value store as trimmed down as possible, a binary about 3 MB, cluster-able, super-super-super simple to set up, and stand alone. The whole setup is like this:
etcd_set_value($etcd_url,$key_name,$key_value) and etcd_get_value($etcd_url,$key_name)$etcd_url is entered into hieraNow, we can do the following:
# on each DNS server:
$etcd_url = hiera('etcd_url')
etcd_set_value( $etcd_url , "/puppet/dns_server_for/${domain}" , $my_cluster_ip )
# on each other server:
$etcd_url = hiera('etcd_url')
$dns_server = etcd_get_value( $etcd_url , "/puppet/dns_server_for/${domain}" )
resolv_conf_entry { $dns_server : }Works beautifully.
Now go read the etcd docs and try to think of some other applications. etcd is a great tool (CoreOS is not too bad either, we’re evaluating it right now and are pretty amazed), and go use it. It is really much simpler than puppet.
(*) Note that resolv_conf_entry{} is just a placeholder and does not exist (unless you write it).
(**) I cannot - unfortunately - publish the module (yet), because the customer I wrote it for has not yet allowed me to.