On 26 September 2012 09:14, Alex Harvey <[email protected]> wrote:
> Hi all, > > I am interested to hear from anyone who might have deployed Puppet in a > large organisation with a lot of subnets firewalled off from each other. > > I am considering to have, if possible, a 'master' Puppet Master > controlling 'client' Puppet Masters that live on the firewalled subnets. I > would like to allow the client Puppet Masters communicate with the master > Puppet Master only for the purpose of obtaining their manifests for the > local subnet. The Master Puppet Master in turn would talk to a single > git/code server. Then of course all the Puppet clients on each subnet > would only know about the local Puppet Masters. > > Has anyone done this before or have any advice on whether or not this is a > good idea? > > Best wishes, > Alex Harvey I guess there is no reason why you can't use puppet to manage slave puppet masters, but I think you may be adding more to your plate. Why is it a bad idea for all your nodes to talk to one Puppet master? -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
