Beijing

          

Advertisements
Veröffentlicht unter Uncategorized | Verschlagwortet mit | Kommentar hinterlassen

Puppet

http://blog.credativ.com/de/2010/02/howto-einstieg-in-puppet.html
http://itand.me/using-puppet-to-manage-users-passwords-and-ss


apt-get install puppetmaster
apt-get install puppet
apt-get install subversion


vi /etc/puppet/fileserver.conf
# This file consists of arbitrarily named sections/modules
# defining where files are served from and to whom

# Define a section 'files'
# Adapt the allow/deny settings to your needs. Order
# for allow/deny does not matter, allow always takes precedence
# over deny
[files]
path /etc/puppet/files
allow *.patrick-preuss.de
allow 10.0.0.0/8
# allow *.example.com
# deny *.evil.example.com
# allow 192.168.0.0/24

[plugins]
allow *.patrick-preuss.de
allow 10.0.0.0/8
# allow *.example.com
# deny *.evil.example.com
# allow 192.168.0.0/24


[moria ~]$ sudo svnadmin create /var/svn/puppet.svn
[moria ~]$ sudo chown -R www-data:www-data /var/svn/puppet.svn
[moria ~]$ svn co http://moria.patrick-preuss.de/svn/puppet.svn puppet
[moria ~]$ cd puppet
[moria ~/puppet]$ svn mkdir trunk
[moria ~/puppet]$ svn mkdir trunk/etc
[moria ~/puppet]$ svn ci -m "Initial Setup"


root@puppet1:/etc/puppet# svn co http://moria.dormagen.patrick-preuss.de/svn/puppet.svn/trunk/etc .
root@puppet1:/etc/puppet# svn add *
root@puppet1:/etc/puppet# svn ci -m ""

root@puppet1:/etc/puppet# puppetd –waitforcert 30 –server puppet.dormagen.patrick-preuss.de -vt
info: Caching catalog for puppet1.dormagen.patrick-preuss.de
info: Applying configuration version ‚1362918249‘
info: Creating state file /var/lib/puppet/state/state.yaml
notice: Finished catalog run in 0.07 seconds

root@ldap1:~# puppetd –waitforcert 30 –server puppet.dormagen.patrick-preuss.de -vt
info: Creating a new SSL key for ldap1.dormagen.patrick-preuss.de
info: Caching certificate for ca
info: Creating a new SSL certificate request for ldap1.dormagen.patrick-preuss.de
info: Certificate Request fingerprint (md5): 1D:F6:EF:12:29:C3:A6:A3:F3:52:8F:0B:61:3E:AE:75
info: Caching certificate for ldap1.dormagen.patrick-preuss.de
info: Caching certificate_revocation_list for ca
info: Caching catalog for ldap1.dormagen.patrick-preuss.de
info: Applying configuration version ‚1362918616‘
info: Creating state file /var/lib/puppet/state/state.yaml
notice: Finished catalog run in 0.06 seconds

svn propset svn:keywords „Date Author Id HeadURL Rev“ modules/ssh/manifests/init.pp

root@puppet1:/etc/puppet/modules/ssh/files# puppetca sign –all
notice: Signed certificate request for ldap1.dormagen.patrick-preuss.de
notice: Removing file Puppet::SSL::CertificateRequest ldap1.dormagen.patrick-preuss.de at ‚/var/lib/puppet/ssl/ca/requests/ldap1.dormagen.patrick-preuss.de.pem‘

Veröffentlicht unter Uncategorized | Kommentar hinterlassen

Heading for a new Job

Going to relocate and a new Job in Southern Germany

Veröffentlicht unter Life, Wohnung | Verschlagwortet mit | Kommentar hinterlassen

i got my first juniper

It is a Netscreen 5gt. So now commands maybe usefull:

show arp
Cisco PIX
Cisco ASA
Netscreen Description
show configuration get config saved get saved configuration
show running-config get config get device configuration
save to save changes to config
show version get system gets system information, Netscreen mode
get session info shows load on the firewall 85+ implies there will be some latency
get interface shows interfaces, zones
get address trust/unturst shows defined network objects
get arp shows arp entries
get route shows firewall routes
get service shows firewall services
get group address network groups
get group service service groups
get policy in/out shows applied firewall policies
get log traffic shows firewall logs – options: based on src/dst/IP/port
unset to remove a config statement
get user all shows vpn users
get log event shows vpn logs
get mip shows one to one Nat’s
get vip shows configured port forwarding rules
get route ip x.x.x.x finds the specific route for an ip
set policy id xx put you in a specific policy then you can add more objects it instead of creating a group
Veröffentlicht unter Computer, Network, Security | Kommentar hinterlassen

Cisco IOS DDNS Updates

Cisco IOS 12 3 DDNS Update Guide

Veröffentlicht unter Uncategorized | Kommentar hinterlassen

SkyDrive under Debian


# aptitude install davfs2


mkdir /home/rt01/skydrive



mkdir /home/username/.davfs2/
touch /home/username/.davfs2/secrets
vi /home/username/.davfs2/secrets

Veröffentlicht unter Uncategorized | Kommentar hinterlassen

Infoblox API

Download the API

wget --no-check-certificate https://10.0.136.180/api/dist/CPAN/authors/id/INFOBLOX/Infoblox-6.003000015125.tar.gz

Link depends on NIOS Version.

Veröffentlicht unter Uncategorized | Kommentar hinterlassen