puppet-sysctl icon indicating copy to clipboard operation
puppet-sysctl copied to clipboard

Published 20 hours ago verified publisher icon thias

Not working in Debian 8

Open ikkaro opened this issue 9 years ago • 3 comments

Hi,

The module is creating the file but not filling it with mi values. In the server I see a symlink like this one 99-sysctl.conf -> ../sysctl.conf, but the configuration parameters doesn't change.

classes:
 - roles
 - sysctl::base::values:
   sysctl::value: 'net.ipv4.ip_forward'
      value: '1'
    ensure: present

ikkaro avatar Jul 25 '16 12:07 ikkaro

Well, you're doing at least 1 thing wrong. It should be

classes:
  - roles
  - sysctl::base

sysctl::base:values:
  'net.ipv4.ip_forward':
    value: '1'

But I'm running into a propblem with automatic parameter lookup (defaults to priority in Puppet 4). I think what's happening is that later versions of hiera get confused by the periods or underscores in an automatic lookup (priority) of sysctl::base::values. This can be resolved by switching to an explicit hash lookup.

sysctl::base::hiera_merge_values: true

I'm thinking of adding a Puppet 4 branch to this repo. hiera_merge_values can be set more naturally using the advanced parameter lookups available in v4. Would that be welcome?

tpdownes avatar Aug 02 '16 15:08 tpdownes

Hi, i have a same problem with module.

Puppet v4.5.3 lsb_release -d Description: Debian GNU/Linux 8.5 (jessie)

hiera/40_modules/sysctl.yaml:

sysctl::base::hiera_merge_values: true sysctl::base::values: net.ipv4.icmp_echo_ignore_broadcasts: value: '1' net.ipv4.icmp_ignore_bogus_error_responses: value: '1' net.ipv4.conf.all.accept_redirects: value: '0' net.ipv6.conf.all.accept_redirects: value: '0' net.ipv4.conf.all.send_redirects: value: '0' net.ipv4.conf.all.log_martians: value: '1' net.ipv4.conf.default.log_martians: value: '1' net.ipv4.ip_forward: value: '0' net.ipv4.tcp_syncookies: value: '1' net.ipv4.tcp_max_syn_backlog: value: '2048' net.ipv4.tcp_synack_retries: value: '3' net.ipv4.conf.all.rp_filter: value: '1' net.core.somaxconn: value: '1024' net.ipv4.tcp_challenge_ack_limit: value: '999999999'

class { 'sysctl::base': } in base.pp

The module does'nt generate files in /etc/sysctl.d. Any idea?:)

regards, Zoltan

zlanyi avatar Aug 18 '16 10:08 zlanyi

For anything puppet4, you might want to look at my pull request #46 or the fork that it comes from. It isn't backwards-compatible, but it doesn't have the weirdness of sysctl being a defined type without being a class.

tpdownes avatar Aug 20 '16 16:08 tpdownes