We'll begin at the site.pp again, and model our application from the endpoint. I have added two additional service lines that ensure that firewalls are disabled for the purpose of this lesson. We could consider using puppetlabs/firewall to manage our firewall as well, and even produce and consume FQDNs for our firewall. In the following sample, you will notice a few things:

  • We're passing a dbpass variable to the application. This could be stored in Hiera and encrypted with EYAML.
  • We have two wordpress nodes and two haproxy nodes that each have their own unique name in the appserver:
# For the purposes of this demo, the next two lines can be used to ensure firewalls# are off for all CentOS nodes.service {'iptables': ensure => stopped ...

Get Mastering Puppet 5 now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.