(WIP) VPN deployment using puppet #1031
Conversation
dtapiacl
force-pushed
the
IT-4981_openvpnas_puppet
branch
2 times, most recently
from
6d8104a
to
59a56d2
Compare
dtapiacl
force-pushed
the
IT-4981_openvpnas_puppet
branch
from
9cac0fc
to
6c4a7b2
Compare
dtapiacl
force-pushed
the
IT-4981_openvpnas_puppet
branch
from
6c4a7b2
to
53d3dcc
Compare
|
@dtapiacl Multiple openvpn modules on the puppet forge support configuration. It would be a good idea to automate as much of the configuration as possible as a DR measure. Installing the packages is a good first step but the configuration is much more valuable. |
|
@dtapiacl To be pedantic, I see 3 good courses of action. 1) use an existing forge module to configure openvpn. 2) modify/fix an existing forge module to configure openvpn. 3) write a new module to manage openvpn and publish it the forge. Option #3 should only be a last resort after attempting option 1/2. It is not a good idea to add profile(s) to this the control repo that duplicate the functionality of existing forge modules. Every line of code has a maintenance burden. As a general rule, we should try to add the minimum on-going maintenance requirement as possible onto our fellow engineers. |
dtapiacl
changed the title
There was a problem hiding this comment.
I would like to see configuration of the service and to use a forge module. E.g. https://forge.puppet.com/modules/puppet/openvpn/readme
dtapiacl
force-pushed
the
IT-4981_openvpnas_puppet
branch
13 times, most recently
from
64d1e95
to
de44d04
Compare
dtapiacl
force-pushed
the
IT-4981_openvpnas_puppet
branch
3 times, most recently
from
fcf0448
to
b8ed3bf
Compare
dtapiacl
force-pushed
the
IT-4981_openvpnas_puppet
branch
2 times, most recently
from
9dfe0e6
to
2311740
Compare
dtapiacl
force-pushed
the
IT-4981_openvpnas_puppet
branch
from
2311740
to
f0f3986
Compare
This is PR was created to deploy the vpn service at Rubin Observatory.
Ticket of reference: IT-4981