Summary

I have been writing Puppet modules since 2010, starting with Puppet 3 at the time. 15 years later we have Puppet 8 and I built about 75 Puppet modules for various use cases as they come along with my lab cloud project, where I am building and hosting services both standalone and in Kubernetes. The hosts running the show are managed with Puppet.

Below is a collection of the Puppet modules I have written and published over time. Right now I am overhauling the modules for public use and will publish them one by one when ready, so feel fee to follow and watch that list grow.

All modules are specifically designed for use with External Node Classifier (ENC), i.e. Foreman, and written for Rocky 9 and Puppet 8. Any other OS using yum / dnf and systemd should work as well, but I have not tested it nor will I for the lack of resources.

The modules themselves are free to use as per license, you might need to adjust to your own needs. Feedback and feature requests can be given at my feedback portal.

Products

Puppet

puppet_cd

A Puppet module to configure a puppet environment:

  • Puppet master ready to work with Foreman as ENC (Foreman not installed by module)
  • Puppet agents
  • configures firewall ports, files and directories including selinux contexts.
  • Optionally:
    • PuppetDB
    • r10k deployment service
    • webhook listener to trigger r10k

confdroid_prometheus

Configures Prometheus, a Time Series Collection and Processing server

  • installs and configures Prometheus
  • optionally the Node exporter
  • optionally adds remote writing to a Postgresql database via postgresql Adapter ( not part of this module)
  • Optionally allows pruning of the local TSDB

confdroid_postgresql

Automate installation, configuration and management of all aspects of PostgreSQL(standalone)

  • installs and configures Postgres server and clients
  • manage single line entries in pg_hba via define
  • manage roles and databases via define
  • manage extensions
  • install and manage pg_bouncer
  • enable SL / TLS manage TLS certificates

Hetzner Referral

Containers

confdroid-pgbouncer

Pgbouncer is a loadbalancer for postgresql connections and very helpful in managing aspects of postgresql performance through the reuse of connections. confdroid_pgbouncer is a standalone container suitable for running on kubernetes to facilitate pgbouncer deployments with multiple instances for HA.

FAQ

  • Q: “Why are the names of the modules using underscore instead of hyphens?” A: The modules are best deployed through the R10k service using a Puppetfile. The deployment process using Puppetfile would convert the name of say “confdroid-postgresql” into a module called “confdroid” locally on the puppet server, cutting off everything after the hyphen. It also would then not deploy more than one module, because they all would be called “confdroid”