In addition to using Foreman as a GUI and ENC for Puppet, I have another
need which is for the management of a local DNS zone (or multiple zones if
you count the "in-addr.arpa" zones for PTR lookup).
So I suppose the questions comes down to this:
- Would it be possible to create arbitrary host objects in Foreman that
would get updated via SmartProxy to Bind (primarily A, CNAME, and PTR
records), that aren't also managed by Puppet?
- Does the Foreman (REST) API allow for the creation, modification, or
removal of these objects?
As the users who will be making changes to the DNS zones would also be the
same people making changes to the ENC data for the Puppet-ized
infrastructure, somehow uniting them under the Foreman infrastructure seems
attractive. I needed more access control (user and role based) that simple
tools like Webmin could handle, and didn't want to go for a larger
commercial IPAM installation. I was looking at unxsBind (but the software
is in a transitional state right now, and I don't know if I want to take on
the role of building from their SVN repo as they only have RPM based
packaging).
Thanks,
Chris
> In addition to using Foreman as a GUI and ENC for Puppet, I have another
> need which is for the management of a local DNS zone (or multiple zones if
> you count the "in-addr.arpa" zones for PTR lookup).
>
> So I suppose the questions comes down to this:
> * Would it be possible to create arbitrary host objects in Foreman that
> would get updated via SmartProxy to Bind (primarily A, CNAME, and PTR
> records), that aren't also managed by Puppet?
>
You can create host objects in foreman, and not to select a puppet master,
this will create the host and potentially the dns records too.
> * Does the Foreman (REST) API allow for the creation, modification, or
> removal of these objects?
>
Foreman it self does not expose DNS management directly, but the smart
proxy does. see [1]
>
> As the users who will be making changes to the DNS zones would also be the
> same people making changes to the ENC data for the Puppet-ized
> infrastructure, somehow uniting them under the Foreman infrastructure seems
> attractive. I needed more access control (user and role based) that simple
> tools like Webmin could handle, and didn't want to go for a larger
> commercial IPAM installation. I was looking at unxsBind (but the software
> is in a transitional state right now, and I don't know if I want to take on
> the role of building from their SVN repo as they only have RPM based
> packaging).
>
Sounds great, maybe start a dns foreman plugin (somehow similar to the dhcp
plugin?)
Ohad
[1] API - Smart Proxy - Foreman
···
On Wed, Nov 12, 2014 at 2:05 AM, Chris McCluskey wrote:
Thanks,
Chris
–
You received this message because you are subscribed to the Google Groups
"Foreman users" group.
To unsubscribe from this group and stop receiving emails from it, send an
email to foreman-users+unsubscribe@googlegroups.com.
To post to this group, send email to foreman-users@googlegroups.com.
Visit this group at http://groups.google.com/group/foreman-users.
For more options, visit https://groups.google.com/d/optout.
> Sounds great, maybe start a dns foreman plugin (somehow similar to the
> dhcp plugin?)
>
This would be awesome. Because right now I use "crutch" based on perl
script found in internet and adapted to my needs which works from nginx. I
think that I'm not alone who wants to manage DNS from foreman.
Can you please give me a link on DHCP plugin description. I've very
interested in it.
Thanks,
Mikhail.
>
> Sounds great, maybe start a dns foreman plugin (somehow similar to the
>> dhcp plugin?)
>>
>
> This would be awesome. Because right now I use "crutch" based on perl
> script found in internet and adapted to my needs which works from nginx. I
> think that I'm not alone who wants to manage DNS from foreman.
>
> Can you please give me a link on DHCP plugin description. I've very
> interested in it.
>
http://projects.theforeman.org/projects/foreman/wiki/List_of_Plugins
Ohad
···
On Wed, Nov 12, 2014 at 3:41 PM, Mikhail Shevtsov wrote:
Thanks,
Mikhail.
–
You received this message because you are subscribed to the Google Groups
"Foreman users" group.
To unsubscribe from this group and stop receiving emails from it, send an
email to foreman-users+unsubscribe@googlegroups.com.
To post to this group, send email to foreman-users@googlegroups.com.
Visit this group at http://groups.google.com/group/foreman-users.
For more options, visit https://groups.google.com/d/optout.
> List of Plugins - Foreman
>
Thank you. Very nice DHCP button 
Thanks,
Mikhail.
