I started a blog post series about The Foreman. Check it out under the
following link
With the first blog post I started to give a overview over The Foreman and
why we need bare metal provisioning.
In following posts i will show how to install a bare-metal server with
foreman useing a puppet manifest and how to configure The Foreman through
it's RESTful API.
I hope you like it and i am looking forward for your feedback.
···
On Mon, Apr 28, 2014 at 05:24:45AM -0700, Felix Massem wrote:
> Hey all,
>
> I started a blog post series about The Foreman. Check it out under the
> following link
>
> https://blog.codecentric.de/en/2014/04/foreman-complete-lifecycle-management-tool/
>
> With the first blog post I started to give a overview over The Foreman and
> why we need bare metal provisioning.
> In following posts i will show how to install a bare-metal server with
> foreman useing a puppet manifest and how to configure The Foreman through
> it's RESTful API.
>
> I hope you like it and i am looking forward for your feedback.
>
> best regards
>
> Felix
>
> --
> You received this message because you are subscribed to the Google Groups "Foreman users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to foreman-users+unsubscribe@googlegroups.com.
> To post to this group, send email to foreman-users@googlegroups.com.
> Visit this group at http://groups.google.com/group/foreman-users.
> For more options, visit https://groups.google.com/d/optout.
Thanks and I just published the second blog post.
We will show how to automatically install "The Foreman" through puppet.
Again feedback is always welcome.
Best regards Felix
···
Am Montag, 28. April 2014 15:49:26 UTC+2 schrieb Lukas Zapletal:
>
> Nice diagrams, good work!
>
> LZ
>
> On Mon, Apr 28, 2014 at 05:24:45AM -0700, Felix Massem wrote:
> > Hey all,
> >
> > I started a blog post series about The Foreman. Check it out under the
> > following link
> >
> >
> https://blog.codecentric.de/en/2014/04/foreman-complete-lifecycle-management-tool/
> >
> > With the first blog post I started to give a overview over The Foreman
> and
> > why we need bare metal provisioning.
> > In following posts i will show how to install a bare-metal server with
> > foreman useing a puppet manifest and how to configure The Foreman
> through
> > it's RESTful API.
> >
> > I hope you like it and i am looking forward for your feedback.
> >
> > best regards
> >
> > Felix
> >
> > --
> > You received this message because you are subscribed to the Google
> Groups "Foreman users" group.
> > To unsubscribe from this group and stop receiving emails from it, send
> an email to foreman-user...@googlegroups.com .
> > To post to this group, send email to forema...@googlegroups.com.
>
> > Visit this group at http://groups.google.com/group/foreman-users.
> > For more options, visit https://groups.google.com/d/optout.
>
> --
> Later,
>
> Lukas "lzap" Zapletal
> irc: lzap #theforeman
>
nice post but I didn't understand the network topology. If someone
compromise either the foreman host or a node on VLAN2, he has full access
to VLAN1 as well. If you setup a firewall between the DMZ and the internal
zone, you have to make sure that all traffic is routed through the
firewall, otherwise the firewall has no effect.
Regards Thomas
···
2014-05-02 11:42 GMT+02:00 Felix Massem :
Thanks and I just published the second blog post.
We will show how to automatically install “The Foreman” through puppet.
With the first blog post I started to give a overview over The Foreman
and
why we need bare metal provisioning.
In following posts i will show how to install a bare-metal server with
foreman useing a puppet manifest and how to configure The Foreman
through
it’s RESTful API.
I hope you like it and i am looking forward for your feedback.
our network set up at the moment is that way, that all the provisioned
machines are connected to the outside. With the second zone, they are
talking to each other and to the foreman.
But indeed The Foreman should be behind the second Firewall. See my new
painted and attached network diagram. And yes, if one of the hosts in the
DMZ is taken over all the other hosts would fall as well.
So further hosts with realy important stuff should also be in a zone behind
the second firewall.
If you have any further advices or ideas, feely free to tell us.
···
Am Montag, 26. Mai 2014 16:43:31 UTC+2 schrieb thbe:
>
> Hi Felix,
>
> nice post but I didn't understand the network topology. If someone
> compromise either the foreman host or a node on VLAN2, he has full access
> to VLAN1 as well. If you setup a firewall between the DMZ and the internal
> zone, you have to make sure that all traffic is routed through the
> firewall, otherwise the firewall has no effect.
>
> Regards Thomas
>
>
> 2014-05-02 11:42 GMT+02:00 Felix Massem <felix....@codecentric.de
> >:
>
>> Thanks and I just published the second blog post.
>> We will show how to automatically install "The Foreman" through puppet.
>>
>>
>> https://blog.codecentric.de/en/2014/05/foreman-automatic-installation-foreman-puppet/
>>
>> Again feedback is always welcome.
>>
>> Best regards Felix
>>
>> Am Montag, 28. April 2014 15:49:26 UTC+2 schrieb Lukas Zapletal:
>>>
>>> Nice diagrams, good work!
>>>
>>> LZ
>>>
>>> On Mon, Apr 28, 2014 at 05:24:45AM -0700, Felix Massem wrote:
>>> > Hey all,
>>> >
>>> > I started a blog post series about The Foreman. Check it out under the
>>> > following link
>>> >
>>> > https://blog.codecentric.de/en/2014/04/foreman-complete-
>>> lifecycle-management-tool/
>>> >
>>> > With the first blog post I started to give a overview over The Foreman
>>> and
>>> > why we need bare metal provisioning.
>>> > In following posts i will show how to install a bare-metal server with
>>> > foreman useing a puppet manifest and how to configure The Foreman
>>> through
>>> > it's RESTful API.
>>> >
>>> > I hope you like it and i am looking forward for your feedback.
>>> >
>>> > best regards
>>> >
>>> > Felix
>>> >
>>> > --
>>> > You received this message because you are subscribed to the Google
>>> Groups "Foreman users" group.
>>> > To unsubscribe from this group and stop receiving emails from it, send
>>> an email to foreman-user...@googlegroups.com.
>>> > To post to this group, send email to forema...@googlegroups.com.
>>> > Visit this group at http://groups.google.com/group/foreman-users.
>>> > For more options, visit https://groups.google.com/d/optout.
>>>
>>> --
>>> Later,
>>>
>>> Lukas "lzap" Zapletal
>>> irc: lzap #theforeman
>>>
>> --
>> You received this message because you are subscribed to the Google Groups
>> "Foreman users" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to foreman-user...@googlegroups.com .
>> To post to this group, send email to forema...@googlegroups.com
>> .
>> Visit this group at http://groups.google.com/group/foreman-users.
>> For more options, visit https://groups.google.com/d/optout.
>>
>
>
>
> --
> Linux ... enjoy the ride!
>