On most Linux distributions, internal firewall (I.P. filter) is enable by default with most network traffic blocked …

So, you may experience this issue :

root@puppet:~# puppet agent -tv
Warning: Unable to fetch my node definition, but the agent run will continue:
Warning: No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140
Info: Retrieving pluginfacts
Error: /File[/var/lib/puppet/facts.d]: Failed to generate additional resources using 'eval_generate': No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140
Error: /File[/var/lib/puppet/facts.d]: Could not evaluate: Could not retrieve file metadata for puppet://puppetmaster.argonay.wou/pluginfacts: No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140
Wrapped exception:
No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140
Info: Retrieving plugin
Error: /File[/var/lib/puppet/lib]: Failed to generate additional resources using 'eval_generate': No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140
Error: /File[/var/lib/puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet://puppetmaster.argonay.wou/plugins: No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140
Wrapped exception:
No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140
Info: Loading facts
xenstore-read: couldn't read path vm-data/provider_data/provider
xenstore-read: couldn't read path vm-data/provider_data/provider
xenstore-read: couldn't read path vm-data/provider_data/provider
Error: Could not retrieve catalog from remote server: No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140
Warning: Not using cache on failed catalog
Error: Could not retrieve catalog; skipping run
Error: Could not send report: No route to host - connect(2) for "puppetmaster.argonay.wou" port 8140

Have a look on Puppet system requirements and pre-installation, and open required ports on your Puppet server.

Using “firewalld” (fedora/Centos/RHEL/Oracle Linux …)

Here is my current configuration :

[root@puppet_server ~]# firewall-cmd --list-all
public (default, active)
  interfaces: eth0
  sources:
  services: dhcpv6-client ssh
  ports: 8081/tcp
  masquerade: no
  forward-ports:
  icmp-blocks:
  rich rules:

Open ports :

[root@puppet_server ~]# firewall-cmd --permanent --add-port=8140/tcp
success
[root@puppet_server ~]# firewall-cmd --permanent --add-port=61613/tcp
success
[root@puppet_server ~]# firewall-cmd --permanent --add-port=8142/tcp
success

And validate :

[root@puppet_server ~]# firewall-cmd --reload
success

I will work much better on your Puppet agent :

root@puppet:~# puppet agent -tv
Info: Retrieving pluginfacts
Info: Retrieving plugin
Info: Loading facts
xenstore-read: couldn't read path vm-data/provider_data/provider
xenstore-read: couldn't read path vm-data/provider_data/provider
xenstore-read: couldn't read path vm-data/provider_data/provider
Info: Caching catalog for agent.argonay.wou
Info: Applying configuration version '1468395214'
Notice: Finished catalog run in 0.05 seconds

 

PDF Printer    Send article as PDF   

Leave a Reply

Your email address will not be published. Required fields are marked *


*