Puppet Compatibility old server new client software.

asked 2017-06-22 15:23:51 -0600

AlanH gravatar image

The information on the main page talks about old agents with a new server. I have the opposite. So in order to plan I am trying to determine my best option going forward.

On my new CentOS machines the version of puppet is 3.6.2 installed, the current Puppet Master is running CentOS 6.9 and puppet version is reported back as 2.7.23.

So my question is whether or not my new puppet 3.6.2 will be compatible with the legacy master. When we upgrade the master we are switching to Ansible and scrapping puppet well.

If i am not providing the right information please let me know. I am more familiar with Ansible. This is my opening foray into using Puppet and as I prepare to add in the new modules for the CentOS 7 machine we are incorporating to the final release before a full system redesign.

I am asking this question because of the changes between iptables and firewalld is one of the first issues I am trying to figure out if the modules will be able to work with the software installed.

edit retag flag offensive close merge delete


as far as I know puppet on the master needs to be higher than on the nodes/agents. I don't know if this is true with version 2 and 3 but I've had this issue when running an puppet 3 master and puppet 4 nodes/agents. The way to resolve this was upgrading my master to puppet 4 or downgrading agents.

negast gravatar imagenegast ( 2017-06-23 02:08:58 -0600 )edit

The master has backward compatibility to the old protocols, but the agents do NOT have backward compatibility to the old master protocols

DarylW gravatar imageDarylW ( 2017-06-23 06:58:59 -0600 )edit

However, if you really want to stick to 2.7, you should just install a 2.7 client on your nodes. It may not be the default in the EPEL, but you can find them. If you are on 'amazon linux' instances, they have a 'puppet' package that stops at 2.7, and a 'puppet3' package that goes to 3.7

DarylW gravatar imageDarylW ( 2017-06-23 07:00:49 -0600 )edit

Thank you. These are on a separated network so I am limited to what we have. I am throwing up a VM right now with cent7 on it, subscribed to my cent6 repos to try and install just puppet from them and check the dependencies and see if that will work and bridge the gap for now

AlanH gravatar imageAlanH ( 2017-06-23 07:39:22 -0600 )edit

I work on an air-gapped network, and I know some of these same struggles. There are specific guidelines about cross version compatibility, and I don't believe your scenario fits that, and both version are End Of Life. For supported platforms, you need to upgrade to a more modern version, as painfu

DarylW gravatar imageDarylW ( 2017-10-15 22:44:35 -0600 )edit