kickstart puppet run fails to reload firewalld service

asked 2018-12-07 09:07:36 -0600

jefff gravatar image

I've been struggling with this one for the past couple of days.

I'm using crayfishx/puppet-firewalld to set custom rules for the vsftpd server. OS is CentOS7 and puppet is used in a masterless configuration. The first run happens as part of kickstart triggered from %post section (puppet apply). It always fails saying that firewalld is not running (when attempting to reload firewalld). See log output below. I've also attached the relevant manifest file. Once the system has rebooted after kickstart installation, subsequent puppet apply runs work without any problems.

Log output: https://pastebin.com/TtePZBjU

vsftpd server manifest file: https://pastebin.com/8hcUJiiR

Some unanswered questions: - is firewalld actually running? - why would firewalld not be running given that Service["firewalld"] exists and is set to running? - in theory, should the crayfishx module verify that firewalld is indeed running before reloading the service?

Any hints would be much appreciated. Thank you!

edit retag flag offensive close merge delete