Skip to content

Update to include firewall data #227

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
MartyEwings merged 5 commits into from
Feb 18, 2025
Merged

Update to include firewall data #227

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
695ffd2
Update README.md
MartyEwings Jan 24, 2025
08732ce
Allow grafana UI to edit datasources
MartyEwings Feb 3, 2025
a78453f
Update README.md
MartyEwings Jan 24, 2025
83a5752
Update Readme
MartyEwings Feb 10, 2025
e95dccc
Update Readme For firewall requirements
MartyEwings Feb 18, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 32 additions & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,38 @@ This module is a replacement for the [puppet_metrics_dashboard module](https://f

## Setup

### Firewall Requirements for Puppet Operational Dashboards

To ensure smooth communication between services in the Puppet Operational Dashboards module, the following firewall rules must be configured in addition to those required by Puppet Enterprise:

| Application | Port | Protocol | Communication Flow | Deployment Notes |
|------------------|-------|----------|---------------------------------|--------------------------------------------------------------------|
| **Telegraf** | 8086 | TCP | Outbound to InfluxDB | Connects to InfluxDB for metric collection. |
| **InfluxDB** | 8086 | TCP | Inbound from Telegraf,Grafana | Receives metrics from Telegraf and Grafana. |
| **Grafana** | 3000 | TCP | Inbound from users/browsers | Used for accessing the dashboard interface. |
| **PostgreSQL** | 5432 | TCP | Inbound from applications | Required for metrics collection in both Puppet Enterprise and Open Source setups. |
| **Puppetserver** | 8140 | TCP | Inbound from inbound from telegraf | Standard Puppetserver communication. |
| **PuppetDB** | 8081 | TCP | Inbound from Telegraf | Stores and serves reports, catalogs, and exported resources. |
| **Orchestrator** | 8143 | TCP | Inbound from Telegraf | Manages task execution and orchestrates Puppet runs. |


---

#### Deployment Scenario: Puppet Enterprise with Firewalls Between Components

In a Puppet Enterprise deployment with Puppet compilers and firewalls between the primary server, compilers, and infrastructure hosting the services deployed by this module, additional considerations must be addressed:

1. **Primary Server to Infrastructure Services (Telegraf, InfluxDB, Grafana)**:
- Ports: `8086` (InfluxDB), `3000` (Grafana))
- Protocol: TCP
- Purpose: Allow the primary server to send metrics and manage dashboards via Grafana and InfluxDB.

2. **Puppet Compilers to Infrastructure Services**:
- Ports: `8086` (InfluxDB), `5432` (PostgreSQL)
- Protocol: TCP
- Purpose: Enable Puppet compilers to report metrics collected by Telegraf.


### Prerequisites

### Note on air-gapped environments
Expand Down
1 change: 1 addition & 0 deletions files/datasource.epp
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,3 +23,4 @@ datasources:
secureJsonData:
httpHeaderValue1: 'Token <%= $token %>'
readOnly: false
editable: true
Loading