一、搭建私有仓库
#环境
Ip 192.168.0.34
X86云主机
[root@lh- /]# uname -a
Linux lh- 3.10.-327.13..el7.x86_64 # SMP Thu Mar :: UTC x86_64 x86_64 x86_64 GNU/Linux
操作系统
[root@lh- data]# cat /etc/redhat-release
CentOS Linux release 7.2. (Core)
#拉registry镜像,运行一个容器
[root@lh- ~]# sudo docker pull registry
[root@lh- ~]# sudo docker run -d -p : -v /opt/data/registry:/tmp/registry registry
#拉busybox镜像,打标签
[root@lh- ~]# sudo docker pull busybox
[root@lh- ~]# sudo docker tag busybox 192.168.0.34:/busybox
#提交镜像到私有仓库
[root@lh- ~]# sudo docker push 192.168.0.34:/busybox
The push refers to a repository [192.168.0.34:/busybox]
unable to ping registry endpoint https://192.168.0.34:5000/v0/
v2 ping attempt failed with error: Get https://192.168.0.34:5000/v2/: dial tcp 192.168.0.34:5000: getsockopt: connection refused
v1 ping attempt failed with error: Get https://192.168.0.34:5000/v1/_ping: dial tcp 192.168.0.34:5000: getsockopt: connection refused
因为Docker从1.3.x之后,与docker registry交互默认使用的是https,但是此处搭建私有仓库却只提供http服务,所以当和私有仓库交互时报上述错误。因此需要在启动docker server时增加启动参数为默认使用http访问。
#若无问题,直接查看仓库镜像
[root@lh- data]# curl -XGET 192.168.0.34:/v2/_catalog
二、FAQ
#上面push镜像是报错,docker配置文件中添加如下一行:
[root@lh- ~]# vi /etc/sysconfig/docker
# If you have a registry secured with https but do not have proper certs
# distributed, you can tell docker to not look for full authorization by
# adding the registry to the INSECURE_REGISTRY line and uncommenting it.
# INSECURE_REGISTRY='--insecure-registry'
INSECURE_REGISTRY='--insecure-registry=192.168.0.34:5000'
#重启docker服务
[root@lh- ~]# systemctl restart docker.service
Warning: docker.service changed on disk. Run 'systemctl daemon-reload' to reload units.
[root@lh- ~]# sudo docker push 192.168.0.34:/busybox
The push refers to a repository [192.168.0.34:/busybox]
Put http://192.168.0.34:5000/v1/repositories/busybox/: dial tcp 192.168.0.34:5000: getsockopt: connection refused
注:连接拒绝。报错后面可以看到是因为未启动容器,不过此时配置文件未生效。
[root@lh- ~]# ps -aux|grep docker
root 1.3 0.4 ? Ssl : : /usr/bin/docker-current daemon --exec-opt native.cgroupdriver=systemd --selinux-enabled --log-driver=journald --insecure-registry=192.168.0.34:
root 0.2 0.1 ? Sl : : docker-proxy -proto tcp -host-ip 0.0.0.0 -host-port -container-ip 172.17.0.2 -container-port
root 0.0 0.0 pts/ S+ : : grep --color=auto docker
注:根据输出可以看出我们更改配置文件并没有生效
#修改docker配置文件,使其重启服务能生效
[root@lh- ~]# vi /usr/lib/systemd/system/docker.service
[Unit]
Description=Docker Application Container Engine
Documentation=http://docs.docker.com
After=network.target rhel-push-plugin.socket
Wants=docker-storage-setup.service [Service]
Type=notify
NotifyAccess=all
EnvironmentFile=-/etc/sysconfig/docker
EnvironmentFile=-/etc/sysconfig/docker-storage
EnvironmentFile=-/etc/sysconfig/docker-network
Environment=GOTRACEBACK=crash
ExecStart=/usr/bin/docker-current daemon \
--exec-opt native.cgroupdriver=systemd \
$OPTIONS \
$DOCKER_STORAGE_OPTIONS \
$DOCKER_NETWORK_OPTIONS \
$ADD_REGISTRY \
$BLOCK_REGISTRY \
$INSECURE_REGISTRY
LimitNOFILE=
LimitNPROC=
LimitCORE=infinity
TimeoutStartSec=
MountFlags=slave
Restart=on-abnormal [Install]
WantedBy=multi-user.target
#重启docker服务,查看修改配置是否写入
[root@lh- ~]# systemctl daemon-reload
[root@lh- ~]# systemctl restart docker
[root@lh- ~]# ps -aux|grep docker
root 2.8 0.3 ? Ssl : : /usr/bin/docker-current daemon --exec-opt native.cgroupdriver=systemd --selinux-enabled --log-driver=journald --insecure-registry=192.168.0.34:
root 0.5 0.2 ? Sl : : docker-proxy -proto tcp -host-ip 0.0.0.0 -host-port -container-ip 172.17.0.2 -container-port
root 0.0 0.0 pts/ S+ : : grep --color=auto docker
#前面提交到私有仓库报错
[root@lh- ~]# sudo docker push 192.168.0.34:/busybox
The push refers to a repository [192.168.0.34:/busybox]
Put http://192.168.0.34:5000/v1/repositories/busybox/: dial tcp 192.168.0.34:5000: getsockopt: connection refused [root@lh- ~]# docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
b57ed47acdc1 rancher/swarm-agent:v0.1.3 "swarm-agent" minutes ago Up minutes r-Swarm_swarm-agent_1
6cb333619b90 registry "/entrypoint.sh /etc/" hours ago Exited () About an hour ago pensive_lovelace
[root@lh- ~]# docker start 6cb333619b90
6cb333619b90
[root@lh- ~]# sudo docker push 192.168.0.34:/busybox
The push refers to a repository [192.168.0.34:/busybox]
8ac8bfaff55a: Pushed
latest: digest: sha256:a59906e33509d14c036c8678d687bd4eec81ed7c4b8ce907b888c607f6a1e0e6 size:
原因:未开启registry镜像容器。
#进入容器报错
[root@lh- ~]# docker exec -it 6cb333619b90 /bin/bash
exec: "/bin/bash": stat /bin/bash: no such file or directory
原因:不支持bash
#进入容器查看镜像存储
[root@lh- ~]# docker exec -it 6cb333619b90 /bin/sh
/ #
/ # ls
bin entrypoint.sh home linuxrc mnt root sbin sys usr
dev etc lib media proc run srv tmp var
/ # cd tmp/registry/
/tmp/registry # ls
/tmp/registry # ls
[root@lh- ~]# sudo docker run 192.168.0.34:/busybox
[root@lh- ~]# docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
e7a80ce00dbe 192.168.0.34:/busybox "sh" seconds ago Exited () seconds ago [root@lh- ~]# docker images
REPOSITORY TAG IMAGE ID CREATED SIZE192.168.0.34:/busybox latest 2b8fd9751c4c weeks ago 1.093 MB
感觉写一起有些太长了,再来一篇吧
https://www.cnblogs.com/zeppelin/p/5906435.html
欢迎扫码关注下面公众号,定期分享大数据与知识图谱相关知识点,读书思考。