//建立多個docker host(swarm mode)共用的private registry
1. mkdir /certs2. openssl req -newkey rsa:4096 -nodes -sha256 -keyout /certs/dockerrepo.key -x509 -days 365 -out /certs/dockerrepo.crt -subj /CN=docker1
3. mkdir /home/registry
4. docker run -d -p 9527:5000 --restart=always --name myregistry \
-v /certs:/certs -v /home/registry:/var/lib/registry \
-e REGISTRY_HTTP_TLS_CERTIFICATE=/certs/dockerrepo.crt \
-e REGISTRY_HTTP_TLS_KEY=/certs/dockerrepo.key \
registry
5. mkdir -p /etc/docker/certs.d/docker1:9527/
6. cp dockerrepo.crt /etc/docker/certs.d/docker1\:9527/ca.crt
7. docker tag alpine:latest docker1:9527/alpine:1
8. docker push docker1:9527/alpine:1
※每個docker host都要做步驟5~6
docker stop myregistry && docker rm -v myregistry //停止
沒有留言:
張貼留言