Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Setting up a remote private Docker registry

I need some tips on setting up a 'remote private Docker registry'.

README.md on Docker-Registry mainly focus on private registry running on the same host, does not specify how other machines can access it remotely (or maybe too complex to understand).

So far I found these threads:

Docker: Issue with pulling from a private registry from another server (Still an open thread, no solution offered. Further discussion on Github gives hint on proxy, but how does that work?)

Create a remote private registry (Maybe closest to what I'm looking for, but what command do I need to access the registry from other machines?)

How to use your own registry (Again, this focuses on running registry on the same host. It did mention running on port 443 or 80 for other machines to access, but need more detail!)

Running out of clues, any input very appreciated!

like image 532
Howard Lee Avatar asked Sep 24 '14 21:09

Howard Lee


People also ask

Can you host your private docker registry?

One server will host your private Docker Registry and the other will be your client server. Docker installed on both servers by following Step 1 and 2 of How To Install and Use Docker on Ubuntu 20.04.

What is a private docker registry?

A private Docker registry allows you to share your custom base images within your organization, keeping a consistent, private, and centralized source of truth for the building blocks of your architecture.

What is docker private repository?

Estimated reading time: 6 minutes. Docker Hub repositories allow you share container images with your team, customers, or the Docker community at large. Docker images are pushed to Docker Hub through the docker push command. A single Docker Hub repository can hold many Docker images (stored as tags).

How to push a custom Docker image to a remote private registry?

How to push a custom Docker image to a remote private registry 1 In the first case, it can be listed and run by the Docker daemon to which it belongs. 2 In the second case, it cannot. More ...

How do I set up a docker registry?

Add the following lines, which define a basic instance of a Docker Registry: First, you name the first service registry, and set its image to registry, version 2. Then, under ports, you map the port 5000 on the host to the port 5000 of the container.

How to set up a private container Registry server?

The following is a broad overview of how a private container registry server could work. Set up a local registry server. Preferably, put it behind a reverse proxy, and restrict access either through password protection or source IP or both. I will demonstrate it. Tag your docker images and point them to your local registry. An example command is

What are the benefits of a private Docker registry?

A private Docker registry gives you better performances for big clusters and high-frequency roll-outs, plus added features like access authentication. In an earlier post, we had a look at how one could store Docker images in Exoscale’s S3-compatible object storage.


2 Answers

I was able to set up a remote private registry by referring to this: Remote access to a private docker-registry

Steps:

  1. On registry host, run docker run -p 5000:5000 registry
  2. On client host, start Docker service by docker -d --insecure-registry 10.11.12.0:5000 (replace 10.11.12.0 with your own registry ip, and you might want to daemonize the process so it'll continue running after shell closes.)

Edit: Alternatively, you can edit Docker's init script (/etc/sysconfig/docker for RHEL/CentOS, /var/lib/docker for Ubuntu/Debian). Add this line other_args="--insecure-registry 10.11.12.0:5000", then do a service docker restart. This is a recommended method as it daemonizes the Docker process.

Now, try if it works:

  1. In client, download a busybox image docker pull busybox
  2. Give it a new tag docker tag busybox 10.11.12.0:5000/busybox
  3. Push it to registry docker push 10.11.12.0:5000/busybox
  4. Verify the push docker search 10.11.12.0:5000/busybox
  5. Remove all images and pull it from your registry docker rmi busybox 10.11.12.0:5000:busybox docker pull 10.11.12.0:5000:busybox
  6. Run docker images should have the image you just pulled from your own remote private registry.
like image 197
Howard Lee Avatar answered Sep 21 '22 13:09

Howard Lee


I use private registry in the next way:

  • It has FQDN: docker.mycompany.com
  • All images which I create have name: docker.mycompany.com/image1, docker.mycompany.com/image2, etc

After that all is working seamlessly:

  • Push image to registry:

    docker push docker.mycompany.com/image1

  • Pull and run image:

    docker run docker.mycompany.com/image2

like image 33
ISanych Avatar answered Sep 23 '22 13:09

ISanych