安装harbor作为docker镜像仓库

1,895 阅读2分钟

持续创作,加速成长!这是我参与「掘金日新计划 · 6 月更文挑战」的第20天,点击查看活动详情


安装包

docker-20.10.9.tgz(可点击下载)、

docker-compose(可点击下载)、

docker.service 如下:

[Unit]
 
Description=Docker Application Container Engine
 
Documentation=https://docs.docker.com
 
After=network-online.target firewalld.service
 
Wants=network-online.target
 
 
[Service]
 
Type=notify
 
# the default is not to use systemd for cgroups because the delegate issues still
 
# exists and systemd currently does not support the cgroup feature set required
 
# for containers run by docker

# 开启远程连接 
ExecStart=/usr/bin/dockerd -H tcp://0.0.0.0:2375 -H unix:///var/run/docker.sock
 
ExecReload=/bin/kill -s HUP $MAINPID
 
# Having non-zero Limit*s causes performance problems due to accounting overhead
 
# in the kernel. We recommend using cgroups to do container-local accounting.
 
LimitNOFILE=infinity
 
LimitNPROC=infinity
 
LimitCORE=infinity
 
# Uncomment TasksMax if your systemd version supports it.
 
# Only systemd 226 and above support this version.
 
#TasksMax=infinity
 
TimeoutStartSec=0
 
# set delegate yes so that systemd does not reset the cgroups of docker containers
 
Delegate=yes
 
# kill only the docker process, not all processes in the cgroup
 
KillMode=process
 
# restart the docker process if it exits prematurely
 
Restart=on-failure
 
StartLimitBurst=3
 
StartLimitInterval=60s
 
 
[Install]
 
WantedBy=multi-user.target

一、docker和docker-compose离线部署

1、上传docker-20.10.9.tgz安装包并解压

tar  -zxvf  docker-20.10.9.tgz 

cp docker/*  /usr/bin/

2、docker.service文件

mv docker.service /usr/lib/systemd/system/

3、启动Docker

systemctl daemon-reload 
systemctl enable docker 
systemctl start docker 
systemctl status docker

4、docker-compose部署

cp -r docker-compose /usr/local/bin/ 
cp -r docker-compose /usr/local/sbin/ 
chmod a+x /usr/local/bin/docker-compose 
chmod a+x /usr/local/sbin/docker-compose

5、测试docker-compose

docker-compose -v

二、安装harbor作为本地的仓库

  Harbor是一个开源的可信云本地注册项目,用于存储、签名和扫描内容。Harbor通过添加用户通常需要的功能(如安全性、身份和管理)扩展了开源Docker发行版。使注册表更接近构建和运行环境可以提高图像传输效率。

1、解压harbor-offline-installer-v2.3.0.tgz

tar xvf harbor-offline-installer-v1.9.3.tgz

2、进入harbor目录,修改harbor.yml

cp -r harbor.yml.tmpl harbor.yml 
vi harbor.yml
hostname: 192.168.4.xxx                    ##对应服务器IP 
port: 80                                   ##对应harbor应用端口   
#  port: 443                               ##屏蔽https 
#  certificate: /your/certificate/path     ##屏蔽https 
#  private_key: /your/private/key/path     ##屏蔽https  
harbor_admin_password: llsydn123           ##harbor登录密码,根据情况修改  

3、配置docker client,编辑/etc/docker/daemon.json

Harbor的默认安装使用HTTP—因此,您需要将选项“-unsecure registry”添加到客户端的Docker守护进程,并重新启动Docker服务。

vi /etc/docker/daemon.json  {"insecure-registries" : [ "192.168.4.xxx" ] }
  • 重启docker
service docker restart

4、安装 Harbor

./install.sh

image.png

5、访问harbor

http://<your_harbor_host_ip

默认用户名和密码:admin/llsydn123

6、维护Harbor

1、以后要修改harbor.yml文件,先停止使用docker-compose down,再修改harbor.yml文件,重新启动部署 ./install.sh

2、正常启动harbor

docker-compose up -d

3、没有改配置文件,重启Harbor命令,直接用以下命令

docker-compose start

docker-compose stop

docker-compose restart


好了,以上就是我个人的实操了。

个人理解,可能也不够全面,班门弄斧了。

好了,今天就先到这里了!!!^_^

如果觉得有收获的,帮忙点赞、评论、收藏一下呗!!!

image.png