Recipe Types:
──────────────────────────────────────────
nexus/repository/recipe/types
─┬────────────────────────────────────────
├─ group
├─ proxy
└─ host
|
Repositories:
──────────────────────────────────────────
https://cdn.chorke.org/nexus/repository/
─┬────────────────────────────────────────
├─ docker-registry/ [proxy]
├─ docker-private/ [host ]
└─ docker-group/ [group]
|
Blob Store
Admin : https://cdn.chorke.org/nexus/#admin/repository/blobstores
Path : /nexus-data/blobs/docker-registry
Name : docker-registry
Admin : https://cdn.chorke.org/nexus/#admin/repository/blobstores
Path : /nexus-data/blobs/docker-private
Name : docker-private
Admin : https://cdn.chorke.org/nexus/#admin/repository/blobstores
Path : /nexus-data/blobs/docker-group
Name : docker-group
Repository
Admin : https://cdn.chorke.org/nexus/#admin/repository/repositories
HTTP : 8083
V1 API : enable
Deploy : Allow redeploy
Storage : docker-private
Name : docker-private
Admin : https://cdn.chorke.org/nexus/#admin/repository/repositories
USE HUB : enable
proxy : https://registry-1.docker.io
Storage : docker-registry
Name : docker-registry
Admin : https://cdn.chorke.org/nexus/#admin/repository/repositories
HTTP : 8082
Members : docker-private, docker-registry
Storage : docker-group
Name : docker
Security
vim /etc/docker/daemon.json
{
"insecure-registries": [
"hub.chorke.org:8082",
"reg.chorke.org:8083"
],
"disable-legacy-registry": true
}
vim ~/.docker/config.json
{
"auths": {
"hub.chorke.org:8082": {
"auth": "YWNhZGVtaWE6c2FkYXFhaCE="
},
"reg.chorke.org:8083": {
"auth": "YWNhZGVtaWE6c2FkYXFhaCE="
}
}
docker login hub.chorke.org -u academia -p sadaqah!
docker login hub.chorke.org -u academia
docker logout hub.chorke.org
docker pull hub.chorke.org/httpd:2.4-alpine
docker tag academia-http-server:1.0.0 reg.chorke.org/academia-http-server:1.0.0
docker push reg.chorke.org/academia-http-server:1.0.0
Networking
cat <<EOF > /etc/docker/daemon.json
{
"registry-mirrors": ["https://hub.chorke.org"],
"bip" : "10.20.13.1/24",
"mtu" : 1500,
"dns" : [
"10.19.83.100",
"10.19.83.1"
],
"debug": true
}
EOF
Cache or Mirror
mkdir -p /etc/docker/registry
cat <<EOF > /etc/docker/registry/config.yml
proxy:
remoteurl: https://hub.chorke.org
username: academia
password: sadaqah!
EOF
Troubleshoot
docker run --rm --net=host busybox nslookup google.com
docker run --rm --net=host alpine cat /etc/resolv.conf
docker run --rm --net=host alpine nslookup google.com
docker run --rm --net=host alpine ping google.com
docker run --rm --net=host alpine cat /etc/hosts
docker run --rm --net=host alpine ifconfig
docker run --rm --net=host alpine ip addr
docker run --rm --net=host alpine route
|
docker run --rm busybox nslookup google.com
docker run --rm alpine cat /etc/resolv.conf
docker run --rm alpine nslookup google.com
docker run --rm alpine ping google.com
docker run --rm alpine cat /etc/hosts
docker run --rm alpine ifconfig
docker run --rm alpine ip addr
docker run --rm alpine route
|
───────────────────────────────────────
cat /etc/docker/registry/config.yml
cat /etc/docker/daemon.json
cat ~/.docker/config.json
docker info
|
docker run --rm hub.chorke.org/alpine cat /etc/resolv.conf
docker run --rm hub.chorke.org/alpine nslookup google.com
docker run --rm hub.chorke.org/alpine ping google.com
docker run --rm hub.chorke.org/alpine cat /etc/hosts
docker run --rm hub.chorke.org/alpine ip addr
|
References