51工具盒子硬件支持 {#%E7%A1%AC%E4%BB%B6%E6%94%AF%E6%8C%81}
CPU:最低2核,推荐4核
内存:最低4G,推荐8G
磁盘:最低40G,推荐160G
软件支持 {#%E8%BD%AF%E4%BB%B6%E6%94%AF%E6%8C%81}
Docker:Version17.06.0-ce以上
Docker Compose:docker-compose(v1.18.0+) 或 docker compose v2(docker-compose-plugin)版本
安装Harbor {#%E5%AE%89%E8%A3%85harbor}
下载Harbor
wget https://github.com/goharbor/harbor/releases/download/v2.5.3/harbor-offline-installer-v2.5.3.tgz
解压压缩包
tar -zxvf harbor-offline-installer-v2.5.3.tgz
harbor/harbor.v2.5.3.tar.gz
harbor/prepare
harbor/LICENSE
harbor/install.sh
harbor/common.sh
harbor/harbor.yml.tmpl
进入harbor目录,复制harbor.yml.tmpl生产一个harbor.yml。
cd harbor
cp harbor.yml.tmpl harbor.yml
vim harbor.yml
修改配置,将域名修改成本机的域名或IP地址,将HTTPS部门注释掉,默认管理密码Harbor12345
# Configuration file of Harbor
The IP address or hostname to access admin UI and registry service.
DO NOT use localhost or 127.0.0.1, because Harbor needs to be accessed by external clients.
hostname: 192.168.170.111
http related config
http:
port for http, default is 80. If https enabled, this port will redirect to https port
port: 80
https related config
#https:
https port for harbor, default is 443
port: 443
The path of cert and key files for nginx
certificate: /your/certificate/path
private_key: /your/private/key/path
Uncomment following will enable tls communication between all harbor components
=================================================================================
internal_tls:
set enabled to true means internal tls is enabled
===================================================
enabled: true
put your cert and key files on dir
====================================
dir: /etc/harbor/tls/internal
Uncomment external_url if you want to enable external proxy
And when it enabled the hostname will no longer used
external_url: https://reg.mydomain.com:8433
The initial password of Harbor admin
It only works in first time to install harbor
Remember Change the admin password from UI after launching Harbor.
harbor_admin_password: Harbor12345
保存配置退出后,返回上一层,将harbor整个目录移至/usr/local下。
mv harbor /usr/local/harbor/
进入harbor目录里,通过install脚本开始自动启动安装
cd /usr/local/harbor/
./install.sh
`[Step 5]: starting Harbor ...
[+] Running 9/10
⠙ Network harbor_harbor Created 4.1s
✔ Container harbor-log Started 1.1s
✔ Container redis Started 1.7s
✔ Container registryctl Started 1.3s
✔ Container harbor-portal Started 1.2s
✔ Container harbor-db Started 1.7s
✔ Container registry Started 1.6s
✔ Container harbor-core Started 2.1s
✔ Container harbor-jobservice Started 2.8s
✔ Container nginx Started 2.8s
✔ ----Harbor has been installed and started successfully.----`
浏览器访问harbor,默认密码Harbor12345
上传镜像到Harbor {#%E4%B8%8A%E4%BC%A0%E9%95%9C%E5%83%8F%E5%88%B0harbor}
和registry一样,上传方需要先修改daemon文件,我这里把registry和Harbor的地址都添加了
vim /etc/docker/daemon.json
{
"insecure-registries":["hub.monster.com:5000","hub.monster.com:80"]
}
重新加载配置,重启Docker生效
[root@ceshi ~]# systemctl daemon-reload
[root@ceshi ~]# systemctl restart docker
打标签
[root@ceshi ~]# docker tag hub.monster.com:5000/chatgpt:1.1 hub.monster.com:80/monster/chatgpt:0.1
上传镜像,注意直接上传会提示未认证,需要先通过Docker登录到我们的Harbor。
[root@ceshi ~]# docker push hub.monster.com:80/monster/chatgpt:0.1
The push refers to repository [hub.monster.com:80/monster/chatgpt]
29117c2678df: Preparing
82c0fd5deac1: Preparing
b47a34ba73cb: Preparing
07b965bc2aca: Preparing
a2c7e2a1b1ae: Preparing
63caa1dbfd24: Waiting
879b1e560390: Waiting
54e2f0467614: Waiting
a0bbbabe7b80: Waiting
78a822fe2a2d: Waiting
unauthorized: unauthorized to access repository: monster/chatgpt, action: push: unauthorized to access repository: monster/chatgpt, action: push
[root@ceshi ~]# docker login -u admin hub.monster.com:80
Password:
WARNING! Your password will be stored unencrypted in /root/.docker/config.json.
Configure a credential helper to remove this warning. See
https://docs.docker.com/engine/reference/commandline/login/#credentials-store
`Login Succeeded
[root@ceshi ~]# docker push hub.monster.com:80/monster/chatgpt:0.1
The push refers to repository [hub.monster.com:80/monster/chatgpt]
29117c2678df: Pushed
82c0fd5deac1: Pushed
b47a34ba73cb: Pushed
07b965bc2aca: Pushed
a2c7e2a1b1ae: Pushed
63caa1dbfd24: Pushed
879b1e560390: Pushed
54e2f0467614: Pushed
a0bbbabe7b80: Pushed
78a822fe2a2d: Pushed
0.1: digest: sha256:ece1b3edb2459e71cdfefaf28a04ef6719ad64f6e170f7ab69f4bd5a96b60089 size: 2420
[root@ceshi ~]# `
