On Tue, Oct 6, 2020 at 1:15 AM Ruslanas Gžibovskis <ruslanas@lpic.lt> wrote:
Hi all,
I have been trying to use containers from local container image repo which is insecure, but it is always trying to use TLS version, and I do not have https there. even if I would have, I would not have CERT signed, so still it is insecure. It is always trying to access over WWW:443.
my registries.conf [1] and I am able to fetch image from the registry [1] and my container image prepare file contains updated repos, I have even added insecure: true
any tips? I am following [2] and [3]
Use DockerInsecureRegistryAddress to configure the list of insecure registries. You can include this in the container image prepare file. If you are using push_destination: true, be sure to add the undercloud in there by default. We have logic to magically add this if DockerInsecureRegistryAddress is not configured and push_destination: true is set. It'll configure the local ip and an undercloud ctlplane host name as well. Unfortunately docker/podman always attempt https first and fallback to http if not available (this can get weird). If the host is not in the insecure list, it won't fall back to http.
[1] http://paste.openstack.org/show/cYQM2k77bIh14Zzr5Kjn/ [2] https://docs.openstack.org/project-deploy-guide/tripleo-docs/latest/deployme... [3] https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16....
-- Ruslanas Gžibovskis +370 6030 7030