把原来的端口映射改成1180

一 修改docker-compose.yml

[root@topcheer ~]#  cat /mnt/harbor/docker-compose.yml

version: '2.3'

services:

  log:

    image: goharbor/harbor-log:v1.8.0

    container_name: harbor-log

    restart: always

    dns_search: .

    cap_drop:

      - ALL

    cap_add:

      - CHOWN

      - DAC_OVERRIDE

      - SETGID

      - SETUID

    volumes:

      - /var/log/harbor/:/var/log/docker/:z

      - ./common/config/log/:/etc/logrotate.d/:z

    ports:

      - 127.0.0.1:1514:10514

    networks:

      - harbor

  registry:

    image: goharbor/registry-photon:v2.7.1-patch-2819-v1.8.0

    container_name: registry

    restart: always

    cap_drop:

      - ALL

    cap_add:

      - CHOWN

      - SETGID

      - SETUID

    volumes:

      - /data/registry:/storage:z

      - ./common/config/registry/:/etc/registry/:z

      - type: bind

        source: /data/secret/registry/root.crt

        target: /etc/registry/root.crt

    networks:

      - harbor

    dns_search: .

    depends_on:

      - log

    logging:

      driver: "syslog"

      options:

        syslog-address: "tcp://127.0.0.1:1514"

        tag: "registry"

  registryctl:

    image: goharbor/harbor-registryctl:v1.8.0

    container_name: registryctl

    env_file:

      - ./common/config/registryctl/env

    restart: always

    cap_drop:

      - ALL

    cap_add:

      - CHOWN

      - SETGID

      - SETUID

    volumes:

      - /data/registry:/storage:z

      - ./common/config/registry/:/etc/registry/:z

      - type: bind

        source: ./common/config/registryctl/config.yml

        target: /etc/registryctl/config.yml

    networks:

      - harbor

    dns_search: .

    depends_on:

      - log

    logging:

      driver: "syslog"

      options:

        syslog-address: "tcp://127.0.0.1:1514"

        tag: "registryctl"

  postgresql:

    image: goharbor/harbor-db:v1.8.0

    container_name: harbor-db

    restart: always

    cap_drop:

      - ALL

    cap_add:

      - CHOWN

      - DAC_OVERRIDE

      - SETGID

      - SETUID

    volumes:

      - /data/database:/var/lib/postgresql/data:z

    networks:

      harbor:

    dns_search: .

    env_file:

      - ./common/config/db/env

    depends_on:

      - log

    logging:

      driver: "syslog"

      options:

        syslog-address: "tcp://127.0.0.1:1514"

        tag: "postgresql"

  core:

    image: goharbor/harbor-core:v1.8.0

    container_name: harbor-core

    env_file:

      - ./common/config/core/env

    restart: always

    cap_drop:

      - ALL

    cap_add:

      - SETGID

      - SETUID

    volumes:

      - /data/ca_download/:/etc/core/ca/:z

      - /data/psc/:/etc/core/token/:z

      - /data/:/data/:z

      - ./common/config/core/certificates/:/etc/core/certificates/:z

      - type: bind

        source: ./common/config/core/app.conf

        target: /etc/core/app.conf

      - type: bind

        source: /data/secret/core/private_key.pem

        target: /etc/core/private_key.pem

      - type: bind

        source: /data/secret/keys/secretkey

        target: /etc/core/key

    networks:

      harbor:

    dns_search: .

    depends_on:

      - log

      - registry

    logging:

      driver: "syslog"

      options:

        syslog-address: "tcp://127.0.0.1:1514"

        tag: "core"

  portal:

    image: goharbor/harbor-portal:v1.8.0

    container_name: harbor-portal

    restart: always

    cap_drop:

      - ALL

    cap_add:

      - CHOWN

      - SETGID

      - SETUID

      - NET_BIND_SERVICE

    networks:

      - harbor

    dns_search: .

    depends_on:

      - log

      - core

    logging:

      driver: "syslog"

      options:

        syslog-address: "tcp://127.0.0.1:1514"

        tag: "portal"


  jobservice:

    image: goharbor/harbor-jobservice:v1.8.0

    container_name: harbor-jobservice

    env_file:

      - ./common/config/jobservice/env

    restart: always

    cap_drop:

      - ALL

    cap_add:

      - CHOWN

      - SETGID

      - SETUID

    volumes:

      - /data/job_logs:/var/log/jobs:z

      - type: bind

        source: ./common/config/jobservice/config.yml

        target: /etc/jobservice/config.yml

    networks:

      - harbor

    dns_search: .

    depends_on:

      - redis

      - core

    logging:

      driver: "syslog"

      options:

        syslog-address: "tcp://127.0.0.1:1514"

        tag: "jobservice"

  redis:

    image: goharbor/redis-photon:v1.8.0

    container_name: redis

    restart: always

    cap_drop:

      - ALL

    cap_add:

      - CHOWN

      - SETGID

      - SETUID

    volumes:

      - /data/redis:/var/lib/redis

    networks:

      harbor:

    dns_search: .

    depends_on:

      - log

    logging:

      driver: "syslog"

      options:

        syslog-address: "tcp://127.0.0.1:1514"

        tag: "redis"

  proxy:

    image: goharbor/nginx-photon:v1.8.0

    container_name: nginx

    restart: always

    cap_drop:

      - ALL

    cap_add:

      - CHOWN

      - SETGID

      - SETUID

      - NET_BIND_SERVICE

    volumes:

      - ./common/config/nginx:/etc/nginx:z

    networks:

      - harbor

    dns_search: .

    ports:

      - 1180:80

    depends_on:

      - postgresql

      - registry

      - core

      - portal

      - log

    logging:

      driver: "syslog"

      options:

        syslog-address: "tcp://127.0.0.1:1514"

        tag: "proxy"

networks:

  harbor:

    external: false

[root@topcheer ~]#
 

二 修改config.yml

[root@topcheer ~]# cat /mnt/harbor/common/config/registry/config.yml

version: 0.1

log:

  level: info

  fields:

    service: registry

storage:

  cache:

    layerinfo: redis

  filesystem:

    rootdirectory: /storage

  maintenance:

    uploadpurging:

      enabled: false

  delete:

    enabled: true

redis:

  addr: redis:6379

  password:

  db: 1

http:

  addr: :5000

  secret: placeholder

  debug:

    addr: localhost:5001

auth:

  token:

    issuer: harbor-token-issuer

    realm: http://192.168.180.105:1180/service/token

    rootcertbundle: /etc/registry/root.crt

    service: harbor-registry

validation:

  disabled: true

notifications:

  endpoints:

  - name: harbor

    disabled: false

    url: http://core:8080/service/notifications

    timeout: 3000ms

    threshold: 5

    backoff: 1s

compatibility:

  schema1:

    enabled: true[root@topcheer ~]#

三 修改harbor.yml

[root@topcheer ~]# cat /mnt/harbor/harbor.yml

# Configuration file of Harbor


# The IP address or hostname to access admin UI and registry service.

# DO NOT use localhost or 127.0.0.1, because Harbor needs to be accessed by external clients.

hostname: 192.168.180.105


# http related config

http:

  # port for http, default is 80. If https enabled, this port will redirect to https port

  port: 1180


# https related config

# https:

#   # https port for harbor, default is 443

#   port: 443

#   # The path of cert and key files for nginx

#   certificate: /your/certificate/path

#   private_key: /your/private/key/path


# Uncomment external_url if you want to enable external proxy

# And when it enabled the hostname will no longer used

# external_url: https://reg.mydomain.com:8433


# The initial password of Harbor admin

# It only works in first time to install harbor

# Remember Change the admin password from UI after launching Harbor.

harbor_admin_password: Harbor12345


# Harbor DB configuration

database:

  # The password for the root user of Harbor DB. Change this before any production use.

  password: root123


# The default data volume

data_volume: /data

四 修改daemon.json

[root@topcheer ~]# cat /etc/docker/daemon.json

{

  "insecure-registries":[

    "192.168.180.105:1180"

  ]

}

[root@topcheer ~]#
 

五 重启docker

systemctl daemon-reload

systemctl restart docker

六 重启harbor(修改配置)

[root@topcheer harbor]# docker-compose down

Stopping harbor-log ... done

Removing nginx             ... done

Removing harbor-portal     ... done

Removing harbor-jobservice ... done

Removing harbor-core       ... done

Removing redis             ... done

Removing registry          ... done

Removing registryctl       ... done

Removing harbor-db         ... done

Removing harbor-log        ... done

Removing network harbor_harbor

[root@topcheer harbor]# ./prepare

prepare base dir is set to /mnt/harbor

Clearing the configuration file: /config/log/logrotate.conf

Clearing the configuration file: /config/nginx/nginx.conf

Clearing the configuration file: /config/core/env

Clearing the configuration file: /config/core/app.conf

Clearing the configuration file: /config/registry/root.crt

Clearing the configuration file: /config/registry/config.yml

Clearing the configuration file: /config/registryctl/env

Clearing the configuration file: /config/registryctl/config.yml

Clearing the configuration file: /config/db/env

Clearing the configuration file: /config/jobservice/env

Clearing the configuration file: /config/jobservice/config.yml

Generated configuration file: /config/log/logrotate.conf

Generated configuration file: /config/nginx/nginx.conf

Generated configuration file: /config/core/env

Generated configuration file: /config/core/app.conf

Generated configuration file: /config/registry/config.yml

Generated configuration file: /config/registryctl/env

Generated configuration file: /config/db/env

Generated configuration file: /config/jobservice/env

Generated configuration file: /config/jobservice/config.yml

loaded secret from file: /secret/keys/secretkey

Generated configuration file: /compose_location/docker-compose.yml

Clean up the input dir

[root@topcheer harbor]# docker-compose up -d

Creating network "harbor_harbor" with the default driver

Creating harbor-log ... done

Creating harbor-db   ... done

Creating redis       ... done

Creating registry    ... done

Creating registryctl ... done

Creating harbor-core ... done

Creating harbor-jobservice ... done

Creating harbor-portal     ... done

Creating nginx             ... done

[root@topcheer harbor]# docker ps -a

CONTAINER ID        IMAGE                                               COMMAND                  CREATED             STATUS                             PORTS 
     

参考的官方文档

Reconfigure Harbor

To reconfigure Harbor, stop the existing Harbor instance and update harbor.yml. Then run prepare script to populate the configuration. Finally re-create and start the Harbor instance.

$ sudo docker-compose down -v
$ vim harbor.yml
$ sudo prepare
$ sudo docker-compose up -d

正常的关闭开启

Managing Harbor Lifecycle

You can use docker-compose to manage the lifecycle of Harbor. Some useful commands are listed below. You must run the commands in the same directory as docker-compose.yml.

Stop Harbor:

$ sudo docker-compose stop
Stopping nginx              ... done
Stopping harbor-portal      ... done
Stopping harbor-jobservice  ... done
Stopping harbor-core        ... done
Stopping registry           ... done
Stopping redis              ... done
Stopping registryctl        ... done
Stopping harbor-db          ... done
Stopping harbor-log         ... done

Restart Harbor after Stopping:

$ sudo docker-compose start
Starting log         ... done
Starting registry    ... done
Starting registryctl ... done
Starting postgresql  ... done
Starting core        ... done
Starting portal      ... done
Starting redis       ... done
Starting jobservice  ... done
Starting proxy       ... done

七 查看

Harbor修改暴露端口的更多相关文章

  1. centos6.5 ssh安全优化,修改默认端口名,禁止root远程登录

    一.修改默认端口号 第一步: vi /etc/sysconfig/iptables 添加修改后的端口号的配置 -A INPUT -p tcp -m state --state NEW -m tcp - ...

  2. ECS修改默认端口22及限制root登录

    首先要创建一个用户,用系统默认的www用户也可以(这里不介绍如何创建用户) 接下来要修改www的密码: passwd www 执行此命令后会让你输入两次密码.这样就设置好了. 然后进入: vi /et ...

  3. 在Linux上安装多Jboss个需要修改的端口

    如果在一台机器上部署了多个jboss server,需要修改相关端口以避免端口冲突.目前确认需要修改的配置如下一.vi $JBOSS_HOME/server/default/conf/jboss-se ...

  4. centos修改ssh端口

    1.编辑防火墙配置:vi /etc/sysconfig/iptables防火墙增加新端口2222-A INPUT -m state --state NEW -m tcp -p tcp --dport ...

  5. Linux修改SSH端口和禁止Root远程登陆

    Linux修改ssh端口22 vi /etc/ssh/ssh_config vi /etc/ssh/sshd_config 然后修改为port 8888 以root身份service sshd res ...

  6. CentOSv6.8 修改防火墙配置、修改SSH端口

    查看防火墙目前使用状况: service iptables status 修改防火墙配置: vi /etc/sysconfig/iptables 重启防火墙,让刚才修改的配置生效: service i ...

  7. Oracle之 11gR2 RAC 修改监听器端口号的步骤

    Oracle 11gR2 RAC 修改监听器端口号的步骤 说明:192.168.188.181 为public ip1192.168.188.182 为public ip2192.168.188.18 ...

  8. was修改控制台端口教程

    这里我控制台启用了https所以修改WC_adminhost_secure,如果要修改控制台http的端口那么修改WC_adminhost (要修改应用的访问端口,则http--修改WC_defaul ...

  9. linux修改ssh端口 以及禁止root远程登录 (实验机 CentOs)

    把ssh默认远程连接端口修改为3333 1.编辑防火墙配置: vi /etc/sysconfig/iptables 防火墙新增端口3333,方法如下: -A INPUT -m state --stat ...

随机推荐

  1. 再谈 COW、ROW 快照技术

    目录 目录 前言 快照与备份的区别 快照技术 增量快照之 COW 增量快照之 row 前言 在经过了一段时间的实践之后,再次回顾 COW/ROW 快照技术的实现原理,温故而知新. 快照与备份的区别 传 ...

  2. 阶段1 语言基础+高级_1-3-Java语言高级_04-集合_08 Map集合_10_练习_计算一个字符串中每个字符出现的次数

  3. gradle implementation runtimeOnly 和api 区别

    implementation  不对外开发,只是本项目依赖. runtimeOnly 运行时才依赖 api 可以传递依赖,别的项目也可以依赖api的jar包.

  4. struts2 基础2 类型转换器

    struts2常用常量的定义与意义 每一次请求都会创建一个新的action,所以struts2的action是线程安全的 拆分struts 为应用指定多个struts配置文件 src 下为各应用配置的 ...

  5. python接口自动化:对外接口sign签名

    签名参数sign生成的方法: 在接口开发过程中,一般通过时间戳+sign作为密匙加密传输 实现代码如下: #python实现sign签名 import hashlib,time class sign: ...

  6. LeetCode 94. Binary Tree Inorder Traversal 动态演示

    非递归的中序遍历,要用到一个stack class Solution { public: vector<int> inorderTraversal(TreeNode* root) { ve ...

  7. Ansible安装配置(CentOS 7)

    Ansible 中的概念 任务 Task——多个 Task 顺序执行,在每个 Task 执行结束可以通知 Hanlder 触发新操作. 变量 Variable——用户定义的变量. 环境 Facts—— ...

  8. 循环结构 :do-while

    循环结构 :do-while 循环四要素: 1.初始化条件 2.循环条件 3.循环体 4.迭代条件 格式: 1.初始化条件 do{ 3.循环体 4.迭代条件 }while(2.循环条件); publi ...

  9. 洛谷 P2672 推销员(贪心,模拟)

    传送门 解题思路 第一种: 对于选i家,很显然,a值前i-1家的一定会选,所以只需要考虑最后一家的选法.要么是选择a值第i大的(就不管s了),要么选择剩下的中s最大的. 我们把每一家的情况(s和a)存 ...

  10. TensorFlow 解决“ImportError: Could not find 'cudnn64_6.dll'”

    解决“ImportError: Could not find 'cudnn64_6.dll'” 1. 问题描述 运行一个基于Tensorflow的代码时报错,如下所示: ImportError: Co ...