Reputation: 36
TLS handshake issue connecting to docker registry in OKD
I am trying to setup my own OKD (v3.10) setup with one master and 2 workers. I went with the default registry installation. pods and services for the registry and routes came up fine. registry pod got created on the master node. All nodes are based on Centos7.
Now when I try to connect to the registry using docker login with the endpoint docker-registry.default.svc:5000, I am able to login only from the master node, but not from the worker nodes failing with the below message:
Error response from daemon: Get https://docker-registry.default.svc:5000/v1/users/: net/http: TLS handshake timeout
Registry container has the following log:
1120 10:40:57.796470 1 logs.go:41] http: TLS handshake error from 11.121.8.192:48200: EOF
This is just a test setup and not having any traffic to the registry now. While this seems to be a certificate issue, not able to figure out from the docs where to look further to troubleshoot.
Any insights ??
Upvotes: 2
Views: 2370
Answers (1)
Reputation: 353
You will need to configure docker to use it as insecure and restart the daemon.
--insecure-registry 172.30.0.0/16 in /etc/sysconfig/docker file.
Thanks.
Upvotes: 2
Related Questions
- Docker push - net/http: TLS handshake timeout
- Setup self-signed TLS certs for a registry POD
- docker: "first record does not look like a TLS handshake" error when pull image
- Unable to push to private docker registry via TLS
- TLS handshake error
- Unable to anonymously pull images from okd/openshift-origin docker registry using docker pull
- Docker private registry | TLS certificate issue
- How to setup okd to use external nexus docker registry?
- Openshift: Error pulling image from remote, secure docker registry using certificates
- Docker: TLS handshake timeout