Awesome tutorial. Thanks for walking through common errors. Most tutorials just show the right way to do stuff without showing the common pitfalls.

Very clear, All three scenarios covered simply in a short time. Interesting !

Great information, thanks! I like a lot your style, is like watching a live demo but ... on demand :D I see you are very good with shells already, here are two things I feel sharing for the benefits of everyone reading: CTRL+l (lower letter "L") works like typing the command "clear" ALT+. pastes the last arg of the previous command line All the best and keep up with the good work! And, and almost forgot :) I loved the background at the beginning, Namaste brother _/\_ ; )

your video once again helped me for solving insecure issue from registry.Great

Hi Vankat, thanks for this great work, im learning a lot from your videos about k8s.

You helped me a lot! I was really struggling to create a registry. Thank you!

Awesome Venkat, Good Going!!!

Thanks is not enough the ways to taught.. shukriya❤️

Nice Demonstration. Thanks Venkat.

Very good tutorial indeed

Hi, Thank you for the awesome tutorial ......in the 11:26 minute of the video you are add insecure registries in the worker1 and 2 nodes to solve the https issue, i am unable to get the ips of the worker nodes and unable to to do ssh with root@worker1 &2 , it says "ssh: Could not resolve hostname worker1: Temporary failure in name resolution".....please help

very good venkat,thanks

Simply awesome...

Hi Venkat, I am getting error while push the image using docker push. error : "The push refers to repository [localhost:8000/dfarm-app1] Get localhost:8000/v2/: read tcp 127.0.0.1:56584->127.0.0.1:8000: read: connection reset by peer". Could you please help me to fix the issue?

Thank you for the tutorial.. I wonder why you didn't need to add the "domain.crt" file in your kubernetes cluster hosts! How did the local private registry with an enabled TLS accept the connection without public key (the CRT file in this case)? Could it be because the docker was still configure to accept your registry as insecure, therefore the TLS was bypassed? I have a k8s cluster created by kubeadm and I'm not able to pull images through kubectl while I can through docker. The error "x509: certificate signed by unknown authority" haunts me down when I create a pod, eventhough I have everything configured properly with the CRTs added.

Hi Venkat, today I finally completed the Kubernetes series in your playlist. Great great great thanks. Are you planning to cover deployment and usage of Kafka and Apache Spark with Kubernetes? If not can you please consider this as a request for future videos?

I created the docker registry in my kubernetes master vm. I followed all the steps that you described i your video and more important i filled in my worker node vm in the /etc/docker/daemon.json the "insecure-registries": ["ip_of_master_node" : 5000] but the error http: server gave HTTP response to HTTPS client continue to appear. :/ **Should i fill also the daemon.json file woth the "insecure-registries"?

can you do a video on harbor for registry?

Thanks man. can we expose this local registry as https using nginx? if yes than how? or what is the best way to expose it as https service so that other kubernetes cluster can access it over the internet as a secured registry?

Thank you so much sir

What are the advantages of using private registry vs own repo/account at Docker Hub.

Great - Thanks a lot

how to pull the docker registry on localhost if the container run time engine is containerd in the kubernetes worker nodes. The Https error is coming while pulling the image

Hi Venkat, in docker hub when we select public repo instead of private i am still unable to pull image in kubernetes cluster why?

Hi, Can you suggest that which is of reasonable cost Docker private registry or Azure container registry ?

Hi Venkat, how to install docker registry ui on the k8s, sometimes it comfortable manage docker images

Great Video! But i am still not clear where this private registry resides. Is in K8s cluster or another standalone server/deployment server ?

Very clear and simple way to explain things. Can you pls let me know is there any platform when i can practice this stuff like production level? Because right now i am working in QA and i dont have exposure to devops. But i want to get into Kubernetes and Devops

Hello, What does the curly braces represent in the end of the yaml file? And how does it relate with the path in the local host? Here is a part of the JSON code. .... volumes: - docker-registry-data:/var/lib/registry volumes: docker-registry-data: {}

Hi Venkat, slightly off topic, but what are you using for the that ghost shell completion? thats pretty cool !! is it something like 'powerline'?...also the status bar at the bottom of your screeen showing your IP etc, what is that?

Hi Venkat,is it possible to setup a UI for the registry to browse through all the repository and images. it will be great if you can post a tutorial on this. Thank you

Can we create a private docker registry and push and pull from it from an external docker client

I setup docker registry that deploy on k8s cluster but I getting error ssl certificate issue

Very cool, could you show how to install Kubeflow on k8s ？ that is machine learning platform, and how to config ISTIO for micro services gateway

Is daemon.json still required on workers when I use TLS certs for docker-registry in 2nd approach? I just don't want to make this change on all worker hosts.

Hello, two question, followed the video and all was success. The first issue is when trying to building/tagging and pushing an image from local computer to private registry on the server (linode) - i get no errors (all seems to work fine), but I cannot see the images (I am logged in via docker login etc.) so then I tried doing a curl -k localhost:5000/v2/_catalog => Received HTTP/0.9 when not allowed when doing: curl -k localhost:5000/v2/_catalog (tried the ip of the node as well) => {"errors":[{"code":"UNAUTHORIZED","message":"authentication required","detail" and tried passing the --cert and --key - and same error. Any hints would be appreciated.

Hi Venkat, I am getting doesn't contain any IP SANs error. When you use the secure docker registry do you still need the daemon.json file?

Also i am having to use sudo , to access docker .. can i bypass this ..without adding the user explicitly to docker user

Thank you for your great tutorials. I was wondering if you could help me with a tricky question. I followed one of you other tutorials to setup Jenkins using Helm. And now I would love for Jenkins to get the images from the Docker registry that I have setup using this tutorial. But all I get from Jenkins logs is "x509: certificate signed by unknown authority". I have changed the openssl.cnf to contain [alt_names] IP = "172.x.x.x" # the IP address of my docker registry on a private cloud server. What can I do to get the images to Jenkins using my private Docker registry? I am grateful for any help.

Hello bro, How to remove image in docker registry? Thanks bro

Master Super

After adding the insecure-registries to the docker config, till getting the error in the kubectl events, Failed to pull image "10.6.0.95:5000/nginxprivate": rpc error: code = Unknown desc = Error response from daemon: Get 10.6.0.95:5000/v2/: http: server gave HTTP response to HTTPS client.. can you help me ?

Brother I have deploy docker registry as node port and it will work on localhost:portnumber from all the nodes. Is this right.

Hello, my friend, Thank you for posting useful and informative content every time. I have a question about the private container registry. Do you think it's better to build and use the container registry ourselves even in a sensitive customer service environment with some traffic and an increasing trend? For your information, we are planning to use Managed Kubernetes, but the container registry in the cloud is not allowed. Do you have any additional options or recommendations to consider in this situation?

H I Venkat, Thanks for this awesome tutorial which I was looking, however If possible you help me how I can make the docker image in private of Node.js based backed and use in k8s as pods?

Failed to pull image "localhost:5000/ubuntu": rpc error: code = Unknown desc = Error response from daemon: Get localhost:5000/v2/: dial tcp 127.0.0.1:5000: connect: connection refused

👏👏👏

hi we are still facing imagepullback

Hey friend, thank you for the tutorial, very clean and clear But I need your help, when I try to deploy with kubectl run mytest ... y get this: "ImagePullBackOff" And if we see the logs.... " Normal Scheduled 54s default-scheduler Successfully assigned default/mytest to kunode1 Normal BackOff 23s (x2 over 53s) kubelet, kunode1 Back-off pulling image "localhost:5000/myalpine:v1" Warning Failed 23s (x2 over 53s) kubelet, kunode1 Error: ImagePullBackOff Normal Pulling 8s (x3 over 53s) kubelet, kunode1 Pulling image "localhost:5000/myalpine:v1" Warning Failed 8s (x3 over 53s) kubelet, kunode1 Failed to pull image "localhost:5000/myalpine:v1": rpc error: code = Unknown desc = Error response from daemon: Get localhost:5000/v2/: dial tcp [::1]:5000: connect: connection refused Warning Failed 8s (x3 over 53s) kubelet, kunode1 Error: ErrImagePull" Is this normal?, I have try with user/pass registry:2, setting secrets, etc... And yes, I have configured the registry ok and I can see there the image. Pleeeeeease, tell my something, that is insane! Thank you again!! By the way, im using Debian GNU/Linux 9.12 Client Version: v1.18.1 Server Version: v1.14.1

Hey Venkat, i'm getting this error "Failed to pull image "ip_address:5000/valiyev/myalpine:v1": rpc error: code = Unknown desc = failed to pull and unpack image "ip_address:5000/valiyev/myalpine:v1": failed to resolve reference "ip_address:5000/valiyev/myalpine:v1": failed to do request: Head ip_address:5000/v2/valiyev/myalpine/manifests/v1: x509: cannot validate certificate for ip_address because it doesn't contain any IP SANs". I'm using Docker Nodes (kuberntes Cluster created with kind). You have any idea how to fix it ?

Bless you (couldn't withstand it).

2 persons who disliked this video, their accounts should be deleted from youtube

When using kubectl to create a pod and deploy the image it gives the error: Failed to pull image "192.168.100.11:5000/myorg/image:1": rpc error: code = Unknown desc = failed to pull and unpack image "192.168.100.11:5000/myorg/image:1": failed to resolve reference "192.168.100.11:5000/myorg/image:1": failed to do request: Head "192.168.100.11:5000/v2/myorg/image/manifests/1": http: server gave HTTP response to HTTPS client. But if I perform docker pull from the worker node, then it pulls the image from the registry in the master node vm. Any idea as to what is the issue in here?

Hi I have tried these steps to create local registry but i am getting the below error. rpc error: code = Unknown desc = failed to pull and unpack image "MYIP:5000/sampleflask:1.0": failed to resolveMYIP:rence "MYIP:5000/sampleflask:1.0": failed to do request: Head "MYIP:5000/v2/sampleflask/manifests/1.0": x509: cannot validate certificate for MYIP because it doesn't contain any IP SANs Could please tell my what could be the reason