<CoreOS，cloud-config>如何在Docker Private Registry准备好之前等待？

我正在EC2上的CoreOS上尝试Docker。

我想要做的是：

• 运行Docker专用registry容器
• 从私人registry中拉出图像后运行其他容器

初始configuration

我的cloud-config.yml是这样的：

 #cloud-config coreos: units: - name: etcd2.service command: start - name: fleet.service command: start - name: docker.service command: start drop-ins: - name: 50-insecure-registry.conf content: | [Service] Environment=DOCKER_OPTS='--insecure-registry="localhost:5000"' - name: private-docker-registry.service command: start runtime: true content: | [Unit] Description=Docker Private Registry After=docker.service Requires=docker.service Requires=network-online.target After=network-online.target [Service] ExecStartPre=/usr/bin/docker pull registry:latest ExecStart=/usr/bin/docker run --name private-docker-registry --privileged -e SETTINGS_FLAVOR=s3 -e AWS_BUCKET=bucket -e AWS_KEY=awskey -e AWS_SECRET=awssecret -e SEARCH_BACKEND=sqlalchemy -p 5000:5000 registry:latest - name: myservice.service command: start runtime: true content: | [Unit] Description=My Service After=private-docker-registry.service Requires=private-docker-registry.service Requires=network-online.target After=network-online.target [Service] ExecStartPre=/usr/bin/docker pull localhost:5000/myservice:latest ExecStart=/usr/bin/docker run --name myservice localhost:5000/myservice:latest 

myservice.service失败

这里的问题是：

• 私人registry容器成功运行myservice.service失败

当我login到机器时，会显示以下消息。

 Failed Units: 1 myservice.service 

命令journalctl -u private-docker-registry.service显示：

 Jul 24 07:30:25 docker[830]: [2015-07-24 07:30:25 +0000] [1] [INFO] Listening at: http://0.0.0.0:5000 (1) 

命令journalctl -u myservice.service显示以下日志。

 Jul 24 07:30:25 systemd[1]: Starting My Service... Jul 24 07:30:25 docker[836]: time="2015-07-24T07:30:25Z" level=fatal msg="Error response from daemon: v1 ping attempt failed with error: Get http://localhost:5000/v1/_ping: dial tcp 127.0.0.1:5000: connection refused" Jul 24 07:30:25 systemd[1]: myservice.service: Control process exited, code=exited status=1 Jul 24 07:30:25 systemd[1]: Failed to start My Service. Jul 24 07:30:25 systemd[1]: myservice.service: Unit entered failed state. Jul 24 07:30:25 systemd[1]: myservice.service: Failed with result 'exit-code'. 

但是，我可以手动运行myservice容器（几分钟后）。

 docker run --name myservice localhost:5000/myservice:latest 

我的假设是：

• 拉myservice图像失败，因为myservice.service试图在私人registry开始侦听后立即拉myservice图像。

尝试＆错误

根据我上面的假设，我添加了wait-for-registry.service ，只是在私人registry启动后等待2分钟。

 #cloud-config coreos: units: - name: etcd2.service command: start - name: fleet.service command: start - name: docker.service command: start drop-ins: - name: 50-insecure-registry.conf content: | [Service] Environment=DOCKER_OPTS='--insecure-registry="localhost:5000"' - name: private-docker-registry.service command: start runtime: true content: | [Unit] Description=Docker Private Registry After=docker.service Requires=docker.service Requires=network-online.target After=network-online.target [Service] ExecStartPre=/usr/bin/docker pull registry:latest ExecStart=/usr/bin/docker run --name private-docker-registry --privileged -e SETTINGS_FLAVOR=s3 -e AWS_BUCKET=bucket -e AWS_KEY=awskey -e AWS_SECRET=awssecret -e SEARCH_BACKEND=sqlalchemy -p 5000:5000 registry:latest - name: wait-for-registry.service command: start runtime: true content: | [Unit] Description=Wait Until Private Registry is Ready After=private-docker-registry.service Requires=private-docker-registry.service [Service] ExecStart=/usr/bin/sleep 120 - name: myservice.service command: start runtime: true content: | [Unit] Description=My Service After=wait-for-registry.service After=private-docker-registry.service Requires=private-docker-registry.service Requires=network-online.target After=network-online.target [Service] ExecStartPre=/usr/bin/docker pull localhost:5000/myservice:latest ExecStart=/usr/bin/docker run --name myservice localhost:5000/myservice:latest 

但是这导致同样的问题。

命令journalctl -u private-docker-registry.service显示：

 Jul 24 08:23:38 docker[838]: [2015-07-24 08:23:38 +0000] [1] [INFO] Listening at: http://0.0.0.0:5000 (1) 

命令journalctl -u wait-for-registry.service显示：

 Jul 24 08:23:37 systemd[1]: Started Wait Until Private Registry is Ready. Jul 24 08:23:37 systemd[1]: Starting Wait Until Private Registry is Ready... 

命令journalctl -u myservice.service显示：

 Jul 24 08:23:37 systemd[1]: Starting My Service... Jul 24 08:23:37 docker[847]: time="2015-07-24T08:23:37Z" level=fatal msg="Error response from daemon: v1 ping attempt failed with error: Get http://localhost:5000/v1/_ping: dial tcp 127.0.0.1 Jul 24 08:23:37 systemd[1]: myservice.service: Control process exited, code=exited status=1 Jul 24 08:23:37 systemd[1]: Failed to start My Service. Jul 24 08:23:37 systemd[1]: myservice.service: Unit entered failed state. Jul 24 08:23:37 systemd[1]: myservice.service: Failed with result 'exit-code'. 

看来sleep不起作用。

题

我怎样才能让它等到私人registry可用？

任何提示或build议的欢迎！

谢谢：）

 - name: wait-for-registry.service command: start runtime: true content: | [Unit] Description=Wait Until Private Registry is Ready After=private-docker-registry.service Requires=private-docker-registry.service [Service] ExecStart=/usr/bin/sleep 120 RemainAfterExit=true Type=oneshot 

 ExecStart=/usr/bin/bash /opt/bin/waiter.sh 

 write_files: - path: /opt/bin/waiter.sh permissions: 0755 owner: root content: | #! /usr/bin/bash until curl -s http://127.0.0.1:5000/; do echo waiting waiter.sh; sleep 2; done 

• 将parameter passing给docker入口点

• Docker部署失败的Elastic Beanstalk
• 具有Docker和EBS卷的EC2，在初始化期间在容器内安装EBS卷
• AWS S3 Elastic Beanstalk Docker – / dev / fus：操作不允许
• jenkins部署到弹性beanstalk
• 在ec2-server上运行应用程序和在ec2-server的docker上运行应用程序有什么区别？
• 使用ALB的最佳实践
• 弹性beanstalk中的RDS ENVvariables
• AWS EC2 ELB Docker路由
• 如何将文件从主机装载到ECS上的Docker容器