Add support for HTTP proxy during deployment #1348
Comments
|
Yes, I think it's a good start. I was confusing this issue with another one about authenticated container registries. |
|
The step one to solving this was this commit: vexxhost/ansible-collection-containers@1480d52 The step two is documenting the necessary variable, in 99.9999% of the cases, it will be: http_proxy: "http://foobar:3128"
https_proxy: "http://foobar:3128"
no_proxy: "localhost,127.0.0.0/8,172.16.0.0/12,192.168.0.0/16,169.254.0.0/16,.svc,.cluster.local"With this, I believe that covers almost all scenarios unless you've got some wild stuff running your cluster on non private IP space WITH an HTTP proxy... |
|
Documented here and tested working. https://vexxhost.github.io/atmosphere/deploy/inventory.html#http-proxy |
When deploying in a airgapped networks that requires the use of a HTTP proxy, the deployment fails because various tools expect the proxy configuration to be defined differently (e.g. through
https_proxyenv vars or config files or parameters).Additionally, configuring containerd to always use a proxy creates other issues (like having to keep the
NO_PROXYenv var always updated whenever there are changes, which makes troubleshooting harder). The same situation happens when the target hosts are all locally configured to use a proxy.Atmosphere's use of
import_playbookalso causes some issues because it does not support defining environment variables to the imported playbooks so they don't reach the target hosts and the tools/modules end up trying to connect directly to the external network.The text was updated successfully, but these errors were encountered: