This documentation is for a release that is no longer maintained
See documentation for the latest supported version 3 or the latest supported version 4.Este conteúdo não está disponível no idioma selecionado.
Chapter 7. Disconnected installation
Frequently, portions of a data center might not have access to the Internet, even via proxy servers. You can still install OpenShift Container Platform in these environments, but you must download required software and images and make them available to the disconnected environment.
After the installation components are available to your node hosts, you install OpenShift Container Platform by following the standard installation steps.
After you install OpenShift Container Platform, you must make the S2I builder images that you pulled available to the cluster.
7.1. Prerequisites
- Review OpenShift Container Platform’s overall architecture and plan your environment topology.
- Obtain a Red Hat Enterprise Linux (RHEL) 7 server that you have root access to with access to the Internet and at least 110 GB of disk space. You download the required software repositories and container images to this computer.
- Plan to maintain a webserver within your disconnected environment to serve the mirrored repositories. You copy the repositories from the Internet-connected host to this webserver, either over the network or by using physical media in disconnected deployments.
- Provide a source control repository. After installation, your nodes must access source code in a source code repository, such as Git. - When building applications in OpenShift Container Platform, your build might contain external dependencies, such as a Maven Repository or Gem files for Ruby applications. 
- Provide a registry within the disconnected environment. Options include: - Installing a stand alone OpenShift Container Platform registry.
- Using a Red Hat Satellite 6.1 server that acts as a Docker registry.
 
7.2. Obtaining required software packages and images
Before you install OpenShift Container Platform in your disconnected environment, obtain the required images and components and store them in your repository.
You must obtain the required images and software components on a system with the same architecture as the cluster that is in your disconnected environment.
7.2.1. Obtaining OpenShift Container Platform packages
On the RHEL 7 server with an internet connection, sync the repositories:
- To ensure that the packages are not deleted after you sync the repository, import the GPG key: - rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-release - $ rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-release- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Register the server with the Red Hat Customer Portal. You must use the credentials that are associated with the account that has access to the OpenShift Container Platform subscriptions: - subscription-manager register - $ subscription-manager register- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Pull the latest subscription data from RHSM: - subscription-manager refresh - $ subscription-manager refresh- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Attach a subscription that provides OpenShift Container Platform channels. - Find an available subscription pool that provides the OpenShift Container Platform channels: - subscription-manager list --available --matches '*OpenShift*' - $ subscription-manager list --available --matches '*OpenShift*'- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Attach a pool ID for a subscription that provides OpenShift Container Platform: - subscription-manager attach --pool=<pool_id> subscription-manager repos --disable="*" - $ subscription-manager attach --pool=<pool_id> $ subscription-manager repos --disable="*"- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
 
- Enable only the repositories required by OpenShift Container Platform 3.10. - For cloud installations and on-premise installations on x86_64 servers, run the following command: - subscription-manager repos \ --enable="rhel-7-server-rpms" \ --enable="rhel-7-server-extras-rpms" \ --enable="rhel-7-server-ose-3.10-rpms" \ --enable="rhel-7-server-ansible-2.4-rpms"- # subscription-manager repos \ --enable="rhel-7-server-rpms" \ --enable="rhel-7-server-extras-rpms" \ --enable="rhel-7-server-ose-3.10-rpms" \ --enable="rhel-7-server-ansible-2.4-rpms"- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- For on-premise installations on IBM POWER8 servers, run the following command: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- For on-premise installations on IBM POWER9 servers, run the following command: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
 
- Install required packages: - sudo yum -y install yum-utils createrepo docker git - $ sudo yum -y install yum-utils createrepo docker git- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow - The - yum-utilspackage provides the reposync utility, which lets you mirror yum repositories, and you can use the- createrepopackage to create a usable- yumrepository from a directory.
- Make a directory to store the software in the server’s storage or to a USB drive or other external device: - mkdir -p </path/to/repos> - $ mkdir -p </path/to/repos>- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow Important- If you can re-connect this server to the disconnected LAN and use it as the repository server, store the files locally. If you cannot, use USB-connected storage so you can transport the software to a repository server in your disconnected LAN. 
- Sync the packages and create the repository for each of them. - For on-premise installations on x86_64 servers, run the following command: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- For on-premise installations on IBM POWER8 servers, run the following command: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- For on-premise installations on IBM POWER9 servers, run the following command: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
 
7.2.2. Obtaining images
Pull the required container images:
- Start the Docker daemon: - systemctl start docker - $ systemctl start docker- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Pull all of the required OpenShift Container Platform infrastructure component images. Replace - <tag>with the version to install. For example, specify- v3.10.181for the latest version. You can specify a different minor version.- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- For on-premise installations on x86_64 servers, pull the following image. Replace - <tag>with the version to install. For example, specify- v3.10.181for the latest version. You can specify a different minor version.- docker pull registry.access.redhat.com/openshift3/efs-provisioner:<tag> - $ docker pull registry.access.redhat.com/openshift3/efs-provisioner:<tag>- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Pull all of the required OpenShift Container Platform component images for the optional components. Replace - <tag>with the version to install. For example, specify- v3.10.181for the latest version. You can specify a different minor version.- For on-premise installations on x86_64 servers, run the following commands: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- For on-premise installations on IBM POWER8 or IBM POWER9 servers, run the following commands: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
 Important- For Red Hat support, a converged mode subscription is required for - rhgs3/images.Important- Prometheus on OpenShift Container Platform is a Technology Preview feature only. Technology Preview features are not supported with Red Hat production service level agreements (SLAs), might not be functionally complete, and Red Hat does not recommend to use them for production. These features provide early access to upcoming product features, enabling customers to test functionality and provide feedback during the development process. - For more information on Red Hat Technology Preview features support scope, see https://access.redhat.com/support/offerings/techpreview/. 
- Pull the Red Hat-certified Source-to-Image (S2I) builder images that you intend to use in your OpenShift Container Platform environment. - Make sure to indicate the correct tag by specifying the version number. See the S2I table in the OpenShift and Atomic Platform Tested Integrations page for details about image version compatibility. - You can pull the following images: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
7.2.3. Exporting images
If your environment does not have access to your internal network and requires physical media to transfer content, export the images to compressed files. If your host is connected to both the Internet and your internal networks, skip the following steps and continue to Prepare and populate the repository server.
- Create a directory to store your compressed images in and change to it: - mkdir </path/to/images> cd </path/to/images> - $ mkdir </path/to/images> $ cd </path/to/images>- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Export the OpenShift Container Platform infrastructure component images: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- If you synchronized images for optional components, export them: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Export the S2I builder images that you pulled. For example, if you synced only the Jenkins and Tomcat images: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Copy the compressed files from your Internet-connected host to your internal host.
- Load the images that you copied: - docker load -i ose3-images.tar docker load -i ose3-builder-images.tar docker load -i ose3-optional-images.tar - $ docker load -i ose3-images.tar $ docker load -i ose3-builder-images.tar $ docker load -i ose3-optional-images.tar- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
7.3. Prepare and populate the repository server
During the installation, and any future updates, you need a webserver to host the software. RHEL 7 can provide the Apache webserver.
- Prepare the webserver: - If you need to install a new webserver in your disconnected environment, install a new RHEL 7 system with at least 110 GB of space on your LAN. During RHEL installation, select the Basic Web Server option.
- If you are re-using the server where you downloaded the OpenShift Container Platform software and required images, install Apache on the server: - sudo yum install httpd - $ sudo yum install httpd- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
 
- Place the repository files into Apache’s root folder. - If you are re-using the server: - mv /path/to/repos /var/www/html/ chmod -R +r /var/www/html/repos restorecon -vR /var/www/html - $ mv /path/to/repos /var/www/html/ $ chmod -R +r /var/www/html/repos $ restorecon -vR /var/www/html- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- If you installed a new server, attach external storage and then copy the files: - cp -a /path/to/repos /var/www/html/ chmod -R +r /var/www/html/repos restorecon -vR /var/www/html - $ cp -a /path/to/repos /var/www/html/ $ chmod -R +r /var/www/html/repos $ restorecon -vR /var/www/html- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
 
- Add the firewall rules: - sudo firewall-cmd --permanent --add-service=http sudo firewall-cmd --reload - $ sudo firewall-cmd --permanent --add-service=http $ sudo firewall-cmd --reload- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Enable and start Apache for the changes to take effect: - systemctl enable httpd systemctl start httpd - $ systemctl enable httpd $ systemctl start httpd- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
7.4. Populate the registry
From within your disconnected environment, tag and push the images to your internal registry:
The following steps are a generic guide to loading the images into a registry. You might need to take more or different actions to load the images.
- Before you push the images into the registry, re-tag each image. - For images in the - openshift3repository, tag the image as both the major and minor version number. For example, to tag the OpenShift Container Platform node image:- docker tag registry.access.redhat.com/openshift3/ose-node:<tag> registry.example.com/openshift3/ose-node:<tag> docker tag registry.access.redhat.com/openshift3/ose-node:<tag> registry.example.com/openshift3/ose-node:{major-tag}- $ docker tag registry.access.redhat.com/openshift3/ose-node:<tag> registry.example.com/openshift3/ose-node:<tag> $ docker tag registry.access.redhat.com/openshift3/ose-node:<tag> registry.example.com/openshift3/ose-node:{major-tag}- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- For other images, tag the image with the exact version number. For example, to tag the etcd image: - docker tag registry.access.redhat.com/rhel7/etcd:3.2.22 registry.example.com/rhel7/etcd:3.2.22 - $ docker tag registry.access.redhat.com/rhel7/etcd:3.2.22 registry.example.com/rhel7/etcd:3.2.22- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
 
- Push each image into the registry. For example, to push the OpenShift Container Platform node images: - docker push registry.example.com/openshift3/ose-node:<tag> docker push registry.example.com/openshift3/ose-node:{major-tag}- $ docker push registry.example.com/openshift3/ose-node:<tag> $ docker push registry.example.com/openshift3/ose-node:{major-tag}- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
7.5. Preparing cluster hosts
Now that you have the installation files, prepare your hosts.
- Create the hosts for your OpenShift Container Platform cluster. It is recommended to use the latest version of RHEL 7 and to perform a minimal installation. Ensure that the hosts meet the system requirements.
- On each node host, create the repository definitions. Place the following text in the /etc/yum.repos.d/ose.repo file: - Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Finish preparing the hosts for installation. Follow the Preparing your hosts steps, omitting the steps in the Host Registration section.
7.6. Installing OpenShift Container Platform
After you prepare the software, images, and hosts, you use the standard installation method to install OpenShift Container Platform:
- Configure your inventory file to reference your internal registry: - oreg_url=registry.example.com/openshift3/ose-${component}:${version} openshift_examples_modify_imagestreams=true- oreg_url=registry.example.com/openshift3/ose-${component}:${version} openshift_examples_modify_imagestreams=true- Copy to Clipboard Copied! - Toggle word wrap Toggle overflow 
- Run the installation playbooks.