Accessing container images from an air-gapped environment
An air-gapped environment is a security measure for your system. You can access container images from an environment that is disconnected or physically isolated from unsecured networks such as the public internet. Such environments are called air-gapped environments.
Perform the following steps to access container images from an air-gapped environment:
- Create and configure a local Harbor registry in your network.
- Create and configure a Harbor registry in a demilitarized zone (DMZ).
- Set up a proxy to enable communication between the local Harbor registry in your network and the Harbor registry in a DMZ.
- Synchronize your local Harbor repository in your network with the containers.bmc.com Docker Trusted Registry (DTR).
- Synchronize your Harbor repository in a DMZ with your local Harbor repository in your network by performing the following steps:
- In the Harbor admin UI, navigate to the Administration menu, and click Replications.
Click NEW REPLICATION RULE and specify the values for the following fields:
The [confluence_table-plus] macro is a standalone macro and it cannot be used inline. Click on this message for details.
The following image shows an example replication rule:
- Click Save.
- To run the rule manually, click REPLICATE.
- After rule execution is complete, navigate to Projects, and verify that the container images are synchronized.
- Create replication rules for the following source resources:
- bmc/lpcs5
- bmc/lpdbt
- bmc/lpt5c
For information about creating replication rules, see the To synchronize your Harbor repository with BMC Docker Trusted Repository section in Setting-up-a-Harbor-repository.