ManageIQ docker容器不能与Web浏览器连接

时间:2017-01-30 10:10:07

标签: https hawkular manageiq

我尝试将manageiq监控测试为hawkular。我使用以下命令创建了manageiq docker容器

docker pull manageiq/manageiq:euwe-1
docker run --privileged -d -p 8443:443 manageiq/manageiq:euwe-1

我可以看到生成并运行容器。但是,我无法使用此网址https://127.0.0.1:8443通过我的网络浏览器连接到ManageIQ。在manageiq docker container里面的日志文件中显示如下错误,

[ssl:warn] [pid 815] AH01909: RSA certificate configured for 172.17.0.2:443 does NOT include an ID which matches the server name
[ssl:warn] [pid 815] AH01909: RSA certificate configured for 172.17.0.2:443 does NOT include an ID which matches the server name
[proxy:error] [pid 816] (111)Connection refused: AH00957: HTTP: attempt to connect to 0.0.0.0:3000 (0.0.0.0) failed
[proxy:error] [pid 816] AH00959: ap_proxy_connect_backend disabling worker for (0.0.0.0) for 60s
[proxy_http:error] [pid 816] [client 172.17.0.1:39140] AH01114: HTTP: failed to make connection to backend: 0.0.0.0
[proxy:error] [pid 819] (111)Connection refused: AH00957: HTTP: attempt to connect to 0.0.0.0:3000 (0.0.0.0) failed
[proxy:error] [pid 819] AH00959: ap_proxy_connect_backend disabling worker for (0.0.0.0) for 60s
[proxy_http:error] [pid 819] [client 172.17.0.1:39146] AH01114: HTTP: failed to make connection to backend: 0.0.0.0, referer: https://localhost:8443/

2 个答案:

答案 0 :(得分:1)

我解决了。原因是docker容器上未设置https连接。这是一个过程,

  1. 输入容器
    2.   

    docker exec -ti CONTAINER_ID bash -l <​​/ p>

    2.在容器中,找到server.crt和server.key文件

      

    [root @ 17a6a6bd8743 vmdb]#find / -name server.crt

         

    /opt/manageiq/manageiq-ui-service/node_modules/browser-sync/lib/server/certs/server.crt

         

    [root @ 17a6a6bd8743 vmdb]#find / -name server.key

         

    /opt/manageiq/manageiq-ui-service/node_modules/browser-sync/lib/server/certs/server.key

    1. 然后编辑/etc/httpd/conf.d/ssl.conf文件,如下所示
      2.   

      [root @ 17a6a6bd8743 vmdb] #vi /etc/httpd/conf.d/ssl.conf

           

      ServerName localhost:8443 #specified服务器名称

           

      SSLProtocol -All + TLSv1 + TLSv1.1 + TLSv1.2#type ssl protocol

           

      SSLCertificateFile /opt/manageiq/manageiq-ui-service/node_modules/browser-sync/lib/server/certs/server.crt#输入server.crt的位置文件夹

           

      SSLCertificateKeyFile /opt/manageiq/manageiq-ui-service/node_modules/browser-sync/lib/server/certs/server.key#输入server.key的位置文件夹

      1. 设置httpd允许https
        2.   

        [root @ 17a6a6bd8743 vmdb] #systemctl restart httpd

             

        [root @ 17a6a6bd8743 vmdb] #yum install firewalld -y

             

        [root @ 17a6a6bd8743 vmdb] #systemctl start firewalld

             

        [root @ 17a6a6bd8743 vmdb] #systemctl enable firewalld

             

        [root @ 17a6a6bd8743 vmdb]#firewall-cmd --add-service = https --permanent

             

        成功

             

        [root @ 17a6a6bd8743 vmdb]#firewall-cmd --reload

             

        成功

        OK!配置设置完美。连接https://localhost:8443 并享受!!

答案 1 :(得分:0)

我被告知在配置内部修改docker容器是不合适的,并且必须在docker容器之外配置docker网络。所以这是我的决议。

  1. Windows 10:此网站是用韩文写的。我希望你能找到并阅读英文网站。 ^ _ ^

    2. https://support.microsoft.com/ko-kr/help/3151631/rc4-cipher-is-no-longer-supported-in-internet-explorer-11-or-microsoft-edge

    1. CentOS 7,Firefox网络浏览器

      2. “环境配置”=&gt; “安全”=&gt; “例外列表”按钮 =&GT;添加“https://localhost:8443/”网址

      最后使用reference site

      检查此问题
相关问题
最新问题