安装完docker，拉取镜像报错Unable to find image ‘hello-world:latest‘ ...

安装完docker后测试是否成功安装，拉取hello-world镜像进行测试
报以下错误

1. Unable to find image 'hello-world:latest' locally
2. docker: Error response from daemon: Get "https://registry-1.docker.io/v2/": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers).
3. See 'docker run --help'.

复制代码

  Unable to find image 'hello-world:latest' locally
docker: Error response from daemon: Get "https://registry-1.docker.io/v2/": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers).
See 'docker run --help'.
 
  刚开始以为是权限问题
  直接把daemon.json文件加权限 ，照旧报错
  [root@localhost docker]# chmod 777 daemon.json 
[root@localhost docker]# sudo systemctl daemon-reload
[root@localhost docker]# sudo systemctl restart docker
[root@localhost docker]# docker run hello-world
Unable to find image 'hello-world:latest' locally
docker: Error response from daemon: Get "https://registry-1.docker.io/v2/": dial tcp 108.160.166.137:443: i/o timeout (Client.Timeout exceeded while awaiting headers).
See 'docker run --help'.
 
  在网上搜了几种方法，基本都是镜像源的问题，我这里已经添加了阿里云的镜像源，照旧会报这个错误，尝试使用其他镜像源
   [root@localhost docker]# cat daemon.json 
{
    "registry-mirrors": [
        "https://do.nark.eu.org",
        "https://dc.j8.work",
        "https://docker.m.daocloud.io",
        "https://dockerproxy.com",
        "https://docker.mirrors.ustc.edu.cn",
        "https://docker.nju.edu.cn"
    ]
}
更改完镜像源后，重启docker进行重新拉取hello-world，发现照旧报错
  此时进行docker info进行查看，发现有个报错
  WARNING: bridge-nf-call-iptables is disabled
WARNING: bridge-nf-call-ip6tables is disabled
  于是进行解决这个报错

1. [root@localhost docker]# docker info
2. Client: Docker Engine - Community
3. Version:    26.1.4
4. Context:    default
5. Debug Mode: false
6. Plugins:
7.   buildx: Docker Buildx (Docker Inc.)
8.     Version:  v0.14.1
9.     Path:     /usr/libexec/docker/cli-plugins/docker-buildx
10.   compose: Docker Compose (Docker Inc.)
11.     Version:  v2.27.1
12.     Path:     /usr/libexec/docker/cli-plugins/docker-compose
14. Server:
15. Containers: 0
16.   Running: 0
17.   Paused: 0
18.   Stopped: 0
19. Images: 0
20. Server Version: 26.1.4
21. Storage Driver: overlay2
22.   Backing Filesystem: xfs
23.   Supports d_type: true
24.   Using metacopy: false
25.   Native Overlay Diff: true
26.   userxattr: false
27. Logging Driver: json-file
28. Cgroup Driver: cgroupfs
29. Cgroup Version: 1
30. Plugins:
31.   Volume: local
32.   Network: bridge host ipvlan macvlan null overlay
33.   Log: awslogs fluentd gcplogs gelf journald json-file local splunk syslog
34. Swarm: inactive
35. Runtimes: io.containerd.runc.v2 runc
36. Default Runtime: runc
37. Init Binary: docker-init
38. containerd version: d2d58213f83a351ca8f528a95fbd145f5654e957
39. runc version: v1.1.12-0-g51d5e94
40. init version: de40ad0
41. Security Options:
42.   seccomp
43.    Profile: builtin
44. Kernel Version: 3.10.0-693.el7.x86_64
45. Operating System: CentOS Linux 7 (Core)
46. OSType: linux
47. Architecture: x86_64
48. CPUs: 4
49. Total Memory: 7.781GiB
50. Name: localhost.localdomain
51. ID: ac6faaa2-00de-445a-b6e0-7fba22e5a500
52. Docker Root Dir: /var/lib/docker
53. Debug Mode: false
54. Experimental: false
55. Insecure Registries:
56.   127.0.0.0/8
57. Registry Mirrors:
58.   https://do.nark.eu.org/
59.   https://dc.j8.work/
60.   https://docker.m.daocloud.io/
61.   https://dockerproxy.com/
62.   https://docker.mirrors.ustc.edu.cn/
63.   https://docker.nju.edu.cn/
64. Live Restore Enabled: false
66. WARNING: bridge-nf-call-iptables is disabled
67. WARNING: bridge-nf-call-ip6tables is disabled

复制代码

做一下修改和配置来解决这个问题。
由于将linux体系作为路由或者VPN服务就必须要开启IP转发功能。当linux主机有多个网卡时一个网卡收到的信息是否能够通报给其他网卡，假如设置成1的话可以进行数据包转发，可以实现VxLAN等功能，不开启会导致docker摆设应用无法访问。
   1.开启包转发功能和修改内核参数
  br_netfilter模块用于将桥接流量转发至iptables链，br_netfilter内核参数则需要开启转发。
  执行以下命令：
  [root@localhost docker]# modprobe br_netfilter
  [root@localhost docker]# cat > /etc/sysctl.d/docker.conf <<EOF
> net.bridge.bridge-nf-call-ip6tables=1
> net.bridge.bridge-nf-call-iptables = 1
> net.ipv4.ip_forward = 1
> EOF
  重新加载使配置生效
[root@localhost docker]# sysctl -p /etc/sysctl.d/docker.conf
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1
net.ipv4.ip_forward = 1
  查看配置是否生效
[root@localhost docker]# lsmod | grep br_netfilter
br_netfilter           22209  0 
bridge                136173  1 br_netfilter
  
  当重启Docker后以上模块配置会失效，为确保下次重启后依然生效，可设置开机主动加载模块的脚本。
  首先，在/etc/目录下新建rc.sysinit文件，输入命令：vim /etc/rc.sysinit，然后再编辑器界面输入一下命令：
  [root@localhost docker]# vim /etc/rc.sysinit
  #!/bin/bash
for file in /etc/sysconfig/modules/*.modules ; do
[ -x $file ] && $file
done
  
  在/etc/sysconfig/modules/目录下新建文件br_netfilter.modules
[root@localhost docker]# cd /etc/sysconfig/modules/
[root@localhost modules]# ls
[root@localhost modules]# vim br_netfilter.modules
  modprobe be_netfilter
  给 br_netfilter.modules文件授权
[root@localhost modules]# chmod 755 /etc/sysconfig/modules/br_netfilter.modules 
[root@localhost modules]# systemctl restart docker
再次docker info 发现报错信息已经没了
  再次docker run hello-world进行拉取镜像，发现解决了
  

免责声明：如果侵犯了您的权益，请联系站长，我们会及时删除侵权内容，谢谢合作！更多信息从访问主页：qidao123.com:ToB企服之家，中国第一个企服评测及商务社交产业平台。