Configure VCHs to Use Proxy Servers

If access to the Internet or to your private image registries requires the use of a proxy server, you must configure a virtual container host (VCH) to connect to the proxy server when you deploy it. The proxy is used only when pulling images, and not for any other purpose.

IMPORTANT: Configuring a VCH to use a proxy server does not configure proxy support on the containers that this VCH runs. Container developers must configure proxy servers on containers when they create them.

vic-machine Options
Example vic-machine Command

NOTE: You can add, reconfigure, or remove proxy servers after you have deployed a VCH by using the vic-machine configure --https-proxy and --http-proxy options. For information about adding, reconfiguring, or removing proxy servers, see Add, Configure, or Remove Proxy Servers in Configure Running Virtual Container Hosts.

`vic-machine` Options

You configure a VCH to use a proxy server by specifying either of the vic-machine create --https-proxy or --http-proxy options when you deploy the VCH.

`--https-proxy`

Short name: None

The address of the HTTPS proxy server through which the VCH accesses image registries when using HTTPS. Specify the address of the proxy server as either an FQDN or an IP address.

Usage:

--https-proxy https://proxy_server_address:port

`--http-proxy`

Short name: None

The address of the HTTP proxy server through which the VCH accesses image registries when using HTTP. Specify the address of the proxy server as either an FQDN or an IP address.

Usage:

--http-proxy http://proxy_server_address:port

Example `vic-machine` Command

If your network access is controlled by a proxy server, you must configure a VCH to connect to the proxy server when you deploy it, so that it can pull images from external sources.

This example deploys a VCH with the following configuration:

Specifies the target vCenter Server instance, the vCenter Server user name, password, datacenter and cluster, an image store, a port group for the bridge network, a name for the VCH, and the thumbprint of the vCenter Server certificate.
Secures connections to the Docker API with an automatically generated server certificate, without client certificate verification, by setting --no-tlsverify.
Configures the VCH to access the network via an HTTPS proxy server.

vic-machine-operating_system create
--target 'Administrator@vsphere.local':password@vcenter_server_address/dc1
--compute-resource cluster1
--image-store datastore1
--bridge-network vch1-bridge
--https-proxy https://proxy_server_address:port
--name vch1
--thumbprint certificate_thumbprint
--no-tlsverify

Proxy Servers

Configure VCHs to Use Proxy Servers

`vic-machine` Options

`--https-proxy`

`--http-proxy`

Example `vic-machine` Command

results matching ""

No results matching ""

Configure VCHs to Use Proxy Servers

vic-machine Options

--https-proxy

--http-proxy

Example vic-machine Command

results matching ""

No results matching ""

`vic-machine` Options

`--https-proxy`

`--http-proxy`

Example `vic-machine` Command