Description of problem: The current Ubuntu caching document describes only a setup that is completely disconnected form the Internet, with packages loaded via ISO into an Apt-Cacher-NG repository. The same setup should be able to proxy our Ubuntu repository in a more common configuration where the Apt-Cacher-NG node is located in the DMZ and the Ceph cluster can access it, but not the Internet directly. We want to expand the existing guide to support this use case. This is very important for 2.0 as we are obsoleting older Inktank tooling offering repository proxying in this release.
For reference, the existing KB article for apt-cacher-ng is https://access.redhat.com/articles/2148241
Hi Bara, I had a couple of observations on the gdoc mentioned in comment#6: 1. In the section ### Using the Caching Server step 1a For caching server connected to the Internet For a client to use the caching server, we need to setup a http proxy on the client or change the "sources.list" file or both. for ex: echo 'Acquire::http { Proxy "http://<caching-server>:3142"; };' > /etc/apt/apt.conf.d/02proxy and the entry in sources.list can be something like this: deb http://<caching-server>:3142/archive.ubuntu.com/ubuntu xenial main 2. Also when we download the ubuntu release files (*.asc) using the caching server, we need to add an entry in the /etc/apt-cacher-ng/acng.conf : PfilePattern: .*(\.deb|\.rpm|\.dsc|\.tar\.gz|\.diff\.gz|\.diff\.bz2|\.udeb|\.diff/.*\.gz|\.asc|\.iso|changelog|\copyright)$ Both the above mentioned points are for a repo based install using a caching server (non ISO) 3. In the section ### Using the Caching Server step 1b to install the dependent packages that are not present in the ceph ISO, the same method followed in points 1 and 2 should be followed. Let me know if you need any other info Thanks, Tejas
Hi Bara, To answer your question: 1. This step is when the caching server is able to connect to the Internet. >>Does the third method (substituting the "rhcs.download.redhat.com" line with the caching server URL work)? yes, let me take an example: Instead of: http://rhcs.download.redhat.com/ubuntu it would be: http://<caching-server>:3142/rhcs.download.redhat.com/ubuntu We are routing the request through the ng-server. >>I've added this step to the gdoc - what do you think? We need this when we are downloading the "*.asc" release file for our ubuntu repos. The apt-cacher-ng does not allow .asc files by default.
Hi Bara, the doc looks good. one change: 3) After downloading the Ubuntu release files (`*.asc`) by using the caching server, add the following entry to the `/etc/apt-cacher-ng/acng.conf` file: ~~~ PfilePattern: .*(\.deb|\.rpm|\.dsc|\.tar\.gz|\.diff\.gz|\.diff\.bz2|\.udeb|\.diff/.*\.gz|\.asc|\.iso|changelog|\copyright)$ ~~~ We need the entry in /etc/apt-cacher-ng/acng.conf TO download the .asc files. so basically we need to add the entry and restart the apt-cacher-ng service, and then download the release file. 'systemctl restart apt-cacher-ng' Sorry I forgot to mention the restart service part. Thanks, Tejas
Bara, we dont need the same step in : ## Setting Up a Caching Server Disconnected from the Internet {#without_internet} This looks good. Please move it back to QA. Thanks, Tejas
The doc looks good to me. Moving the bug to Verified. Thanks, Tejas
Thanks Bara. Would you move all the examples and references to Ceph 2.0 anytime ? Thanks, Tejas
Hi Bara, Sorry this came really late, but need one more change. need to change the Pfile pattern as: I have added .txt as its needed for the security file. PfilePattern: .*(\.deb|\.rpm|\.txt|\.dsc|\.tar\.gz|\.diff\.gz|\.diff\.bz2|\.udeb|\.diff/.*\.gz|\.asc|\.iso|changelog|\copyright)$ Thanks, Tejas
Thanks Bara :) Moving this to Verified