Comment by mmh0000

8 hours ago

That's not quite true, you just need to add the `insecure-registries`[1] option with a list of either IP (or ip ranges) or hostnames that you want to allow without TLS.

```/etc/docker/daemon.json

  {
    "insecure-registries": ["10.100.0.0/24", "registry.yourmom.example.com:5000"]
  }

```

[1] https://docs.docker.com/reference/cli/dockerd/#insecure-regi...

2 comments

mmh0000

Reply
tangotaylor  6 hours ago

Yes this is true. I should caveat that we distributed the tool among a team and we didn't want to ask them to all edit their daemon.json with an ever-expanding list of IP addresses.

  • fragmede  3 hours ago

    Could the tool you distributed update the daemon.json for your users so they don't have to change daemon.json manually?