Skip to content

GitLab Next

    • GitLab: the DevOps platform
    • Explore GitLab
    • Install GitLab
    • How GitLab compares
    • Get started
    • GitLab docs
    • GitLab Learn
  • Pricing
  • Talk to an expert
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
    • Menu
    Projects Groups Snippets
  • Get a free trial
  • Sign up
  • Login
  • Sign in / Register
  • GitLab GitLab
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
    • Locked Files
  • Issues 43,021
    • Issues 43,021
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
    • Requirements
  • Merge requests 1,334
    • Merge requests 1,334
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
    • Test Cases
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Packages & Registries
    • Packages & Registries
    • Package Registry
    • Container Registry
    • Infrastructure Registry
  • Monitor
    • Monitor
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Code review
    • Insights
    • Issue
    • Repository
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • GitLab.org
  • GitLabGitLab
  • Issues
  • #25642
Closed
Open
Created Dec 07, 2018 by Joshua Lambert@joshlambertMaintainer

Product discovery for running Auto DevOps on air gapped networks

Problem to solve

Auto DevOps depends on internet access for quite a few stages. Some customers run GitLab on airgapped networks, and are therefore unable to use many of the stages.

Intended users

Developers

Further details

There are a few areas where we download things:

  1. We download the ADO helm chart on demand
  2. We download quite a few docker images on demand, and in some cases our docker images download other things inside of them
  3. We use apt to install packages. It's worth noting that apt also does not respect the proxy environment variables.
  4. ... and more.
  5. All the users we've interviewed (links in comments) confirmed that all the relevant elements in play (GitLab, k8s cluster, and artifact management tool) are part of the same network and can communicate with one another.

Proposal

  1. Research and document all the places where Auto DevOps depends on internet access
    1.1 Provide a list of dependencies (ideally per stage) along with current version
  2. Figure out best strategy and next steps to solve this problem
    2.1 Customers we've interviewed thus far are using Artifactory and Nexus SonarType to host dependencies internally

sectionsec moved their images to be defined in variables: https://gitlab.com/gitlab-org/gitlab/-/blob/master/lib/gitlab/ci/templates/Security/SAST.gitlab-ci.yml#L10 @stkerr might be able to provide more info.

What does success look like, and how can we measure that?

Links / references

Edited Nov 10, 2020 by Viktor Nagy (GitLab)
Assignee
Assign to
Time tracking