Mirror a Yum Repository on Oracle Linux
Introduction
The task of mirroring a yum repository holds multiple benefits. These include the following:
- Provide access to yum repositories for systems without access to a public network
- Improve software download times and reduce the bandwidth overhead of a large infrastructure
- Configure local network-based installation strategies
- Catering for a snapshot style update strategy where performing testing against a controlled software distribution environment
This tutorial shows how to mirror a yum repository for local, offline, or distributed systems access.
Objectives
In this lab, you'll learn how to:
- Prepare a system to host the repository mirror
- Install and configure a web server
- Download and create a local repository
- Configure a system to access the repository mirror
Prerequisites
- Two Oracle Linux systems, one for the server and the other as a client
- Storage with enough free space to contain the repository mirror
Setup the Local Yum Mirror Server
Note: When using the free lab environment, see Oracle Linux Lab Basics for connection and other usage instructions.
Open a terminal and connect via ssh to the ol-server instance, if not already connected.
ssh oracle@<ip_address_of_instance>Check the size of the repositories to mirror.
This command will provide guidance in estimating the free disk space requirements on the repository mirror server.
sudo dnf repoinfoThe output shows a listing of all the enabled repositories and the current space each repository consumes. Pass the repository name as a parameter to display only a single repository.
sudo dnf repoinfo ol8_baseos_latestExample Output:
[oracle@ol-server ~]$ sudo dnf repoinfo ol8_baseos_latest Last metadata expiration check: 0:00:59 ago on Wed Apr 12 13:33:45 2023. Repo-id : ol8_baseos_latest Repo-name : Oracle Linux 8 BaseOS Latest (x86_64) Repo-status : enabled Repo-revision : 1681227410 Repo-updated : Tue Apr 11 15:36:56 2023 Repo-pkgs : 16862 Repo-available-pkgs: 16856 Repo-size : 43 G Repo-baseurl : https://yum-eu-frankfurt-1.oracle.com/repo/OracleLinux/OL8/baseos/latest/x86_64/ Repo-expire : 172800 second(s) (last: Wed Apr 12 13:33:13 2023) Repo-filename : /etc/yum.repos.d/oracle-linux-ol8.repo Total packages: 16862The output shows this repository's current size with the value:
Repo-size: 43G. As repositories are dynamic and grow over time, allocate enough space on the mirror server for package storage.The free lab environment provides the mount point
/u01, which contains 50G of free space for storing these packages.Create the base directory for the local repositories.
sudo mkdir -p /u01/yumInstall the Yum-utils CLI compatibility package.
sudo dnf install -y yum-utilsThis package provides the necessary tools to create, configure, and manage a local repository.
Install the Apache HTTP server.
sudo dnf install -y httpdLink to the base directory for the local repositories.
sudo ln -s /u01/yum /var/www/html/yumChange the SELinux context of the base directory.
The free lab environment requires these steps as Oracle Linux defaults SELinux to enforcing mode.
sudo semanage fcontext -a -t httpd_sys_content_t "/u01/yum(/.*)?" sudo restorecon -RFv /u01/yumThe
httpd_sys_content_tallows read access but not write access to files labeled with this SELinux type by httpd.Enable the HTTP server to browse the base directory of the local repository.
Edit the HTTP server configuration file.
sudo sed -i "/^#ServerName www.example.com:80/a ServerName $(hostname -i):80" /etc/httpd/conf/httpd.confVerify the HTTP server configuration allows the following of symbolic links.
sudo cat /etc/httpd/conf/httpd.conf | grep "/var/www/html" -A20The output shows the
Options Indexes FollowSymLinksfor the mirror base directory location.Example Output:
[oracle@ol-server ~]$ sudo cat /etc/httpd/conf/httpd.conf | grep "/var/www/html" -A20 DocumentRoot "/var/www/html" # # Relax access to content within /var/www. # <Directory "/var/www"> AllowOverride None # Allow open access: Require all granted </Directory> # Further relax access to the default document root: <Directory "/var/www/html"> # # Possible values for the Options directive are "None", "All", # or any combination of: # Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews # # Note that "MultiViews" must be named *explicitly* --- "Options All" # doesn't give it to you. # # The Options directive is both complicated and important. Please see # http://httpd.apache.org/docs/2.4/mod/core.html#options # for more information. # Options Indexes FollowSymLinks # # AllowOverride controls what directives may be placed in .htaccess files. # It can be "All", "None", or any combination of the keywords: # Options FileInfo AuthConfig Limit # AllowOverride None
Start and enable the web server.
sudo systemctl enable --now httpdVerify the web server service is running.
sudo systemctl status httpdThe output shows the status as
active (running).Enable incoming HTTP connections through the firewall.
sudo firewall-cmd --permanent --add-service=http sudo firewall-cmd --reload
Sync Repositories to the Local Yum Mirror
Administrators can mirror any repository available on the Oracle Linux yum server, provided the definition exists in /etc/yum.repos.d on the mirror server. This ability includes repositories for mixed clients such as Oracle Linux 9 and Oracle Linux 7. For more details on configuring for hybrid clients, see the Oracle Linux documentation links at the end of this lab.
Mirror the designated repository to the base directory.
sudo dnf reposync --delete --download-metadata -p /u01/yum --repoid ol8_addonsNote: Running this command for the first time takes a while to complete. The selection of the
ol8_addonsrepository in this demo is solely to save time and space when running this lab.Leaving off the
--repoidoption mirrors all the mirror system's enabled repositories.Warning: Ensure enough free space exists on the mirror server if mirroring all the repositories.
See the upstream documentation for the additional options available to the DNF reposync plugin.
Administrators must repeat this command when syncing the latest packages from the Oracle Linux yum server. Automating this action is possible via scripting and using cron; however, that is outside the scope of this lab.
Configure Client Access to the Local Mirror
Clients require access to the local repository mirror to receive updates and errata fixes.
Open a terminal and connect via ssh to the ol-client instance, if not already connected.
ssh oracle@<ip_address_of_instance>Import the GPG key.
sudo wget https://yum.oracle.com/RPM-GPG-KEY-oracle-ol8 -O /etc/pki/rpm-gpg/RPM-GPG-KEY-ol8 sudo gpg --import --import-options show-only /etc/pki/rpm-gpg/RPM-GPG-KEY-ol8This GPG key is specific to Oracle Linux 8. See https://yum.oracle.com/faq.html#a10 for more information.
Disable existing repositories.
sudo dnf config-manager --disable ol8_addonsThis command disables the specific Oracle Linux yum server repository. This repository definition is in the
/etc/yum.repos.d/oracle-linux-ol8.repofile, along with several other available repositories. See the Oracle Linux documentation for details if disabling all the repositories and how to ignore them in any DNF operations.Create a local repository definition file.
Tip: To distinguish the local repositories from the public yum repositories, prefix the names of their entries with a string such as local_.
cat << EOF | sudo tee /etc/yum.repos.d/local-yum.repo > /dev/null [local_ol8_addons] name=Oracle Linux 8 Addons ($basearch) baseurl=http://ol-server/yum/ol8_addons gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-ol8 gpgcheck=1 enabled=1 EOF
Verify the Client Configuration.
Clear the yum metadata cache.
sudo dnf clean metadataGet a list of available repositories.
sudo dnf repolistNotice the
local_ol8_addonsin the list.List available packages in the repository.
sudo repoquery -a --repoid local_ol8_addons
Summary
The client's output displaying a list of the packages available on the local yum mirror shows the configuration and sync works.