-
Notifications
You must be signed in to change notification settings - Fork 531
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
DNS Issue #255
Comments
Have the same issue / # time ping -c 1 dev11
PING dev11 (10.1.100.11): 56 data bytes
64 bytes from 10.1.100.11: seq=0 ttl=63 time=0.211 ms
--- dev11 ping statistics ---
1 packets transmitted, 1 packets received, 0% packet loss
round-trip min/avg/max = 0.211/0.211/0.211 ms
real 0m 2.50s
user 0m 0.00s
sys 0m 0.00s |
Hi, With the latest version (3.5), I am experiencing below error.
Can anyone please help me in resolving it and moving forward Thanks |
The latter two comments don't sound like the same issue. This seems like a Kubernetes specific thing. Do you know if it happens to only Alpine containers or does it affect others as well? I've heard of intermittent DNS resolving issues in Kubernetes. But they were not specific to Alpine. |
We're seeing slow DNS resolution in alpine:3.4 (not in Kubernetes): $ time docker run --rm alpine:3.4 nslookup google.com
nslookup: can't resolve '(null)': Name does not resolve
Name: google.com
Address 1: 216.58.204.78 lhr25s13-in-f78.1e100.net
Address 2: 216.58.204.78 lhr25s13-in-f78.1e100.net
Address 3: 216.58.204.78 lhr25s13-in-f78.1e100.net
Address 4: 2a00:1450:4009:814::200e lhr25s13-in-x0e.1e100.net
real 0m2.996s
user 0m0.010s
sys 0m0.005s Versus Busybox: $ time docker run --rm busybox nslookup google.com
Server: 10.108.88.10
Address 1: 10.108.88.10
Name: google.com
Address 1: 2a00:1450:4009:814::200e lhr25s13-in-x0e.1e100.net
Address 2: 216.58.204.78 lhr25s13-in-f14.1e100.net
Address 3: 216.58.204.78 lhr25s13-in-f14.1e100.net
Address 4: 216.58.204.78 lhr25s13-in-f14.1e100.net
real 0m0.545s
user 0m0.011s
sys 0m0.007s Not sure what the Docker version 17.05.0-ce, build 89658be |
I have an issue with DNS resolving in alpine. Ubuntu docker image doesn't have this problem - it does only one request for each name suffix. So is it possible to fix this behaviour and make only 1 request to DNS server for each domain name suffix. This is important because kubernetes usually put 3 search suffixes. So if we have more than one our own search suffixes and we have DNS server that limits requests from single IP than most likely we get DNS resolution problem. |
yes ,latest alpine image has problem in DNS resolve ,all my app image build on alpine have same problem on kubernetes v1.7.0
|
During my investigations I've found that I have a problem with my DNS server. |
testing this without alpine because alpine bug might be causing issue where redis does not resolve new ip address: gliderlabs/docker-alpine#255 * also pin to 4.0
testing this without alpine because alpine bug might be causing issue where redis does not resolve new ip address: gliderlabs/docker-alpine#255 * also pin to 4.0
testing this without alpine because alpine bug might be causing issue where redis does not resolve new ip address: gliderlabs/docker-alpine#255 * also pin to 4.0
I tried on alpine-docker 3.7, with /etc/resolv.conf as follow:
My DNS server "10.254.0.100" manage its own domain 'localdomain' while forward query of other domain to some external dns server.
I also try centos/ubuntu docker image, those dns client would giveup those "Refused/Servfail" response and keep next trial of "google.com" and got an expected response. Is it the secure/expect reaction to retry same dns after receiving "Refused/Servfail" response or it is a bug in alpine. |
We got probably the same issue. Two different containers running in the same cluster in parallel:
|
For the DNS delay try to add the line: |
I don't think musl (which is used by Alpine) has the |
I tried following changes, it seems work. (Tried on my cluster and push to davidzqwang/alpine-dns:3.7)
|
I have tested 3.6, 3.7 and edge and all are affected by https://bugs.busybox.net/show_bug.cgi?id=675. |
fetch http://mirror.ps.kz/alpine/v3.8/main/x86_64/APKINDEX.tar.gz Getting above error. How to fix it |
Hi, We're running a couple of Docker container on AWS EC2, the images based on Alpine3.7.
Another test by curl cmd:
Which is interesting if we put
There's a workaround proposed here: #313 (comment) Is there any soonish release to fix that? |
FYI @brb has found some kernel race conditions which relate to this symptom. See https://www.weave.works/blog/racy-conntrack-and-dns-lookup-timeouts for technical details |
I found if i install bind-tools it will all be ok |
@zhouqiang-cl EDIT: |
I have converted a few images to Debian Jessie/Stretch slim and my DNS issues went away. Kubernetes 1.9.7 using kops in AWS. This has been bothering us for a long while. |
I too am seeing issues with MUSL DNS failure on a bare-metal Kubernetes cluster. The hosts in the cluster are all Ubuntu 18.04 machines using |
@zhouqiang-cl @sebastianfuss installing |
Switches away from the unofficial Alpine+php image to the official php-apache image. This has 2 advantages: 1. Official image is guaranteed to have regular updates etc 2. The persistent Docker Alpine DNS Issue goes away; gliderlabs/docker-alpine#255
* Switch Docker Image to official php base image Switch from the unofficial Alpine+php image to the official php-apache image. This has 2 advantages: 1. Official image is guaranteed to have regular updates, etc 2. The persistent Docker Alpine DNS Issue goes away; gliderlabs/docker-alpine#255 * [Docker] Ignore more files from Docker Image
Are there any updates on this issue? |
) * Switch Docker Image to official php base image Switch from the unofficial Alpine+php image to the official php-apache image. This has 2 advantages: 1. Official image is guaranteed to have regular updates, etc 2. The persistent Docker Alpine DNS Issue goes away; gliderlabs/docker-alpine#255 * [Docker] Ignore more files from Docker Image
Maybe related to the DNSSEC/NODATA problem of Cloudflare: |
Is this resolved by the musl upgrade in https://www.alpinelinux.org/posts/Alpine-3.18.0-released.html ? |
Hi,
We are running alpine (3.4) in a docker container over a Kubernetes cluster (GCP).
We have been seeing some anomalies where our thread is stuck for 2.5 sec.
After some research using strace we saw that DNS resolving gets timed-out once in a while.
Here are some examples:
And a good example:
In the past we already had some issues with DNS resolving in older an version(3.3), which have been resolved since we moved to 3.4 (or so we thought).
Is this a known issue?
Does anybody have a solution / workaround / suggestion what to do?
Thanks a lot.
The text was updated successfully, but these errors were encountered: