-
Notifications
You must be signed in to change notification settings - Fork 7.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add ServiceEntry but Could not resolve host #35992
Comments
do you enable DNS proxy? https://istio.io/latest/docs/ops/configuration/traffic-management/dns-proxy/ |
@kebe7jun yes, i add below istiooperator
|
check your nds info by:
and also check your dns proxy iptables rules exists :
|
@kebe7jun i run the first command in istiod pod, but failed, if there any wrong with my action? |
@kebe7jun the second command result as below
|
@kebe7jun the correct command maybe
|
istioctl ps can fetch all proxies(with proxyID)。 |
@kebe7jun Thanks, i got the result by
|
It seems that your proxies are not istio official proxies, the istiod did not send ServiceEntry's name table to proxy, which makes the dns proxy can not resolve ServiceEntry's hosts. |
@kebe7jun Thanks for your kindly reply, how can i get ServiceEntry's name table from istiod? if there any example |
Since you are not using the official istio version, we can't confirm the exact problem. You can try to debug the code in the name table generation part of istiod or try to upgrade the istio version to see if it can solve the problem. istio/pkg/dns/server/name_table.go Lines 40 to 51 in 8aea949
|
@kebe7jun Many thanks! |
🚧 This issue or pull request has been closed due to not having had activity from an Istio team member since 2021-11-11. If you feel this issue or pull request deserves attention, please reopen the issue. Please see this wiki page for more information. Thank you for your contributions. Created by the issue and PR lifecycle manager. |
Bug Description
1、add ServiceEntry as below
2、invoke nslookup, can't find the host
Version
Additional Information
bug-report.tar.gz
The text was updated successfully, but these errors were encountered: