2018-12-14 09:41:51 +00:00
|
|
|
# k8s_external
|
|
|
|
|
|
|
|
|
|
## Name
|
|
|
|
|
|
2019-09-08 00:24:43 -07:00
|
|
|
*k8s_external* - resolves load balancer and external IPs from outside Kubernetes clusters.
|
2018-12-14 09:41:51 +00:00
|
|
|
|
|
|
|
|
## Description
|
|
|
|
|
|
|
|
|
|
This plugin allows an additional zone to resolve the external IP address(es) of a Kubernetes
|
|
|
|
|
service. This plugin is only useful if the *kubernetes* plugin is also loaded.
|
|
|
|
|
|
|
|
|
|
The plugin uses an external zone to resolve in-cluster IP addresses. It only handles queries for A,
|
2019-08-14 10:48:15 -07:00
|
|
|
AAAA and SRV records; all others result in NODATA responses. To make it a proper DNS zone, it handles
|
2018-12-14 09:41:51 +00:00
|
|
|
SOA and NS queries for the apex of the zone.
|
|
|
|
|
|
2019-08-14 10:48:15 -07:00
|
|
|
By default the apex of the zone will look like the following (assuming the zone used is `example.org`):
|
2018-12-14 09:41:51 +00:00
|
|
|
|
|
|
|
|
~~~ dns
|
|
|
|
|
example.org. 5 IN SOA ns1.dns.example.org. hostmaster.example.org. (
|
|
|
|
|
12345 ; serial
|
|
|
|
|
14400 ; refresh (4 hours)
|
|
|
|
|
3600 ; retry (1 hour)
|
|
|
|
|
604800 ; expire (1 week)
|
|
|
|
|
5 ; minimum (4 hours)
|
|
|
|
|
)
|
|
|
|
|
example.org 5 IN NS ns1.dns.example.org.
|
|
|
|
|
|
|
|
|
|
ns1.dns.example.org. 5 IN A ....
|
|
|
|
|
ns1.dns.example.org. 5 IN AAAA ....
|
|
|
|
|
~~~
|
|
|
|
|
|
2019-08-14 10:48:15 -07:00
|
|
|
Note that we use the `dns` subdomain for the records DNS needs (see the `apex` directive). Also
|
2018-12-14 09:41:51 +00:00
|
|
|
note the SOA's serial number is static. The IP addresses of the nameserver records are those of the
|
|
|
|
|
CoreDNS service.
|
|
|
|
|
|
2019-08-14 10:48:15 -07:00
|
|
|
The *k8s_external* plugin handles the subdomain `dns` and the apex of the zone itself; all other
|
2018-12-14 09:41:51 +00:00
|
|
|
queries are resolved to addresses in the cluster.
|
|
|
|
|
|
|
|
|
|
## Syntax
|
|
|
|
|
|
|
|
|
|
~~~
|
|
|
|
|
k8s_external [ZONE...]
|
|
|
|
|
~~~
|
|
|
|
|
|
|
|
|
|
* **ZONES** zones *k8s_external* should be authoritative for.
|
|
|
|
|
|
2019-08-14 10:48:15 -07:00
|
|
|
If you want to change the apex domain or use a different TTL for the returned records you can use
|
2018-12-14 09:41:51 +00:00
|
|
|
this extended syntax.
|
|
|
|
|
|
|
|
|
|
~~~
|
|
|
|
|
k8s_external [ZONE...] {
|
|
|
|
|
apex APEX
|
|
|
|
|
ttl TTL
|
|
|
|
|
}
|
|
|
|
|
~~~
|
|
|
|
|
|
2019-08-14 10:48:15 -07:00
|
|
|
* **APEX** is the name (DNS label) to use for the apex records; it defaults to `dns`.
|
2018-12-14 09:41:51 +00:00
|
|
|
* `ttl` allows you to set a custom **TTL** for responses. The default is 5 (seconds).
|
|
|
|
|
|
2020-01-31 12:37:24 +01:00
|
|
|
## Examples
|
2018-12-14 09:41:51 +00:00
|
|
|
|
2019-08-14 10:48:15 -07:00
|
|
|
Enable names under `example.org` to be resolved to in-cluster DNS addresses.
|
2018-12-14 09:41:51 +00:00
|
|
|
|
|
|
|
|
~~~
|
|
|
|
|
. {
|
|
|
|
|
kubernetes cluster.local
|
|
|
|
|
k8s_external example.org
|
|
|
|
|
}
|
|
|
|
|
~~~
|
|
|
|
|
|
2019-08-14 10:48:15 -07:00
|
|
|
With the Corefile above, the following Service will get an `A` record for `test.default.example.org` with the IP address `192.168.200.123`.
|
2019-06-27 21:02:08 +02:00
|
|
|
|
|
|
|
|
~~~
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
kind: Service
|
|
|
|
|
metadata:
|
|
|
|
|
name: test
|
|
|
|
|
namespace: default
|
|
|
|
|
spec:
|
|
|
|
|
clusterIP: None
|
|
|
|
|
externalIPs:
|
|
|
|
|
- 192.168.200.123
|
|
|
|
|
type: ClusterIP
|
|
|
|
|
~~~
|
|
|
|
|
|
|
|
|
|
|
2020-10-28 18:56:35 +01:00
|
|
|
# See Also
|
2018-12-14 09:41:51 +00:00
|
|
|
|
|
|
|
|
For some background see [resolve external IP address](https://github.com/kubernetes/dns/issues/242).
|
|
|
|
|
And [A records for services with Load Balancer IP](https://github.com/coredns/coredns/issues/1851).
|
|
|
|
|
|
|
|
|
|
# Bugs
|
|
|
|
|
|
|
|
|
|
PTR queries for the reverse zone is not supported.
|
