coredns / coredns.io Goto Github PK

The button type could do with slightly more rounded corners to match our logo

Would also be nice to have an index in/after the manual, with links back to where we explain terms. I.e. "Server Block" points to configuration.

Of course this should be done automatically some how.

Notice from Netlify

After November 15, 2022, builds for this site will fail unless you update the build image.

Now that we have a logo and are in cnfc we should redesign the wesite and add docs etc. etc.

Pref. this would still be hugo generated (and static). We should sketch out some ideas.

What would you like to be added:

1、add docs about how to use coredns docker image，like

docker run -d --name coredns \
  --restart=always \
  -v /etc/coredns/:/etc/coredns/ \
  -p 192.168.72.15:53:53/udp \
  coredns/coredns:1.9.1 -conf /etc/coredns/Corefile

It took me a lot of time to find that i must use -conf /etc/coredns/Corefile , because coredns never report errors .

2、add docs about how to install with go binary，like

wget https://github.com/coredns/coredns/releases/download/v1.9.1/coredns_1.9.1_linux_amd64.tgz
tar -zxvf coredns_1.9.1_linux_amd64.tgz
mv coredns /usr/local/bin

cat >/etc/systemd/system/coredns.service<<EOF
[Unit]
Description=CoreDNS DNS server
Documentation=https://coredns.io
After=network.target
 
[Service]
PermissionsStartOnly=true
LimitNOFILE=1048576
LimitNPROC=512
CapabilityBoundingSet=CAP_NET_BIND_SERVICE
AmbientCapabilities=CAP_NET_BIND_SERVICE
NoNewPrivileges=true
User=coredns
WorkingDirectory=~
ExecStart=/usr/local/bin/coredns -conf=/etc/coredns/Corefile
ExecReload=/bin/kill -SIGUSR1
Restart=on-failure
 
[Install]
WantedBy=multi-user.target
EOF

Why is this needed:

official not say how to install :https://coredns.io/manual/toc/#installation

it not eays for a novice to use coredns as a local dns server.

What happened:

In preparation for adding my own plugin as described in https://coredns.io/2017/07/25/compile-time-enabling-or-disabling-plugins/#build-with-external-golang-source-code I build coredns from an external repo (see code below). There's no Corefile in the directory.

❯ go run main.go
no action found for directive 'log' with server type 'dns' (missing a plugin?)
exit status 1

What you expected to happen:

I expected coredns to start.

How to reproduce it (as minimally and precisely as possible):

package main

import (
	"github.com/coredns/coredns/coremain"
)

func main() {
	coremain.Run()
}

Using coredns v1.9.0.

Anything else we need to know?:

Environment:

• the version of CoreDNS: v1.9.0
• Corefile: n/a
• logs, if applicable: see above
• OS (e.g: cat /etc/os-release): OSX (m1 mbp)
• Others:

We should regularly pull the master branch using Caddy git plugin. This saves me from running git pl; make every so often.

We also have users! Not as many of prom, but enough to be bragging. We should put up a similar thing on on the homepage as prom.

Some of our users include:
whole bunch of logos

I've tried following these instructions: https://github.com/coredns/coredns.io/blob/master/content/manual/setups.md#recursive-resolver

In Fedora 30, I:

• installed unbound-devel
• tried using: go generate; make

The output is:

[renich@introdesk coredns]$ make
** presubmit/context
** presubmit/filename-hyphen
** presubmit/import-testing
** presubmit/test-lowercase
** presubmit/trailing-whitespace
CGO_ENABLED=0  go build -v -ldflags="-s -w -X github.com/coredns/coredns/coremain.GitCommit=1820c71f-dirty" -o coredns
github.com/miekg/unbound
# github.com/miekg/unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/dns.go:12:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/dns.go:16:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/dns.go:20:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/lookup.go:14:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/lookup.go:33:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/lookup.go:41:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/lookup.go:55:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/lookup.go:84:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/lookup.go:97:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/lookup.go:116:10: undefined: Unbound
../../Projects/go/pkg/mod/github.com/miekg/[email protected]/lookup.go:116:10: too many errors
make: *** [Makefile:17: coredns] Error 2

But, if I try:

go generate
go build

It works:

[renich@introdesk coredns]$ go generate
[renich@introdesk coredns]$ go build
[renich@introdesk coredns]$ ./coredns -plugins
Server types:
  dns

Caddyfile loaders:
  flag
  default

Other plugins:
  dns.acl
  dns.any
  dns.auto
  dns.autopath
  dns.azure
  dns.bind
  dns.cache
  dns.cancel
  dns.chaos
  dns.clouddns
  dns.debug
  dns.dnssec
  dns.dnstap
  dns.erratic
  dns.errors
  dns.etcd
  dns.federation
  dns.file
  dns.forward
  dns.grpc
  dns.health
  dns.hosts
  dns.k8s_external
  dns.kubernetes
  dns.loadbalance
  dns.log
  dns.loop
  dns.metadata
  dns.nsid
  dns.pprof
  dns.prometheus
  dns.ready
  dns.reload
  dns.rewrite
  dns.root
  dns.route53
  dns.secondary
  dns.sign
  dns.template
  dns.tls
  dns.trace
  dns.unbound
  dns.whoami
  on

For the "CoreDNS manual" I would like to add some art work in CoreDNS' style. But we lack this currently. What I would seek is a bunch of shapes (box, "disc", "internet cloud", arrows) as svg (or whatever), so I can put something together in Gimp.

As an example we have: https://coredns.io/2017/06/08/how-queries-are-processed-in-coredns/
(one of the few posts with an image), but it could do with a touch of CoreDNS' styling.

We have multiple docs on how to add middleware, should probably merge them and create a giant new one.

On the start page of coredns.io it's said that version 1.8.7 from Dec 2021 is available for download however the latest version is 1.9.2.

Should write a short doc on out deprecation policy; when to make a backwards incompat change.

Rough consensus was after to minor release:
1.x: announce drop
1.x+1: make config a noop, but accept
1.x+2.0: remove config option

Howdy,

In the docs, it is stated:

Docker

We push every release as Docker images as well. You can find them in the public Docker hub for the CoreDNS organization.

Note that Docker images that are for architectures other than AMD64 don’t have any certificates installed. This means if you want to use CoreDNS on ARM and do things like DNS-over-TLS, you’ll need to create your own Docker image.

but this is not true. Using Dive on coredns/coredns@sha256:7eb40906c31a1610d9c1aeb5c818da5f68029f3e772ac226e2eac67965537017, the SHA256 on the latest AMR64 image, you can clearly see certs.

Freshly cloned via git clone https://github.com/coredns/coredns coredns but then get the following make error
$ make
go generate coredns.go
go: go.etcd.io/[email protected] requires
github.com/gorilla/[email protected]: invalid version: git fetch --unshallow -f origin in /home/xxx/go/pkg/mod/cache/vcs/05a135b68662fe5806007c4d2c004f5ee90580f7b16dd1746b7f9ea52f9ebe01: exit status 128:
fatal: git fetch-pack: expected shallow list
make: *** [core/plugin/zplugin.go] Error 1

The acl plugin link and page are not rendering:

https://coredns.io/plugins/

https://coredns.io/plugins/acl/

https://github.com/coredns/coredns.io/blob/master/content/manual/plugins.md#L9-12

1. If there are multiple Servers configured that listen on the queried port, it will check which one
   has the most specific zone for this query (longest suffix match). E.g. if there are two Servers,
   one for example.org and one for a.example.org, and the query is for www.b.example.org, it
   will be routed to the latter.

The query of www.b.example.org will be routed to the former.
I guess the query is for www.a.example.org .

It would be great to have the front page mention CNCF

See the Prometheus website as an example:
https://prometheus.io/

Following PR #135 which dates from 2019, the mention of the deprecated reverse plugin is still present in the documentation at the URL https://coredns.io/plugins/reverse/

This URL appears at the top of search results when searching for keywords coredns, reverse dns and provides misleading information.

Since this page is not present in the source code of this repository, why is it still accessible?

With the Netlify change, I was thinking about domain usage.

My opinionated suggestion follows:

short term

about.coredns.io <- main page served via netlify
coredns.io <- redirect to main page to keep all old links working + enable short urls useable for presentations etc.

long term (optional)

release(s).coredns.io
issue(s).coredns.io
pr(s).coredns.io
git.coredns.io
go.coredns.io

Thoughts?

I believe https://coredns.io/plugins/proxy/ should be taken down since it's been renamed to forward
It's not in coredns.io/content/plugins/ but somehow the website still serves this page.

Right now I just add external plugins, without any vetting. Maybe some vetting would be welcomed.
Not sure how to display this on the site though.

What would you like to be added:

A section of federation in https://coredns.io/explugins/

Why is this needed:

It should be found in the external plugins doc.

Please push latest changes to coredns.io, to reflect the recent 1.9.4 and CoreDNS 1.10.0 releases. Thanks!

While a useful plugin(file), it's not particularly nice to manage that kind of file manually. The hosts plugin works nicely for mapping an FQDN query to an IP, but lacks the ability to specify record types like MX or TXT?

The only other alternatives I've seen are sourcing from external software like Unbound, Redis, etc.

dnsmasq for example:

# Define the zone
auth-zone=example.com
# Set SOA record
auth-soa=12345678,admin.example.com
# Set A record
address=/www.example.com/10.2.3.4
# Set MX record
mx-host=example.com,www.example.com,10
# Set TXT record
txt-record=_acme-challenge.www.example.com,f0o...bar

Or with RFC 1035, MX records from zone file for using with mailgun can be(RFC 1035 - Section 5.1 Format rules to be aware of):

mg		IN MX	10 mxa.mailgun.org.
mg		IN MX	10 mxb.mailgun.org.
mg		IN TXT	"v=spf1 include:mailgun.org ~all"

Would there be a way to support such within the Corefile? (different record types, not the various formats supported by RFC 1035)

A plugin directive responding with record types? Currently hosts only supports A, AAAA, and PTR records. A similar plugin could probably extend that for handling other records? Or is this not something CoreDNS is suitable for and should be outsourced elsewhere as it seems to be encouraged?

I think the template plugin tries to show an example of doing this but it's rather verbose looking.

IMO, we don't need a separately authored/maintained manual.

If the project READMEs are lacking in areas, we should improve them there.
For example, I think we could expand/improve the main project readme with better documentation of the Corefile format.

If we want to have a separate manual "package", we should build out READMEs such that they can be compiled automatically into a portable manual ... But as a separately authored/manually maintained set of documents it creates a lot more busy work to author and maintain, essentially two sets of documentation.

This is the only occurrence, so I assume it's just a typo

This is just a tracking and coordination issue, once we decide to switch beta.coredns.io to either coredns.io or about.coredns.io.

Sidenote. Netlify can redirect all incoming requests form coredns.io to about.coredns.io including TLS, if that's something we want.

Let me know if/when/how/what.

It will probably be nice to have a trouble shooting section as well.

What happened:
hello, i was trying to read the release notes for the latest release on the website:
https://coredns.io/2020/06/15/coredns-1.7.0-release/
the page is not rendering correctly for me on Chrome.

screenshot1

screenshot2

What you expected to happen:
the page renders correctly.

How to reproduce it (as minimally and precisely as possible):
a colleague of mine said that they don't have the same issue.
(possibly a newer version of Chrome + Windows 10)

Anything else we need to know?:

• renders fine under Firefox.

if i "inspect" the page under Chrome and remove the usage of the "Lato" font the page renders correctly:

Environment:

• Windows 7 64bit
• Chrome 78.0.4050.0

Should say

"© 2017 The CoreDNS Authors | Documentation Distributed under CC BY 4.0
Copyright © 2017 The Linux Foundation®. All rights reserved. The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our Trademark Usage page: https://www.linuxfoundation.org/trademark-usage"

https://github.com/openshift/coredns-mdns is not included in https://coredns.io/manual/explugins/

Preface not sure if this is the correct repo to report a bug with the website.

When clicking the link for the source of the metrics plugin I get a 404 error on github. The link on the website is https://github.com/coredns/coredns/tree/master/plugin/prometheus when it should be https://github.com/coredns/coredns/tree/master/plugin/metrics.

Expected behavior:

clicking on the source link would take me to the source of the metrics plugin

What happened:

I was taken to a 404 page on github

Steps to reproduce:

1. Go to the metrics plugin documentation here
2. Click on the Source hyperlink (link is https://github.com/coredns/coredns/tree/master/plugin/prometheus)

I think the html template for the theme might be the issue as seen below

Is that the title of the page is prometheus so the link you to https://github.com/coredns/coredns/tree/master/plugin/prometheus instead of https://github.com/coredns/coredns/tree/master/plugin/metrics.

It might make sense use the base path for the source link as the cannonical source footer as seen here

The current docs follow released version, but it may be helpful to also list the current dev docs, i.e.

• coredns.io/middleware is latest released
• coredns.io/dev/middleware is master

No idea how to do this in hugo though.

There are quite a few empty sections on the manual document:

I don't think we've fully explained how gRPC works in CoreDNS. Probably qualifies for an article.

• last modified
• blog dates
  etc.

I wrote a golang library named https://github.com/elico/drbl-peer
and I was thinking about a way to integrate this library with coredns when it's in proxy mode.

The idea is that the library will first process the A/AAAA queries and will return a specific "blackhole" ip that will block access to specific sites based on public blacklists in real-time.

When initializing the kubernetes-cluster with kubeadm, the resource-request and -limit for coredns differs. That can cause to mem overcommitment and oom-killed pods in the cluster.

In my case:

syslog:

[...]
[Mon Jul 13 04:07:15 2020] Memory cgroup out of memory: Kill process 48615 (mongod) score 1954 or sacrifice child
[...]

kubectl describe node drei
[...]
  kube-system                   coredns-66bff467f8-fcx9g               100m (5%)     0 (0%)      70Mi (0%)        170Mi (1%)       57d
[...]
  memory             16518324992 (98%)  16623182592 (99%)

My proposal is to set the limits to the same size as the requests.

I was reading https://coredns.io/plugins/proxy/ but I found some typos, which are fixed over 24 days ago. I believe the changes have not been republished. Opening an issue to point this out, treat as low-priority.

Can core find SRV with DoT?

iNPUTmice/Conversations#3405

All anchor have have IDs, but you can easily link to them, because they don't show up as links.

After the site finish rendering, most of the content are missing.

RIght manual/ works, but lists some useless stuff. It should forward to /manual/toc. Maybe put a 302 in there or otherwise to it in the caddy config.

Reminds me that I should put the caddy config in this repo as well.

Hi community,

I am Jing Li, from the Apache APISIX community. Apache APISIX is a Cloud-native API gateway, and it is the top-level project of the Apache Software Foundation. You can get more details from GitHub: https://github.com/apache/apisix.

Apache APISIX has added CoreDNS as service discovery registery. I think it's a meaningful feature for both communities, as it enriches the surrounding ecology of CoreDNS and APISIX.

Rencently, we are writing a blog for this feature to explain in detail how to use it. It will be a nice guide for our developers. In addition, it will help Apache APISIX and CoreDNS publicize and let more developers and companies know about them. So I am wondering if I could post this blog on the CoreDNS's blog website when it's finalized.

Looking forward to your reply~

https://coredns.io/manual/toc/#forwarding says:

We currently have two plugins that allow for this, proxy and forward.

I read both https://coredns.io/plugins/forward/ and https://coredns.io/plugins/forward/ and the difference is still unclear to me. Their specs look almost identical.

I think the best way to help users decide would be:

• in each plugin doc, refer to the other one and tell the difference
• in /manual/toc/#forwarding , explain the difference

Unfortunately I cannot contribute to this as I am still trying to figure out the answer myself.

What happened:
Container can't append search names from resolv.conf file for looked service in high load.Instead it sends the naked hostname as a questions to core-dns.

What you expected to happen:
For example , if I want to look for 'ms-hostname' service, I want it to send question like 'ms-hostname.default.svc.cluster.local.But instead in 100 requests, one of the requests is sent like 'ms-hostname'

Environment:

Kubernetes version (use kubectl version):
1.14

Cloud provider or hardware configuration:
AWS EKS

OS (e.g: cat /etc/os-release):
PRETTY_NAME="Debian GNU/Linux 9 (stretch)"
NAME="Debian GNU/Linux"
VERSION_ID="9"
VERSION="9 (stretch)"
VERSION_CODENAME=stretch
ID=debian
HOME_URL="https://www.debian.org/"
SUPPORT_URL="https://www.debian.org/support"
BUG_REPORT_URL="https://bugs.debian.org/"

Kernel (e.g. uname -a):
Linux frankfurt-ms-users-1-v1-d594c7bd7-gcwx4 4.14.154-128.181.amzn2.x86_64 #1 SMP Sat Nov 16 21:49:00 UTC 2019 x86_64 GNU/Linux

Network plugin and version (if this is a network-related bug):
config map :

Name: coredns
Namespace: kube-system
Labels: eks.amazonaws.com/component=coredns
k8s-app=kube-dns
Annotations: kubectl.kubernetes.io/last-applied-configuration:
{"apiVersion":"v1","data":{"Corefile":".:53 {\n errors\n health\n kubernetes cluster.local in-addr.arpa ip6.arpa {\n pods in...

Data
Corefile:
.:53 {
errors
health
kubernetes cluster.local in-addr.arpa ip6.arpa {
pods insecure
upstream
fallthrough in-addr.arpa ip6.arpa
}
prometheus :9153
proxy . /etc/resolv.conf
cache 30
}