Unable to resolve private service

azaafoo · October 20, 2021, 10:32pm

I have the following setup:

nginx (docker, public service) handles rate limiting and caching
nodejs (docker, private service) handles actual service calls

I am trying to proxy_pass to the private service internal address.

In nginx the resolver is set to the nameserver ip listed in /etc/resolv.conf.

However the private service address cannot be resolved.

Oddly, in shell, curl is able to resolve the private address.
I installed dnsutils and dig is unable to resolve the private address.

Please advise

azaafoo · October 20, 2021, 11:26pm

On further investigation I notice that nslookup also correctly resolves the using the search domains listed under /etc/resolv.conf. Possibly dig and nginx are not using this information?

Anyway I was able to resolve the problem by parsing both nameserver and search out of /etc/resolv.conf such that I could construct the proper fqdn of the render private service.

TL;DR the private service name won’t work, it needs to be the full internal service fqdn. <service_name>.<search_domain>, then it will work. You can find the search domain with

cat /etc/resolv.conf | grep "search" | awk '{print $2}'

Topic		Replies	Views
Service namespace stable?	6	443	November 30, 2021
DNS not correctly resolving?	5	599	August 18, 2021
Trouble with migrating custom domains	2	173	April 19, 2023
HELP with a SSL certificate	4	1908	January 26, 2021
Custom domain settings	3	217	October 6, 2023

Unable to resolve private service

Related Topics