PTR records are created and served for non-cluster IPs

kubernetes / dns

Kubernetes DNS service

Apache License 2.0

930 stars 467 forks source link

PTR records are created and served for non-cluster IPs #125

Open thockin opened 7 years ago

thockin commented 7 years ago

apiVersion: v1
kind: Service
metadata:
  name: manual-1
spec:
  clusterIP: None
  ports:
  - port: 80

apiVersion: v1
kind: Endpoints
metadata:
  name: manual-1
subsets:
- addresses:
  - ip: 8.8.8.8
    hostname: foo
  ports:
  - port: 80

Reverse lookups for 8.8.8.8 now return foo.manual-1.default.svc.cluster.local.

We should probably never create reverse records except for service IPs and real pod IPs.

thockin commented 7 years ago

Related to #124

bowei commented 7 years ago

We can limit to check the ranges, but making it corresponds to a live pod will require watching all pods.

sadlil commented 7 years ago

@bowei https://github.com/kubernetes/dns/issues/124#issuecomment-321770570

fejta-bot commented 6 years ago

Issues go stale after 90d of inactivity. Mark the issue as fresh with /remove-lifecycle stale. Stale issues rot after an additional 30d of inactivity and eventually close.

Prevent issues from auto-closing with an /lifecycle frozen comment.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or @fejta. /lifecycle stale

thockin commented 6 years ago

/lifecycle frozen /remove-lifecycle stale