search

qdm12 / dns

Docker DNS server on steroids to access DNS-over-TLS from Cloudflare, Google, Quad9, Quadrant or CleanBrowsing
https://hub.docker.com/r/qmcgaw/cloudflare-dns-server
MIT License
219 stars 37 forks source link

WARN cannot exchange over DoT connection #91

Closed ex0nuss closed 2 years ago

ex0nuss commented 2 years ago

Hi,

it's me again...

I have just seen in my log that two times this WARN has come up. Haven't found an issues to this.

backend-dnsSecured    | 2021/10/06 09:46:00 INFO DNS server listening on :53
backend-dnsSecured    | 2021/10/06 09:54:05 WARN cannot exchange over DoT connection: read tcp 172.22.0.2:44012->1.0.0.1:853: i/o timeout
backend-dnsSecured    | 2021/10/06 09:54:05 WARN cannot exchange over DoT connection: read tcp 172.22.0.2:60670->1.1.1.1:853: i/o timeout

Is this a problem and what does it mean? (I am using v2)

Thx in advance! Regards, Max

qdm12 commented 2 years ago

Hi there,

It's just the DoT connection times out, it happens from time to time. The server returns a ServFail (Server Failure) response code to the client (e.g. your OS), which will then retry the request. So nothing to worry about 😉

Now it's logged because if your logs are flooded with them constantly, it means the connectivity and/or upstream DNS server (e.g. cloudflare) are down.