[COREOS] NetworkManager在哪里获得DNS-Search域?
漏洞?
主机操作系统版本
CentOS8
目标操作系统版本
RHCOS-4.9.0-X86_64(VM)
环境
这是我的简单体系结构,我尝试在VM(10.10.12.20)上安装CoreOS,并且VM将服务器(DNSMASQ)视为名称服务器。
我将coreos-installer与点火文件一起设置了redhat coreos。
dnsmasq
dnsmasq.conf
interface=enp1s0
address=/.apps.blue.garagekr.com/10.10.12.12 #loadbalance
host-record=bastion.blue.garagekr.com,10.10.12.12
dhcp-option=3,10.10.12.1 # Gateway
dhcp-option=6,10.10.12.12 # Nameserver
dhcp-range=10.10.12.0,static
dhcp-authoritative
host-record=master2.blue.garagekr.com,10.10.12.20
#reverse
ptr-record=20.12.10.10.in-addr.arpa.,master2.blue.garagekr.com
...
coreos
在CoreOS安装步骤中,我使用NMTUI(仅设置IP,名称服务器,网关)设置网络,并使用了此命令:
sudo coreos-installer install --copy-network --ignition-url=http://10.10.12.12:8080/bootstrap.ign --insecure-ignition /dev/sda
问题
CoreOS安装毫无任何问题,但问题是 dns search 。 我没有写下任何DNS搜索的配置。 dns搜索域来自??
奇怪的是,CoreOS的NetworkManager在keyfile中没有DNS搜索选项(/etc/etc/networkManager/system-connections)。
[root@master2 /]# NetworkManager --print-config
# NetworkManager configuration: /etc/NetworkManager/NetworkManager.conf (lib: 10-disable-default-plugins.conf, 20-client-id-from-mac.conf) (etc: 20-keyfiles.conf, sdn.conf)
[main]
# rc-manager=symlink
# auth-polkit=true
# dhcp=internal
plugins=keyfile,ifcfg-rh
[keyfile]
path=/etc/NetworkManager/system-connections
[logging]
# backend=journal
# audit=false
[device]
match-device=interface-name:br-int;interface-name:br-local;interface-name:br-nexthop,interface-name:ovn-k8s-*,interface-name:k8s-*;interface-name:tun0;interface-name:br0;driver:veth
managed=0
[connection]
ipv4.dhcp-client-id=mac
# no-auto-default file "/var/lib/NetworkManager/no-auto-default.state"
[root@master2 /]# ls /etc/NetworkManager/system-connections/
'Wired connection 1.nmconnection'
[root@master2 /]# cat /etc/NetworkManager/system-connections/Wired\ connection\ 1.nmconnection
[connection]
id=Wired connection 1
uuid=4eace183-cd66-3e30-9391-06813f952009
type=ethernet
autoconnect-priority=-999
interface-name=enp1s0
permissions=
timestamp=1655879214
[ethernet]
mac-address-blacklist=
[ipv4]
address1=10.10.12.20/24,10.10.12.1
dns=10.10.12.12;
dns-search=
method=manual
[ipv6]
addr-gen-mode=stable-privacy
dns-search=
method=auto
[proxy]
dns-search是空的!
但是/etc/resolv.conf就是这样:
[root@master2 /]# cat /etc/resolv.conf
# Generated by NetworkManager
search blue.garagekr.com
nameserver 10.10.12.12
问题是:
- NetworkManager在哪里获得DNS-Search域? (来自点火?)
- 是否有任何方法可以删除DNS-SEREARCE? (在CoreOS安装步骤中)
谢谢!
Bug?
Host Operating System Version
CentOS8
Target Operating System Version
rhcos-4.9.0-x86_64 (VM)
Environment
This is simple architecture of mine, I tried to install coreos on vm(10.10.12.20) and that vm look at the server(dnsmasq) as nameserver.
I used coreos-installer with ignition file to set up RedHat CoreOS.
Dnsmasq
dnsmasq.conf
interface=enp1s0
address=/.apps.blue.garagekr.com/10.10.12.12 #loadbalance
host-record=bastion.blue.garagekr.com,10.10.12.12
dhcp-option=3,10.10.12.1 # Gateway
dhcp-option=6,10.10.12.12 # Nameserver
dhcp-range=10.10.12.0,static
dhcp-authoritative
host-record=master2.blue.garagekr.com,10.10.12.20
#reverse
ptr-record=20.12.10.10.in-addr.arpa.,master2.blue.garagekr.com
...
CoreOS
In CoreOS Installation Step, I set up network using nmtui (only setting ip, nameserver, gateway) and used this command:
sudo coreos-installer install --copy-network --ignition-url=http://10.10.12.12:8080/bootstrap.ign --insecure-ignition /dev/sda
Problem
CoreOS installation ended up without any issues, But the problem is DNS search.
I didn't write down any configuration of dns search.
where dns search domain came from??
oddly, NetworkManager of CoreOS doesn't have dns search option in keyfile(/etc/NetworkManager/system-connections) .
[root@master2 /]# NetworkManager --print-config
# NetworkManager configuration: /etc/NetworkManager/NetworkManager.conf (lib: 10-disable-default-plugins.conf, 20-client-id-from-mac.conf) (etc: 20-keyfiles.conf, sdn.conf)
[main]
# rc-manager=symlink
# auth-polkit=true
# dhcp=internal
plugins=keyfile,ifcfg-rh
[keyfile]
path=/etc/NetworkManager/system-connections
[logging]
# backend=journal
# audit=false
[device]
match-device=interface-name:br-int;interface-name:br-local;interface-name:br-nexthop,interface-name:ovn-k8s-*,interface-name:k8s-*;interface-name:tun0;interface-name:br0;driver:veth
managed=0
[connection]
ipv4.dhcp-client-id=mac
# no-auto-default file "/var/lib/NetworkManager/no-auto-default.state"
[root@master2 /]# ls /etc/NetworkManager/system-connections/
'Wired connection 1.nmconnection'
[root@master2 /]# cat /etc/NetworkManager/system-connections/Wired\ connection\ 1.nmconnection
[connection]
id=Wired connection 1
uuid=4eace183-cd66-3e30-9391-06813f952009
type=ethernet
autoconnect-priority=-999
interface-name=enp1s0
permissions=
timestamp=1655879214
[ethernet]
mac-address-blacklist=
[ipv4]
address1=10.10.12.20/24,10.10.12.1
dns=10.10.12.12;
dns-search=
method=manual
[ipv6]
addr-gen-mode=stable-privacy
dns-search=
method=auto
[proxy]
dns-search is empty!!
But the /etc/resolv.conf is like this:
[root@master2 /]# cat /etc/resolv.conf
# Generated by NetworkManager
search blue.garagekr.com
nameserver 10.10.12.12
Question is:
- Where does NetworkManager get dns-search domain? (from Ignition?)
- Is there any way to remove dns-search? (In the coreos installation step)
Thanks!
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
NMCLI连接修改Network_interfaceName ipv4.dns-search(searchDomainName-对于多个条目,您可以使用逗号)
nmcli connection modify Network_InterfaceName ipv4.dns-search (searchDomainname- for multiple entry you can use comma)