How to use CoreDNS w/ etcd backend

README.md

Setup CoreDNS w/ etcd backend

Why CoreDNS

[CoreDNS][coredns] was designed from the ground up to provide robust, plugin-based DNS server for use in cloud environments. Namely, it serves as the default primary service discovery mechanism for Kubernetes.

Using CoreDNS allows us to have a lightweight DNS server on RockNSM (11 Mb binary is all that's needed!) to facilitate multi-node service discovery. Alternatively, if another existing DNS service is available, this can be used instead. Aligning with the way the Kubernetes manages service discovery also allows us to build new RockNSM features in parallel with the coming Kubernetes support.

RockNSM Application

Once the service is available, the goal is to dynamically update the backend of CoreDNS with the SRV records for the infrastructure services needed within RockNSM.

The CoreDNS backend we will use for this is etcd. etcd is a key-value store developed by CoreOS (no relation to CoreDNS) to provide a highly reliable cluster datastore.

Ansible has an etcd3 module that will allow us to programmatically set these records. CoreDNS will dynamically be able to serve DNS with these updated values.

Manual Setup

Follow the accompanying script file to get a basic DNS service running. [coredns]: https://coredns.io

manual_coredns-etcd_setup.sh

ETCD_VERSION=3.3.11
COREDNS_VERSION=1.3.1
HostIP=$(ip route get 1.1.1.1 | awk 'NR==1 { print $7 }')

## Start the etcd backend
### NOTE: Added 0.0.0.0 to advertised client urls to allow direct container communication
podman pull quay.io/coreos/etcd:v${ETCD_VERSION}
podman run -d \
  -v /etc/pki/tls/certs/:/etc/ssl/certs \
  -p 4001:4001 -p 2380:2380 -p 2379:2379 \
  --name etcd \
  quay.io/coreos/etcd:v${ETCD_VERSION} etcd \
    -name etcd0 \
    -advertise-client-urls http://${HostIP}:2379,http://${HostIP}:4001,http://0.0.0.0:2379,http://0.0.0.0:4001 \
    -listen-client-urls http://0.0.0.0:2379,http://0.0.0.0:4001 \
    -initial-advertise-peer-urls http://${HostIP}:2380  \
    -listen-peer-urls http://0.0.0.0:2380 \
    -initial-cluster-token etcd-cluster-1 \
    -initial-cluster etcd0=http://${HostIP}:2380 \
    -initial-cluster-state new

etcd_ip=$(podman inspect etcd | jq -r '.[].NetworkSettings.IPAddress')

## Start CoreDNS
### Drop Corefile
mkdir -p /etc/coredns
cat << 'EOF' > /etc/coredns/Corefile
. {
    etcd rocknsm.lan 192.168.73.0/24 {
        stubzones
        path /skydns
        endpoint http://{$ETCD_IP}:4001
        upstream /etc/resolv.conf
    }
    cache 160 skydns.local
    proxy . /etc/resolv.conf
    log
}
EOF

### Pull and run container with above config
podman pull docker.io/coredns/coredns:${COREDNS_VERSION}
podman run -d \
  --name coredns \
  -v /etc/coredns:/data:ro \
  --env ETCD_IP=${HostIP} \
  --publish 53:53/udp \
  docker.io/coredns/coredns:${COREDNS_VERSION} -conf /data/Corefile

## Create some test data
### Add Forward entries
podman exec -ti --env=ETCDCTL_API=3  etcd /usr/local/bin/etcdctl \
  put /skydns/lan/rocknsm/ "{\"host\":\"${HostIP}\",\"ttl\":60}"

### Reverse entries
podman exec -ti --env=ETCDCTL_API=3  etcd /usr/local/bin/etcdctl \
  put /skydns/arpa/in-addr/$(echo $HostIP | tr '.' '/') '{"host": "rocknsm.lan"}'

### Check resolution
dig +short rocknsm.lan @localhost
dig +short -x ${HostIP} @localhost

I executed your scripts, but 'dig' command got no response. It seems not successfull...

I renamed the container name to coredns_2 but still I get error saying
7e8edeee9a1e73cdd4a1209eaa12aee15933456c7b6c0eb7d6758c8e1a078d0a
Error: error creating container storage: the container name "coredns_2" is already in use by "38584e09ae10c642c5839c1a152277c7b3216df22ed847527e3af4a71a5be402". You have to remove that container to be able to reuse that name.: that name is already in use
Error: no container with name or ID etcd found: no such container
Error: no container with name or ID etcd found: no such container