Skip to content

No resolv domen in internal #6524

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
5 tasks done
kocik799 opened this issue May 9, 2025 · 0 comments
Open
5 tasks done

No resolv domen in internal #6524

kocik799 opened this issue May 9, 2025 · 0 comments
Labels
bug

Comments

@kocik799
Copy link

kocik799 commented May 9, 2025
edited
Loading

Contribution guidelines

I've found a bug and checked that ...

  • ... I understand that not following the below instructions will result in immediate closure and/or deletion of my issue.
  • ... I have understood that this bug report is dedicated for bugs, and not for support-related inquiries.
  • ... I have understood that answers are voluntary and community-driven, and not commercial support.
  • ... I have verified that my issue has not been already answered in the past. I also checked previous issues.

Description

Hi. I ran into the problem that I can't connect keycloak. I found out that the php-fpm-gmail com container resolves the domain sso.domen.ru to an external address, not an internal one. The host has internal local dns servers (192.168.55.12 192.168.51.25). The unbound-mail cow container resolves correctly to local 192.168.55.11 (sso.domen.ru )

My host /etc/resolv.conf 
# Generated by NetworkManager
nameserver 192.168.55.12
nameserver 192.168.51.25

how can I fix this behavior, why resolves to external and not to local?

Logs:

-

Steps to reproduce:

docker exec -it d9331449c705 sh (mailcowdockerized-php-fpm-mailcow-1)
; <<>> DiG 9.18.36 <<>> sso.*domen*.ru.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 48002
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;sso.*domen*.ru.               IN      A

;; ANSWER SECTION:
sso.*domen*.ru.        167     IN      A       178.234.111.252

;; Query time: 3 msec
;; SERVER: 127.0.0.11#53(127.0.0.11) (UDP)
;; WHEN: Fri May 09 20:55:57 MSK 2025
;; MSG SIZE  rcvd: 60

sudo docker exec -it a9f1e58f84ce sh (mailcowdockerized-unbound-mailcow-1)
; <<>> DiG 9.18.34 <<>> sso.*domen*.ru.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 31773
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;sso.*domen*.ru.               IN      A

;; ANSWER SECTION:
sso.*domen*.ru.        60      IN      A       192.168.55.11

;; Query time: 3 msec
;; SERVER: 127.0.0.11#53(127.0.0.11) (UDP)
;; WHEN: Fri May 09 20:54:22 MSK 2025
;; MSG SIZE  rcvd: 60

Which branch are you using?

master

Which architecture are you using?

x86

Operating System:

oracle linux 8

Server/VM specifications:

8g ram 8 cpu

Is Apparmor, SELinux or similar active?

no

Virtualization technology:

VMWare

Docker version:

26.1.3

docker-compose version or docker compose version:

mailcow version:

2025-03b

Reverse proxy:

Haproxy

Logs of git diff:

-

Logs of iptables -L -vn:

-

Logs of ip6tables -L -vn:

-

Logs of iptables -L -vn -t nat:

-

Logs of ip6tables -L -vn -t nat:

-

DNS check:

docker exec -it $(docker ps -qf name=mailcowdockerized-php-fpm-mailcow-1) dig +short sso.domen.ru @172.22.1.254
178.234.111.1 - external ip
@kocik799 kocik799 added the bug label May 9, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@kocik799