Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DNS resolution failing on EKS slaves #5468

Closed
1 of 2 tasks
andyhopp opened this issue Sep 12, 2019 · 6 comments
Closed
1 of 2 tasks

DNS resolution failing on EKS slaves #5468

andyhopp opened this issue Sep 12, 2019 · 6 comments
Labels
area/eks support for AWS EKS area/jenkins area/jenkins indicates the bug was reported against the "Classic Jenkins" installation type kind/bug Issue is a bug priority/awaiting-more-evidence Lowest priority. Possibly useful, but not yet enough support to actually get it done.

Comments

@andyhopp
Copy link

andyhopp commented Sep 12, 2019
edited
Loading

Summary

DNS resolution appears to be broken when running a docker build on EKS. I have followed the Kubernetes DNS resolution troubleshooting guide at https://kubernetes.io/docs/tasks/administer-cluster/dns-debugging-resolution/, and I added logging to CoreDNS. While I see the queries for the container images used by the Dockerfile, I do not see any of the queries that should be issued from running the commands in the Dockerfile.

Steps to reproduce the behavior

  1. Create an EKS Jenkins X cluster following instructions at https://aws.amazon.com/blogs/opensource/continuous-delivery-eks-jenkins-x/
  2. Install the aspnet quick start: jx create quickstart, choosing the "aspnet-app" sample and follow prompts for GitHub orgs, etc.

Expected behavior

Build proceeds without errors.

Actual behavior

Build fails with the below in the log:

  Restoring packages for /app/aspnetapp.csproj...

  Restoring packages for /app/aspnetapp.csproj...

/usr/share/dotnet/sdk/2.1.202/NuGet.targets(114,5): error : Unable to load the service index for source https://api.nuget.org/v3/index.json. [/app/aspnetapp.csproj]

/usr/share/dotnet/sdk/2.1.202/NuGet.targets(114,5): error :   An error occurred while sending the request. [/app/aspnetapp.csproj]

/usr/share/dotnet/sdk/2.1.202/NuGet.targets(114,5): error :   Couldn't resolve host name [/app/aspnetapp.csproj]

time="2019-09-12T15:56:56Z" level=fatal msg="build failed: build failed: building [andyhopp/aspnet-app]: build artifact: unable to stream build output: The command '/bin/sh -c dotnet restore' returned a non-zero code: 1"

Jx version

The output of jx version is:

NAME               VERSION
jx                 2.0.712
jenkins x platform 2.0.1165
Kubernetes cluster v1.13.10-eks-5ac0f1
kubectl            v1.14.6
helm client        Client: v2.14.2+ga8b13cc
git                2.17.2 (Apple Git-113)
Operating System   Mac OS X 10.13.6 build 17G8030

Jenkins type

  • Serverless Jenkins X Pipelines (Tekton + Prow)
  • Classic Jenkins

Kubernetes cluster

EKS created using guide linked above

Operating system / Environment

MacOS
@andyhopp
Copy link
Author

I did find that resolv.conf contains this, which does not appear correct:

; generated by /usr/sbin/dhclient-script
search ec2.internal
options timeout:2 attempts:5
nameserver 192.168.0.2

I would have expected something like (this was on a pod I manually launched):

nameserver 10.100.0.10
search jx.svc.cluster.local svc.cluster.local cluster.local ec2.internal
options ndots:5

@andyhopp
Copy link
Author

I discovered the issue; we disabled the docker bridge in EKS (see awslabs/amazon-eks-ami#183). Updating skaffold.yaml to configure docker builds to use host networking resolved this:

...
build:
  artifacts:
    ...
    docker:
      network: host

@abdennour
Copy link

Found the answer : https://stackoverflow.com/a/57934460/747579

Just add --network=host to docker build or docker run

@deanesmith deanesmith added area/jenkins area/jenkins indicates the bug was reported against the "Classic Jenkins" installation type area/eks support for AWS EKS labels Sep 17, 2019
@deanesmith
Copy link
Contributor

@andyhopp We'll be supporting Kaniko images very soon but it appears a Docker workaround is there with @abdennour's comment. Ref - #5433. Please close this issue if you're satisfied. P.S. - Remember Ipswitch?

@deanesmith deanesmith added priority/awaiting-more-evidence Lowest priority. Possibly useful, but not yet enough support to actually get it done. kind/bug Issue is a bug labels Sep 17, 2019
@andyhopp
Copy link
Author

Ha, I realized it was you on the other issue I had opened! I'll hit you up outside this issue so I don't annoy people who are trying to solve problems :)

@DJEDAINI
Copy link

I discovered the issue; we disabled the docker bridge in EKS (see awslabs/amazon-eks-ami#183). Updating skaffold.yaml to configure docker builds to use host networking resolved this:

...
build:
  artifacts:
    ...
    docker:
      network: host

@andyhopp

You saved my day man , thank you

@MarwaOuledElHadjAli MarwaOuledElHadjAli mentioned this issue May 6, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/eks support for AWS EKS area/jenkins area/jenkins indicates the bug was reported against the "Classic Jenkins" installation type kind/bug Issue is a bug priority/awaiting-more-evidence Lowest priority. Possibly useful, but not yet enough support to actually get it done.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@abdennour @DJEDAINI @andyhopp @deanesmith