Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: a069be8c5c
Branches Tags
okd
/
roles
/
openshift_node_dnsmasq
/
files
/
networkmanager
/
99-origin-dns.sh

99-origin-dns.sh 2.2 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162 
  1. #!/bin/bash -x
    2. 

  2. 

  3. # This NetworkManager dispatcher script replicates the functionality of
    4. 

  4. # NetworkManager's dns=dnsmasq  however, rather than hardcoding the listening
    5. 

  5. # address and /etc/resolv.conf to 127.0.0.1 it pulls the IP address from the
    6. 

  6. # interface that owns the default route. This enables us to then configure pods
    7. 

  7. # to use this IP address as their only resolver, where as using 127.0.0.1 inside
    8. 

  8. # a pod would fail.
    9. 

  9. #
    10. 

  10. # To use this,
    11. 

  11. # - If this host is also a master, reconfigure master dnsConfig to listen on
    12. 

  12. #   8053 to avoid conflicts on port 53 and open port 8053 in the firewall
    13. 

  13. # - Drop this script in /etc/NetworkManager/dispatcher.d/
    14. 

  14. # - systemctl restart NetworkManager
    15. 

  15. # - Configure node-config.yaml to set dnsIP: to the ip address of this
    16. 

  16. #   node
    17. 

  17. #
    18. 

  18. # Test it:
    19. 

  19. # host kubernetes.default.svc.cluster.local
    20. 

  20. # host google.com
    21. 

  21. #
    22. 

  22. # TODO: I think this would be easy to add as a config option in NetworkManager
    23. 

  23. # natively, look at hacking that up
    24. 

  24. 

  25. cd /etc/sysconfig/network-scripts
    26. 

  26. . ./network-functions
    27. 

  27. 

  28. [ -f ../network ] && . ../network
    29. 

  29. 

  30. if [[ $2 =~ ^(up|dhcp4-change)$ ]]; then
    31. 

  31.   # couldn't find an existing method to determine if the interface owns the 
    32. 

  32.   # default route
    33. 

  33.   def_route=$(/sbin/ip route list match 0.0.0.0/0 | awk '{print $3 }')
    34. 

  34.   def_route_int=$(/sbin/ip route get to ${def_route} | awk '{print $3}')
    35. 

  35.   def_route_ip=$(/sbin/ip route get to ${def_route} | awk '{print $5}')
    36. 

  36.   if [[ ${DEVICE_IFACE} == ${def_route_int} && \
    37. 

  37.        -n "${IP4_NAMESERVERS}" ]]; then
    38. 

  38.     if [ ! -f /etc/dnsmasq.d/origin-dns.conf ]; then
    39. 

  39.       cat << EOF > /etc/dnsmasq.d/origin-dns.conf
    40. 

  40. strict-order
    41. 

  41. no-resolv
    42. 

  42. domain-needed
    43. 

  43. server=/cluster.local/172.30.0.1
    44. 

  44. server=/30.172.in-addr.arpa/172.30.0.1
    45. 

  45. EOF
    46. 

  46.     fi
    47. 

  47.     # zero out our upstream servers list and feed it into dnsmasq
    48. 

  48.     echo -n > /etc/dnsmasq.d/origin-upstream-dns.conf
    49. 

  49.     for ns in ${IP4_NAMESERVERS}; do
    50. 

  50.       if [[ ! -z $ns ]]; then
    51. 

  51.         echo "server=${ns}" >> /etc/dnsmasq.d/origin-upstream-dns.conf
    52. 

  52.       fi
    53. 

  53.     done
    54. 

  54.     systemctl restart dnsmasq
    55. 

  55. 

  56.     sed -i '0,/^nameserver/ s/^nameserver.*$/nameserver '"${def_route_ip}"'/g' /etc/resolv.conf
    57. 

  57. 

  58.     if ! grep -q '99-origin-dns.sh' /etc/resolv.conf; then
    59. 

  59.       echo "# nameserver updated by /etc/NetworkManager/dispatcher.d/99-origin-dns.sh" >> /etc/resolv.conf
    60. 

  60.     fi
    61. 

  61.   fi
    62. 

  62. fi
    63.