Integration with systemd-resolved inside a vm

pmarini · April 13, 2023, 8:04pm

Hi,

I have a Ubuntu Jammy Desktop vm, installed with

lxc launch images:ubuntu/jammy/desktop

in which I’m running an LXD server. I want to integrate with systemd-resolved but for some reason the DNS queries do not work


ubuntu@u1:~$ lxc network set lxdbr0 dns.domain '~localenv.com'
ubuntu@u1:~$ lxc network get lxdbr0 dns.domain
~localenv.com
ubuntu@u1:~$ lxc network get lxdbr0 ipv4.address
10.133.185.1/24
ubuntu@u1:~$ sudo resolvectl domain lxdbr0 '~localenv.com'
ubuntu@u1:~$ sudo resolvectl dns lxdbr0 10.133.185.1
ubuntu@u1:~$ sudo resolvectl status lxdbr0 
Link 3 (lxdbr0)
    Current Scopes: DNS
         Protocols: -DefaultRoute +LLMNR -mDNS -DNSOverTLS DNSSEC=no/unsupported
Current DNS Server: 10.133.185.1
       DNS Servers: 10.133.185.1
        DNS Domain: ~localenv.com
ubuntu@u1:~$ lxc ls --project prj-nc-env -f compact
   NAME     STATE           IPV4           IPV6    TYPE     SNAPSHOTS  
  nc-test  RUNNING  10.133.185.181 (eth0)        CONTAINER  0
ubuntu@u1:~$ host nc-test.localenv.com
;; communications error to 127.0.0.53#53: timed out
Host nc-test.localenv.com not found: 5(REFUSED)

How can I troubleshoot the issue?

pmarini · April 14, 2023, 5:16pm

It seems that removing the ~ solves the issue:

ubuntu@u1:~$ lxc network set lxdbr0 dns.domain 'localenv.com'
ubuntu@u1:~$ resolvectl domain lxdbr0 'localenv.com'

Not sure then whether the documentation is correct?

tomp · May 12, 2023, 8:58am

I cannot see in the documentation where it suggests to lxc network set lxdbr0 dns.domain to the domain with a tilde prefix?

Certainly that is incorrect, and should be fixed if in the docs, but I cannot see that.

Only the resolvectl domain lxdbr0 '~lxd' should have the tilde added.

pmarini · May 12, 2023, 10:16am

Sorry my bad I made a confusion between:

resolvectl domain lxdbr0 '~localenv.com'

and

lxc network set lxdbr0 dns.domain 'localenv.com'

Maybe to make things clearer I’d put after:

If this option is not set, the default domain name is lxd.

the following sentence:

To set a domain you can use the following instruction:

lxc network set lxdbr0 dns.domain <domain_name>

and move the following block out of the indentation

When specifying the DNS domain, prefix the domain name with ~. The ~ tells resolved to use the respective name server to look up only this domain.

Depending on which shell you use, you might need to include the DNS domain in quotes to prevent the ~ from being expanded.

tomp · May 12, 2023, 10:20am

What do you think @ru-fu ^

ru-fu · May 15, 2023, 12:44pm

The page is about configuring resolved, not about how to configure the network bridge. So we assume that the DNS domain is already configured - adding lxc network set lxdbr0 dns.domain <domain_name> doesn’t belong in here.

I created a PR though to make it clearer that the tilde is needed only when configuring resolved, and that the returned value (and therefore also the value you would configure for dns.domain) does not contain the tilde.

tomp · May 18, 2023, 12:37pm