zlacker

[return to "Understanding DNS Resolution on Linux and Kubernetes"]
1. szszrk+Kx2[view] [source] 2025-03-24 14:40:29
>>fanf2+(OP)
> The Kubernetes DNS resolves A-B-C-D.N.pod.cluster.local to A.B.C.D, as long as A.B.C.D is a valid IP address and N is an existing namespace. Let’s be honest: I don’t know how this serves any purpose, but if you do, please let me know!

You can use that to

- test weird dns setups

- to issue proper TLS certificates (you can do that technically, but it's less known fact and some services like let's encrypt forbid that as their rule)

- to utilize single IP and same port for multiple services (so just a common host/server configuration on typical reverse proxy, optionally with SNI to be used with TLS on top.

◧◩
2. vbezhe+3B7[view] [source] 2025-03-26 11:36:13
>>szszrk+Kx2
I don’t think you can issue proper cert for a private IP. So using dns host name is the only option.
[go to top]