Skip to content
This repository has been archived by the owner on Oct 16, 2024. It is now read-only.

Latest commit

 

History

History
69 lines (56 loc) · 2.17 KB

README.md

File metadata and controls

69 lines (56 loc) · 2.17 KB

Host Resolver

A stub DNS resolver that runs on the host machine on Linux, macOS, and Windows. The main goal behind this stub resolver is more robust handling of domain name resolutions while using a split tunnel VPN setup.

How Does It Work In Rancher-Desktop?

Below is the current architecture of Rancher Desktop when using host-resolver on Windows:

flowchart  LR;
 subgraph Host["HOST"]
 isp("Public DNS")
 corp("Corporate VPN")
 resolver{"Host Resolver \n(Host Process)"}
 api(("win32 API"))
 resolver <-.->  api
 api  <--->  isp
 api  <--->  corp
 end
 subgraph VM["WSL VM"]
 peer{"Host Resolver \n(Peer Process)"}
 c1("container 1")
 c2("container 2")
 c1 <----> |tcp/udp :53| peer
 c2 <----> |tcp/udp :53| peer
 end
 peer  <---> |AF_VSOCK| resolver
Loading

Running host-resolver

You can run host-resolver in a few different modes:

1) DNS Stub Resolver Over AF_VSOCK

In WSL Distro:

/host-resolver vsock-peer

In Windows Host:

/host-resolver vsock-host --built-in-hosts host.domain.example=192.0.2.3

2) Standalone Server

/host-resolver standalone --listen-address 127.0.0.1 --tcp-port 54 --udp-port 53 --upstream-servers "host.rd.internal=111.111.111.111,host2.rd.internal=222.222.222.222"

NOTE: If ports are not provided, host resolver will listen on random ports.

Test

You can run the tests in the container by running:

docker build -t host-resolver:latest . && docker run --dns 127.0.0.1 -it host-resolver:latest

Note: Run with --dns flag is required to override the DNS resolver used in the container.

E2E Test

You can run the e2e tests locally on a windows machine, please note that the e2e tests need to run as an administrator in an elevated terminal (e.g. Administrator: Windows PowerShell).

go test -v .\test\e2e\...

NOTE: the e2e test updates the DNS addresses on the machine's primary interface (e.g WiFi, eth0, etc.). The determination process assumes the addresses are dynamically configured through DHCP, this is to prevent any changes to other interfaces e.g. VirtualBox Host-Only Network, vEthernet (WSL). Once the test is terminated the interfaces and DNS changes are restored to the original state.