What happened?
after the first install and trying to connect to a cluster via VPN, I do get an error:
dial tcp: lookup <MYCLUSTER> on <MY_LOCAL_DNS_SERVER>:53: no such host
What did you expect to happen?
I expected rbac-lookup to connect via VPN to my kubernetes cluster as kubectl and ping
How can we reproduce this?
on a OSX system, connect to a VPN and try to use rbac-lookup to connect to a private kubernetes cluster through this VPN.
version
version 0.7.1 Commit:98a09819f7b91ba2c22da08452fa5d2266b796ee
Search
Code of Conduct
Additional context
This issue appears to be connected to the Compiler flag CGO_ENABLED=0 as this will tell go (<1.13) to use the go-internal resolver. But this resolver relies on /etc/resolv.conf instead system in place on OSX.
Using VPN with split routing (only traffic to the "private" hostnames are routed via VPN) will not update this file.
You can check the different DNS server in place with scutil --dns
See golang/go#12524 and https://docwhat.org/macos-dns-and-go for details (and a possible work-around for end users).
What happened?
after the first install and trying to connect to a cluster via VPN, I do get an error:
What did you expect to happen?
I expected
rbac-lookupto connect via VPN to my kubernetes cluster askubectlandpingHow can we reproduce this?
on a OSX system, connect to a VPN and try to use
rbac-lookupto connect to a private kubernetes cluster through this VPN.version
version 0.7.1 Commit:98a09819f7b91ba2c22da08452fa5d2266b796ee
Search
Code of Conduct
Additional context
This issue appears to be connected to the Compiler flag
CGO_ENABLED=0as this will tell go (<1.13) to use the go-internal resolver. But this resolver relies on/etc/resolv.confinstead system in place on OSX.Using VPN with split routing (only traffic to the "private" hostnames are routed via VPN) will not update this file.
You can check the different DNS server in place with
scutil --dnsSee golang/go#12524 and https://docwhat.org/macos-dns-and-go for details (and a possible work-around for end users).