moby: lxc-docker startup script fails to set up iptables MASQ rule; WAS: dns issues while using docker run -dns

I need to use -dns args when running docker run, and that was working fine last week. Today, however, it’s unable to resolve any requests.

andyh@gir:~$ docker run -dns 8.8.8.8 -dns 8.8.4.4 base ping -c 5 google.com
ping: unknown host google.com
andyh@gir:~$ docker version
Client version: 0.4.0
Server version: 0.4.0
Go version: go1.0.3
andyh@gir:~$ cat /etc/resolv.conf 
# Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8)
#     DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN
nameserver 127.0.1.1
andyh@gir:~$

I’ll dig in with dig to get more details. Any other suggestions for debugging these dns issues?

About this issue

Original URL
State: closed
Created 11 years ago
Comments: 40 (15 by maintainers)

Commits related to this issue

backport: libnetwork #771 and #866 Signed-off-by: Antonio Murdaca <runcom@redhat.com> — committed to runcom/docker by runcom 8 years ago
Merge pull request #64 from runcom/backport-libnetwork backport: libnetwork #771 and #866 — committed to projectatomic/docker by rhatdan 8 years ago

Most upvoted comments

@ml10 can you try to reset everything?

pkill docker
iptables -t nat -F
ifconfig docker0 down
brctl delbr docker0
docker -d

It will force docker to recreate the bridge and reinit all the network rules

+53

creack on Jun 10, 2013

I just bumped into this issue with Docker 17.09:

$ docker run ubuntu:16.04 apt-get update
Err:1 http://security.ubuntu.com/ubuntu xenial-security InRelease
  Temporary failure resolving 'security.ubuntu.com'
Err:2 http://archive.ubuntu.com/ubuntu xenial InRelease
  Temporary failure resolving 'archive.ubuntu.com'
Err:3 http://archive.ubuntu.com/ubuntu xenial-updates InRelease
  Temporary failure resolving 'archive.ubuntu.com'
Err:4 http://archive.ubuntu.com/ubuntu xenial-backports InRelease
  Temporary failure resolving 'archive.ubuntu.com'
Reading package lists...
W: Failed to fetch http://archive.ubuntu.com/ubuntu/dists/xenial/InRelease  Temporary failure resolving 'archive.ubuntu.com'
W: Failed to fetch http://archive.ubuntu.com/ubuntu/dists/xenial-updates/InRelease  Temporary failure resolving 'archive.ubuntu.com'
W: Failed to fetch http://archive.ubuntu.com/ubuntu/dists/xenial-backports/InRelease  Temporary failure resolving 'archive.ubuntu.com'
W: Failed to fetch http://security.ubuntu.com/ubuntu/dists/xenial-security/InRelease  Temporary failure resolving 'security.ubuntu.com'
W: Some index files failed to download. They have been ignored, or old ones used instead.

My system:

$ docker version
Client:
 Version:      17.09.0-ce
 API version:  1.32
 Go version:   go1.8.3
 Git commit:   afdb6d4
 Built:        Tue Sep 26 22:42:18 2017
 OS/Arch:      linux/amd64

Server:
 Version:      17.09.0-ce
 API version:  1.32 (minimum version 1.12)
 Go version:   go1.8.3
 Git commit:   afdb6d4
 Built:        Tue Sep 26 22:40:56 2017
 OS/Arch:      linux/amd64
 Experimental: false

$ uname -a
Linux luis-workstation 4.10.0-40-generic #44~16.04.1-Ubuntu SMP Thu Nov 9 15:37:44 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux

The solution proposed by @creack does not not function since there is no -d flag in this docker version.

ldesousa on Dec 4, 2017