netbird
netbird copied to clipboard
netbirdio
Different behaviour of netbird client in centos 8 stream and centos 9 stream peers
Describe the problem
I have installed netbird client on two hosts: gateway-yc - centos 8 stream gateway-replica-yc - centos 9 stream
@gateway-yc ~]$ netbird status
Daemon version: 0.25.4
CLI version: 0.25.4
Management: Connected
Signal: Connected
FQDN: gateway-yc.vpn.hidden.tech
NetBird IP: 100.77.154.30/16
Interface type: Userspace
Peers count: 33/43 Connected
@gateway-replica-yc ~]$ netbird status
Daemon version: 0.25.6
CLI version: 0.25.6
Management: Connected
Signal: Connected
Relays: 2/2 Available
FQDN: gateway-replica-yc.vpn.hidden.tech
NetBird IP: 100.77.122.227/16
Interface type: Kernel
Peers count: 33/43 Connected
Netbird client adds different netbird nameservers in the /etc/resolv.conf of these hosts @gateway-yc ~]$ cat /etc/resolv.conf
# Generated by NetBird
# If needed you can restore the original file by copying back /etc/resolv.conf.original.netbird
search vpn.hidden.tech ru-central1.internal auto.internal
nameserver **100.77.255.254**
nameserver 172.26.60.2
nameserver 1.1.1.1
nameserver 8.8.8.8
@gateway-replica-yc ~]$ cat /etc/resolv.conf
# Generated by NetBird
# If needed you can restore the original file by copying back /etc/resolv.conf.original.netbird
search vpn.hidden.tech ru-central1.internal auto.internal
nameserver **100.77.122.227**
nameserver 172.26.64.2
nameserver 1.1.1.1
nameserver 8.8.8.8
I don't know whose ip 100.77.255.254 is.
100.77.122.227 - this is an ip of the gateway-replica-yc peer.
Looks like netbird client starts some local resolver on the gateway-replica-yc:
gateway-replica-yc ~]$ sudo ss -ntupl | grep 53
udp UNCONN 0 0 100.77.122.227:53 0.0.0.0:* users:(("netbird",pid=739,fd=22))
This two hosts are in the local network and they are used as failover routers between local network and netbird vpn network. I want to specify netbird nameserver on the other hosts in my local network for asking netbird peers by fqdns. If I specify (on some host in local network) nameserver 100.77.255.254 and route to this ip via gateway-yc then dns resolution works on this host. If I specify (on some host in local network) nameserver 100.77.255.254 and route to this ip via gateway-replica-yc then dns resolution doesn't work on this hosts. gateway-replica-yc doesn't resolve netbird peers fqdns via 100.77.255.254 too.
I have some questions:
- Why gateway-replica-yc doesn't get the same nameserver 100.77.255.254 (like gateway-yc) but start local resolver instead?
- Why is there no access to the 100.77.255.254 from gateway-replica-yc?
- Is it possible to configure netbird client on gateway-replica-yc like on gateway-yc to get nameserver 100.77.255.254 with access to?
- Is it possible to configure netbird client on gateway-yc like on gateway-replica-yc to start local resolver?
- Is it possible to configure local netbird resolver to get dns requests (and to provide response to them) from local network?
To Reproduce Just netbird up
Expected behavior Both hosts (gateway-yc and gateway-replica-yc) get the same dns configuration - nameserver 100.77.255.254 in /etc/resolv.conf
Are you using NetBird Cloud?
I use self-host NetBird's control plane.
