[Federation] Setting up CoreDNS as DNS provider for Cluster Federation

[shashidharatd]

Addresses and Fixes: #2197

cc @madhusudancs @kubernetes/sig-federation-misc

---

This change is 

[madhusudancs]

Reviewed 2 of 2 files at r1.
Review status: all files reviewed at latest revision, 14 unresolved discussions.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 28 at r1 (raw file):

To deploy CoreDNS we shall make use of helm charts. CoreDNS will be
deployed with Etcd as the backend and should be pre-installed. Etcd

etcd is usually spelled with a lower case e. Also, please link to their website - https://coreos.com/etcd

Same comments for all other occurrences.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 33 at r1 (raw file):

```shell
$ helm install --name etcd-operator --namespace ns stable/etcd-operator

Can we use a better, more descriptive namespace?

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 41 at r1 (raw file):

After deployment succeeds, Etcd can be accessed with
"http://etcd-cluster:2379" endpoint within the host cluster.

Remove the quotes and just linkify the URL.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 44 at r1 (raw file):

CoreDNS default configuration should be customized to suit federation
and shown below is the Values.yaml, which overrides the default

Link to the default Values.yaml file?

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 64 at r1 (raw file):

 - `isClusterService` specifies whether CoreDNS should be deployed as
cluster-service, which is default. You need to set it to false, so that
CoreDNS is deployed as kubernetes application service.

What's the difference between the two types? I am not sure I know the distinction.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 70 at r1 (raw file):

cluster.
 - Disable `middleware.kubernetes`, which is enabled by default by
setting `middleware.kubernetes.enabled` to false.

Do CoreDNS users understand this configuration? I don't know much about CoreDNS and I can't say whether I want this or not.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 72 at r1 (raw file):

setting `middleware.kubernetes.enabled` to false.
 - Enable `middleware.etcd` by setting `middleware.etcd.enabled` to
true.

Same as above.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 89 at r1 (raw file):

Federation control plane can be deployed using `kubefed init`. CoreDNS
can be chosen as DNS provider by specifying two additional parameters.

It is probably worth mentioning that middleware.etcd.zones and --dns-zone-name flag to kubefed init should match.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 98 at r1 (raw file):

```shell
[Global]
etcd-endpoints = http://etcd-cluster.ns:2379

I would make the host name part consistent. I understand why you are doing this. But I think it is worth making it consistent everywhere. Using etcd-cluster.ns everywhere isn't harmful right?

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 99 at r1 (raw file):

[Global]
etcd-endpoints = http://etcd-cluster.ns:2379
zones = example.com

Trailing dot for consistency as we did here - #2899 (review)

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 103 at r1 (raw file):

 - `etcd-endpoints` is the endpoint to access Etcd.
 - `zones` is the federation domain for which CoreDNS is authoritative.

and say "which is same as --dns-zone-name"

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 105 at r1 (raw file):

 - `zones` is the federation domain for which CoreDNS is authoritative.

## Setup CoreDNS server in nameserver resolv chain

resolv.conf chain?

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 109 at r1 (raw file):

Once the federation control plane is deployed and federated clusters
are joined to the federation, you need to add the CoreDNS server to
pod's nameserver resolv chain in all the federated clusters as this

resolv.conf chain?

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 115 at r1 (raw file):

```shell
        - --server=/example.com/<CoreDNS endpoint>

Is it not possible to use the kube-dns ConfigMap for this yet?

---

Comments from Reviewable

[shashidharatd]

@madhusudancs, Handled review comments. PTAL

---

Review status: 1 of 2 files reviewed at latest revision, 14 unresolved discussions.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 28 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

etcd is usually spelled with a lower case e. Also, please link to their website - https://coreos.com/etcd

Same comments for all other occurrences.

ok. Done

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 33 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Can we use a better, more descriptive namespace?

used my-namespace instead of ns

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 41 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Remove the quotes and just linkify the URL.

removed the quotes

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 44 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Link to the default Values.yaml file?

CoreDNS chart is not merged yet, so the link would not be stable if i link it to PR. On the other hand Values.yaml in helm charts is well known, so i think user should not have any difficulty finding out the default configuration given the chart.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 64 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

What's the difference between the two types? I am not sure I know the distinction.

CoreDNS chart can be deployed basically as 2 variants.

• if isClusterService is true, then CoreDNS is deployed similar to kube-dns addon.
• if isClusterService is false, then CoreDNS is deployed as any other k8s app.

they basically differ in labels and annotations.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 70 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Do CoreDNS users understand this configuration? I don't know much about CoreDNS and I can't say whether I want this or not.

CoreDNS users do understand about the middleware. I had given the reference Values.yaml above which can be used to deploy CoreDNS for federation dns server. This explanation is just to let know the user of the configuration details and i believe whoever wants to tweak the configuration would know how to fit it to their needs.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 72 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Same as above.

Same as previous reply

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 89 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

It is probably worth mentioning that middleware.etcd.zones and --dns-zone-name flag to kubefed init should match.

Added a Note

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 98 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

I would make the host name part consistent. I understand why you are doing this. But I think it is worth making it consistent everywhere. Using etcd-cluster.ns everywhere isn't harmful right?

Agree, used etcd-cluster.my-namespace everywhere

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 99 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Trailing dot for consistency as we did here - #2899 (review)

Done

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 103 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

and say "which is same as --dns-zone-name"

Added.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 105 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

resolv.conf chain?

Changed. Done

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 109 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

resolv.conf chain?

Changed. Done

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 115 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Is it not possible to use the kube-dns ConfigMap for this yet?

kube-dns ConfigMap in the current release cannot handle nameserver listening on any port other than 53. I did a PR to specify port for nameserver, but that would be included in subsequent releases.
If CoreDNS is deployed as NodePort service. than it will be accessible on some random port which cannot be configured using kube-dns ConfigMap method.

---

Comments from Reviewable

[csbell]

Madhu -- can you lgtm the changes if they look good to you?

[shashidharatd]

@madhusudancs, the CoreDNS helm chart PR is merged now. request a LGTM from you. is the fixes ok?

[clenimar]

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 99 at r2 (raw file):

[Global]
etcd-endpoints = http://etcd-cluster.my-namespace:2379
zones = example.com.

Does the user need to own this domain name? (In the light of kubernetes/kubernetes#43599)

---

Comments from Reviewable

[madhusudancs]

@shashidharatd a few minor comments.

---

Reviewed 1 of 1 files at r2.
Review status: all files reviewed at latest revision, 8 unresolved discussions, some commit checks failed.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 33 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

used my-namespace instead of ns

I would have preferred a descriptive one. Something like dns or coredns, but this is good enough.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 41 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

removed the quotes

Can you please linkify this so that people following the doc can just click the link? [http://etcd-cluster.my-namespace:2379](http://etcd-cluster.my-namespace:2379)

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 44 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

CoreDNS chart is not merged yet, so the link would not be stable if i link it to PR. On the other hand Values.yaml in helm charts is well known, so i think user should not have any difficulty finding out the default configuration given the chart.

Ok, fair enough.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 64 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

CoreDNS chart can be deployed basically as 2 variants.

• if isClusterService is true, then CoreDNS is deployed similar to kube-dns addon.
• if isClusterService is false, then CoreDNS is deployed as any other k8s app.

they basically differ in labels and annotations.

Oh I see what you mean. This defines whether the deployment is a cluster component. Is that right? Could you please clarify this in the doc. It is not clear right now.

If that's the case, should users care about it? What are the pros and cons?

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 70 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

CoreDNS users do understand about the middleware. I had given the reference Values.yaml above which can be used to deploy CoreDNS for federation dns server. This explanation is just to let know the user of the configuration details and i believe whoever wants to tweak the configuration would know how to fit it to their needs.

Ok, cool.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 72 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

Same as previous reply

Ack.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 115 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

kube-dns ConfigMap in the current release cannot handle nameserver listening on any port other than 53. I did a PR to specify port for nameserver, but that would be included in subsequent releases.
If CoreDNS is deployed as NodePort service. than it will be accessible on some random port which cannot be configured using kube-dns ConfigMap method.

I see. Do you think it is worth documenting both these techniques along with your explanation above?

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 99 at r2 (raw file):

Previously, clenimar (Clenimar Filemon) wrote…

Does the user need to own this domain name? (In the light of kubernetes/kubernetes#43599)

Not necessary if you are using CoreDNS as the DNS provider. However, it is the user's (read: cluster operator's) responsibility to

1. Appropriately configure cluster's kube-dns to forward all requests to example.com. to CoreDNS.
2. Make CoreDNS the authoritative server for example.com.
3. Ensure external clients reach CoreDNS for the DNS queries for example.com..

---

Comments from Reviewable

[shashidharatd]

@madhusudancs, have tried adressing your comments. PTAL

---

Review status: 0 of 2 files reviewed at latest revision, 6 unresolved discussions.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 33 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

I would have preferred a descriptive one. Something like dns or coredns, but this is good enough.

Using something like coredns might have confused, since the keyword is used for other purposes also.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 41 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Can you please linkify this so that people following the doc can just click the link? [http://etcd-cluster.my-namespace:2379](http://etcd-cluster.my-namespace:2379)

oh, i misunderstood the comment. Fixed Now.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 64 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

Oh I see what you mean. This defines whether the deployment is a cluster component. Is that right? Could you please clarify this in the doc. It is not clear right now.

If that's the case, should users care about it? What are the pros and cons?

For federation use case. CoreDNS has to be deployed as normal k8s app and this is not default while installing helm chart. So i have given the overriding configuration to deploy CoreDNS as a normal k8s app with etcd as middleware.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 115 at r1 (raw file):

Previously, madhusudancs (Madhusudan.C.S) wrote…

I see. Do you think it is worth documenting both these techniques along with your explanation above?

Once the kube-dns configuration related PR is merged and available to users. users need not do this manual configuration at all. we should remove this section in future. So i feel we should leave out those details which we do take care of.

---

Comments from Reviewable

[madhusudancs]

Reviewed 2 of 2 files at r3.
Review status: all files reviewed at latest revision, 4 unresolved discussions, some commit checks failed.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 33 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

Using something like coredns might have confused, since the keyword is used for other purposes also.

Fair enough.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 64 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

For federation use case. CoreDNS has to be deployed as normal k8s app and this is not default while installing helm chart. So i have given the overriding configuration to deploy CoreDNS as a normal k8s app with etcd as middleware.

Ok makes sense.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 115 at r1 (raw file):

Previously, shashidharatd (Shashidhara T D) wrote…

Once the kube-dns configuration related PR is merged and available to users. users need not do this manual configuration at all. we should remove this section in future. So i feel we should leave out those details which we do take care of.

Ok.

---

Comments from Reviewable

[madhusudancs]

@devin-donnelly @chenopis @jaredbhatti could you please take a look?

[madhusudancs]

@shashidharatd this is also needs a rebase.

[shashidharatd]

@madhusudancs, sorry for the delay. rebased now

[arthur0]

Hello @shashidharatd, I tried helm install --name etcd-operator stable/etcd-operator (with and without the --namespace flag) unsuccessfully. Do you know any reason for that?

Error: release etcd-operator failed: the server does not allow access to the requested resource (get namespaces default)

[shashidharatd]

Hello @arthur0,
I am able to install the chart with/without namespace successfully. i am suspecting you are having issue with RBAC settings in your k8s cluster.
Anyway it would be good to post this issue in https://github.com/kubernetes/charts instead of here. there would be more users/developers to help out.

[csbell]

Another possibility: federation doesn't create a default namespace. The failing "gets" suggest that might be the case.

[chenopis]

Some minor grammar nits.

[chenopis]

add "the" before "DNS provider..."

[chenopis]

If you could please use the Tutorial Template, that would really help us out. Thanks!

[chenopis]

"configuration" -> "configurations"

[chenopis]

The sentence "In this guide..." is redundant and can be removed because the points it makes are already mentioned above.

[chenopis]

add comma: "To deploy CoreDNS, we shall..."

[chenopis]

add "the": "The Federation control plane..."

[chenopis]

add "the": "...can be chosen as the DNS provider..."

[chenopis]

add "the": "...the pod's nameserver..."

[chenopis]

add "the": "...server to the pod's nameserver..."

[chenopis]

typo and remove extra space: "...cross-cluster service discovery!"

[shashidharatd]

@chenopis, i have addressed your comments. PTAL

---

Review status: 1 of 3 files reviewed at latest revision, 21 unresolved discussions.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 6 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

If you could please use the Tutorial Template, that would really help us out. Thanks!

I have used the template now. PTAL

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 11 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "the" before "DNS provider..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 13 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

"configuration" -> "configurations"

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 14 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

The sentence "In this guide..." is redundant and can be removed because the points it makes are already mentioned above.

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 27 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add comma: "To deploy CoreDNS, we shall..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 29 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

"etcd also can be deployed..." -> "etct can also be deployed..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 40 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "the": "...can be accessed with..." -> "...can be accessed with the..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 43 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "the": "The CoreDNS default..." and "...customized to suit the federation."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 44 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

start a new sentence: "...suit the federation. Shown below is..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 45 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "the": "...on the CoreDNS chart."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 63 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "a" and "the": "a cluster-service, which is the default."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 64 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "a," capitalize Kubernetes: "...deployed as a Kubernetes application service."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 65 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

capitalize Kubernetes everywhere

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 66 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

Suggested wording:

You need to choose either "LoadBalancer" or "NodePort" to make the CoreDNS service accessible outside the Kubernetes cluster.

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 88 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "the": "The Federation control plane..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 89 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "the": "...can be chosen as the DNS provider..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 111 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "the": "...the pod's nameserver..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 122 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

add "the": "...server to the pod's nameserver..."

Done.

---

docs/tutorials/federation/set-up-coredns-provider-federation.md, line 126 at r3 (raw file):

Previously, chenopis (Andrew Chen) wrote…

typo and remove extra space: "...cross-cluster service discovery!"

Done.

---

Comments from Reviewable

[chenopis]

/lgtm @shashidharatd @madhusudancs Anything else before I merge this?

[shashidharatd]

loogs good to me. @madhusudancs PTAL one final time.
Thanks

[madhusudancs]

@chenopis @shashidharatd looks good to me too. Go go go!

[shashidharatd]

@chenopis, @madhusudancs, This document should be available for 1.6, should i raise to release-1.6 branch also?

[chrisjones262]

Note that using ServiceType = "LoadBalancer" gives this result:
Error: release coredns failed: Service "coredns-coredns" is invalid: spec.ports: Invalid value: [{"name":"dns","protocol":"UDP","port":53,"targetPort":53,"nodePort":0},
{"name":"dns-tcp","protocol":"TCP","port":53,"targetPort":53,"nodePort":0}]: cannot create an external load balancer with mix protocols

Using ServiceType = "NodePort" seems to be necessary if you want to support both TCP and UDP.

[shashidharatd]

@chrisjones262, on what cloud provider are you seeing the above issue?
Request you to file an issue in https://github.com/kubernetes/charts
AFAIK, there seems to be a bug in GCE loadbalancer, which does not allow to create a loadbalancer with same port for UDP & TCP. Are you by chance using GCE?
I hope this problem does not exist on other cloud providers like AWS or openstack

[chrisjones262]

It is on Azure Container Service. I would guess it’s cloud-provider independent. From: Shashidhara T D [mailto:notifications@github.com] Sent: Friday, April 14, 2017 10:34 AM To: kubernetes/kubernetes.github.io <kubernetes.github.io@noreply.github.com> Cc: Christopher Jones (MCS) <cjones@microsoft.com>; Mention <mention@noreply.github.com> Subject: Re: [kubernetes/kubernetes.github.io] [Federation] Setting up CoreDNS as DNS provider for Cluster Federation (#2810) @chrisjones262<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fchrisjones262&data=02%7C01%7Ccjones%40microsoft.com%7Cc5b3ceb90d854dd39a8008d483434911%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636277772391055382&sdata=hmgRRv3WKeKFQtyo9nTGucRUGvCUFJRIAxpBg6nCNMY%3D&reserved=0>, on what cloud provider are you seeing the above issue? Request you to file an issue in https://github.com/kubernetes/charts<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fkubernetes%2Fcharts&data=02%7C01%7Ccjones%40microsoft.com%7Cc5b3ceb90d854dd39a8008d483434911%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636277772391055382&sdata=wcWxMsRhQQ%2FsPVzf7iH1%2FFOfqriIgI0isex4s3zKDAc%3D&reserved=0> AFAIK, there seems to be a bug in GCE loadbalancer, which does not allow to create a loadbalancer with same port for UDP & TCP. Are you by chance using GCE? I hope this problem does not exist on other cloud providers like AWS or openstack — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fkubernetes%2Fkubernetes.github.io%2Fpull%2F2810%23issuecomment-294164044&data=02%7C01%7Ccjones%40microsoft.com%7Cc5b3ceb90d854dd39a8008d483434911%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636277772391055382&sdata=dhpOmzV9W54mH%2BR4fn9lpdRJa%2F%2Fslet6UiOfUxzE%2FwU%3D&reserved=0>, or mute the thread<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fnotifications%2Funsubscribe-auth%2FAJt1ZZBA8H9d_2JC_1diaT_9VYID6YsFks5rv4PUgaJpZM4MdAO2&data=02%7C01%7Ccjones%40microsoft.com%7Cc5b3ceb90d854dd39a8008d483434911%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636277772391055382&sdata=eI22HjmNMoXcJVwP8qdHM4Ro%2BgiLnapiF90fNb2tth0%3D&reserved=0>.

[chenopis]

@shashidharatd Since 1.6 was already released, I can merge this directly into master. Once you think the issue w/ @chrisjones262 is sufficiently resolved, I will merge this. Cheers

[shashidharatd]

@chrisjones262, interesting to know that loadbalancers in 'Azure Container Service' also has similar characteristics as that GCE loadbalancers. We can just start the service to listen either on TCP or UDP in that case and think about implications for DNS server. I would request you to file this issue in https://github.com/kubernetes/charts as the fix need to go in that repo for CoreDNS helm chart.

[shashidharatd]

@chenopis, just curious, can this documentation be part of 1.6.2 patch release? Does the hosted https://kubernetes.io reflect the changes done to patch release?
I wish that this documentation is merged and visible to greater audience ASAP, if it has to go in 1.7 release then we need to wait for another quarter.

Also the issue raised by @chrisjones262, affect subset of environments. IMHO, we should not hold back this documentation pr for that issue as there is no change required here. that issue is being addressed in helm/charts#928 and would take its own time to merge and is independent of kubernetes release cycles. @chrisjones262 do you agree?

[chenopis]

@shashidharatd As long as that issue is being addressed, I'm fine w/ merging this now. Thx

[chrisjones262]

Sorry for the delay. I agree. From: Shashidhara T D [mailto:notifications@github.com] Sent: Sunday, April 16, 2017 11:58 PM To: kubernetes/kubernetes.github.io <kubernetes.github.io@noreply.github.com> Cc: Christopher Jones (MCS) <cjones@microsoft.com>; Mention <mention@noreply.github.com> Subject: Re: [kubernetes/kubernetes.github.io] [Federation] Setting up CoreDNS as DNS provider for Cluster Federation (#2810) @chenopis<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fchenopis&data=02%7C01%7Ccjones%40microsoft.com%7C62c68095ab5f4b35d83408d48545fa46%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636279983009613773&sdata=gkiMGeqhYtlTm53yYH%2FCPAkTBp2MKHx2kPlSWT1YiHE%3D&reserved=0>, just curious, can this documentation be part of 1.6.2 patch release? Does the hosted https://kubernetes.io<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fkubernetes.io&data=02%7C01%7Ccjones%40microsoft.com%7C62c68095ab5f4b35d83408d48545fa46%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636279983009613773&sdata=4fTbdnMdmm%2BI0xZ2o%2BEZK4CJDR99%2F9SnBBGrT4Sqgpo%3D&reserved=0> reflect the changes done to patch release? I wish that this documentation is merged and visible to greater audience ASAP, if it has to go in 1.7 release then we need to wait for another quarter. Also the issue raised by @chrisjones262<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fchrisjones262&data=02%7C01%7Ccjones%40microsoft.com%7C62c68095ab5f4b35d83408d48545fa46%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636279983009613773&sdata=0jPj%2Fcx1JWZ8AQquHWff1jWG4dL7QEyOs2XsvgNSOxE%3D&reserved=0>, affect subset of environments. IMHO, we should not hold back this documentation pr for that issue as there is no change required here. that issue is being addressed in helm/charts#928<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fkubernetes%2Fcharts%2Fpull%2F928&data=02%7C01%7Ccjones%40microsoft.com%7C62c68095ab5f4b35d83408d48545fa46%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636279983009613773&sdata=VX8lB4MlKxzBrX4boGyizHLtns1uG1FGwU4DdCWDAnE%3D&reserved=0> and would take its own time to merge and is independent of kubernetes release cycles. @chrisjones262<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fchrisjones262&data=02%7C01%7Ccjones%40microsoft.com%7C62c68095ab5f4b35d83408d48545fa46%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636279983009613773&sdata=0jPj%2Fcx1JWZ8AQquHWff1jWG4dL7QEyOs2XsvgNSOxE%3D&reserved=0> do you agree? — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fkubernetes%2Fkubernetes.github.io%2Fpull%2F2810%23issuecomment-294400647&data=02%7C01%7Ccjones%40microsoft.com%7C62c68095ab5f4b35d83408d48545fa46%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636279983009613773&sdata=VnvC%2Fi0J02gWd6qCW%2BgoYRQFIvUvJLfEGoLc9YJ6YpY%3D&reserved=0>, or mute the thread<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fnotifications%2Funsubscribe-auth%2FAJt1ZbD5xaQoZQ00gq8Qj7kW85uJm61kks5rwuNXgaJpZM4MdAO2&data=02%7C01%7Ccjones%40microsoft.com%7C62c68095ab5f4b35d83408d48545fa46%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636279983009613773&sdata=xAbV2hnBtMagAvfR3pA3LUgtQjIF3Ehawlp9iO0tASU%3D&reserved=0>.