akos/frqdnsmasq
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1 Commit 1 Branch 0 Tags
main
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
NAGY Akos (external) 9696cbfd64 init
2025-10-16 14:06:39 +03:00
backends
init
2025-10-16 14:06:39 +03:00
dnsmasq
init
2025-10-16 14:06:39 +03:00
docker-compose.yaml
init
2025-10-16 14:06:39 +03:00
README.md
init
2025-10-16 14:06:39 +03:00

README.md

DNSMasq divergence testbed

This project spins up one dnsmasq in front of four backend DNS servers (CoreDNS). Each backend returns a different A record for the same name so you can observe how dnsmasq behaves when upstreams disagree.

Topology

  • dnsmasq: listens on host UDP/TCP 5353, forwards to backends at 192.168.243.11-14
  • backend1..backend4 (CoreDNS): each serves a different answer for test.local:
    • backend1 → 10.0.0.1
    • backend2 → 10.0.0.2
    • backend3 → 10.0.0.3
    • backend4 → 10.0.0.4

Custom bridge network: 192.168.243.0/24 with static IPs for reproducibility.

Files

  • docker-compose.yaml: services and fixed IP networking
  • dnsmasq/dnsmasq.conf: forwards to all four backends, logging enabled, caching enabled
  • backends/backend*/Corefile: CoreDNS configs returning distinct answers

Run

docker compose -f /home/akos/docker/dnsmasq/docker-compose.yaml up -d

Wait a few seconds until all containers are healthy.

Test from the host

Query via dnsmasq on port 5353:

dig @127.0.0.1 -p 5353 test.local A +short

Run several times to observe responses and dnsmasq caching behavior. You should see one of: 10.0.0.1, 10.0.0.2, 10.0.0.3, 10.0.0.4.

Test from within the dnsmasq container (optional)

The andyshinn/dnsmasq image is Alpine-based; install dig temporarily:

docker exec -it dnsmasq sh -c "apk add --no-cache bind-tools >/dev/null && dig @127.0.0.1 test.local A +short"

Inspect logs

dnsmasq query logging is enabled:

docker logs -f dnsmasq

Adjusting behavior

To explore how dnsmasq handles disagreement:

  • Disable cache (no stored answers): set cache-size=0 in dnsmasq/dnsmasq.conf, then recreate the service.
  • Force first-server order: add strict-order to dnsmasq/dnsmasq.conf so servers are queried in listed order.
  • Query all upstreams: add all-servers so dnsmasq queries every upstream in parallel and picks the first reply.

Apply changes by recreating the service:

docker compose -f /home/akos/docker/dnsmasq/docker-compose.yaml up -d --force-recreate dnsmasq

Resetting the cache

docker restart dnsmasq

Clean up

docker compose -f /home/akos/docker/dnsmasq/docker-compose.yaml down -v

Notes

  • The backends are simple CoreDNS instances using the hosts plugin for test.local; unknown names forward to public resolvers.
  • The compose file exposes 53/udp and 53/tcp on host port 5353 to avoid clashing with any local resolver.
Reference in New Issue View Git Blame Copy Permalink
Description
Test dnsmasq behavior with 4 backend dns servers.
Readme 26 KiB