Mesos-DNS is configured through the parameters in a JSON file. You can point Mesos-DNS to a specific configuration file using the argument -config=pathto/file.json. If no configuration file is passed as an argument, Mesos-DNS will look for file config.json in the current directory.
The configuration file should include the following fields:
{
"zk": "zk://10.101.160.15:2181/mesos",
"masters": ["10.101.160.15:5050", "10.101.160.16:5050", "10.101.160.17:5050"],
"mesosCredentials": {
"principal": "my-mesos-dns-principal",
"secret": "super-secret"
},
"mesosAuthentication": "basic",
"refreshSeconds": 60,
"ttl": 60,
"domain": "mesos",
"port": 53,
"resolvers": ["169.254.169.254"],
"zoneResolvers": {
"weave": ["172.17.0.1"]
},
"timeout": 5,
"httpon": true,
"dnson": true,
"httpport": 8123,
"externalon": true,
"listener": "10.101.160.16",
"SOAMname": "ns1.mesos",
"SOARname": "root.ns1.mesos",
"SOARefresh": 60,
"SOARetry": 600,
"SOAExpire": 86400,
"SOAMinttl": 60,
"IPSources": ["netinfo", "mesos", "host"]
}
zk is a link to the Zookeeper instances on the Mesos cluster. Its format is zk://host1:port1,host2:port2/mesos/, where the number of hosts can be one or more. The default port for Zookeeper is 2181. Mesos-DNS will monitor the Zookeeper instances to detect the current leading master.
zkDetectionTimeout defines how long to wait (in seconds) for Zookeeper to report a new leading Mesos master. This timeout is activated on:
If a non-zero timeout is specified and the timeout threshold is exceeded before a new leading Mesos master is reported by the ZK-based master detector, the program will exit.
Defaults to 30 seconds.
masters is a comma separated list with the IP address and port number for the master(s) in the Mesos cluster. Mesos-DNS will automatically find the leading master at any point in order to retrieve state about running tasks. If there is no leading master or the leading master is not responsive, Mesos-DNS will continue serving DNS requests based on stale information about running tasks. The masters field is required.
It is sufficient to specify just one of the zk or masters field. If both are defined, Mesos-DNS will first attempt to detect the leading master through Zookeeper. If Zookeeper is not responding, it will fall back to using the masters field. Both zk and master fields are static. To update them you need to restart Mesos-DNS. We recommend you use the zk field since this allows the dynamic addition to Mesos masters.
mesosAuthentication configures the authentication mechanism for talking to the Mesos cluster. Valid values are ‘’, ‘basic’ (see mesosCredentials), and ‘iam’. Default is ‘’.
mesosCredentials is a dictionary containing a principal and a secret, corresponding to a configured authentication principal for the Mesos masters. Starting with Mesos 1.0.0, if the masters have http_authentication enabled, then Mesos-DNS must authenticate. You must specify mesosAuthentication: basic to use this configuration.
refreshSeconds is the frequency at which Mesos-DNS updates DNS records based on information retrieved from the Mesos master. The default value is 60 seconds.
stateTimeoutSeconds is the time that Mesos-DNS will wait for the Mesos master to respond to its request for state.json in seconds. The default value is 300 seconds.
ttl is the time to live value for DNS records served by Mesos-DNS, in seconds. It allows caching of the DNS record for a period of time in order to reduce DNS request rate. ttl should be equal or larger than refreshSeconds. The default value is 60 seconds.
domain is the domain name for the Mesos cluster. The domain name can use characters [a-z, A-Z, 0-9], - if it is not the first or last character of a domain portion, and . as a separator of the textual portions of the domain name. We recommend you avoid valid top-level domain names. The default value is mesos.
port is the port number that Mesos-DNS monitors for incoming DNS requests. Requests can be sent over TCP or UDP. We recommend you use port 53 as several applications assume that the DNS server listens to this port. The default value is 53.
resolvers is a comma separated list with the IP addresses of external DNS servers that Mesos-DNS will contact to resolve any DNS requests outside the domain. We recommend that you list the nameservers specified in the /etc/resolv.conf on the server Mesos-DNS is running. Alternatively, you can list 8.8.8.8, which is the Google public DNS address. The resolvers field is required.
zoneResolvers is a dictionary of zone-specific external DNS servers, where the key is the matching zone (sans leading / trailing .). You can use this configuration option to route a subset of DNS queries to a specific set of DNS servers. Note, general, catch-all resolvers are still specified with resolvers.
timeout is the timeout threshold, in seconds, for connections and requests to external DNS requests. The default value is 5 seconds.
listener is the IP address of Mesos-DNS. In SOA replies, Mesos-DNS identifies hostname mesos-dns.domain as the primary nameserver for the domain. It uses this IP address in an A or AAAA record for mesos-dns.domain. The default value is “0.0.0.0”, which instructs Mesos-DNS to create an A record for every IP address associated with a network interface on the server that runs the Mesos-DNS process.
dnson is a boolean field that controls whether Mesos-DNS listens for DNS requests or not. The default value is true.
httpon is a boolean field that controls whether Mesos-DNS listens for HTTP requests or not. The default value is true.
httpport is the port number that Mesos-DNS monitors for incoming HTTP requests. The default value is 8123.
externalon is a boolean field that controls whether Mesos-DNS serves requests outside of the Mesos domain. The default value is true.
srvRecordDefaultWeight is an int field field that defines the default weight given to SRV records. The default value is 1.
SOAMname specifies the domain name of the name server that was the original or primary source of data for the configured domain.
The configured name will always be converted to a FQDN by ensuring it ends with a .. The default value is ns1.mesos.
SOARname specifies the mailbox of the person responsible for the configured domain. The format is mailbox.domain, using a . instead of @. i.e. root@ns1.mesos becomes root.ns1.mesos. For details, see the RFC-1035. The default value is root.ns1.mesos.
SOARefresh is the REFRESH field in the SOA record for the Mesos domain. For details, see the RFC-1035. The default value is 60.
SOARetry is the RETRY field in the SOA record for the Mesos domain. For details, see the RFC-1035. The default value is 600.
SOAExpire is the EXPIRE field in the SOA record for the Mesos domain. For details, see the RFC-1035. The default value is 86400.
SOAMinttl is the minimum TTL field in the SOA record for the Mesos domain. For details, see the RFC-2308. The default value is 60.
recurseon controls if the DNS replies for names in the Mesos domain will indicate that recursion is available. The default value is true.
enforceRFC952 will enforce an older, more strict set of rules for DNS labels. For details, see the RFC-952. The default value is false.
IPSources defines a fallback list of IP sources for task records,
sorted by priority. If you use Docker, and enable the netinfo IPSource, it may cause tasks to become unreachable, because after Mesos 0.25, the Docker executor publishes the container’s internal IP in NetworkInfo. The default value is: ["netinfo", "mesos", "host"]
host: Host IP of the Mesos slave where a task is running.mesos: Mesos containerizer IP. DEPRECATEDdocker: Docker containerizer IP. DEPRECATEDnetinfo: Mesos 0.25 NetworkInfo.