Add config coredns_external_zones (#5280)

Allows to add custom zone resolving servers.

Add config coredns_external_zones (#5280)
3237b270 · Mateus Caruccio · GitHub · e8c49b00 · 3237b270 · 3237b270
Unverified Commit 3237b270 authored 5 years ago by Mateus Caruccio Committed by GitHub 5 years ago
--- a/docs/dns-stack.md
+++ b/docs/dns-stack.md
@@ -42,6 +42,36 @@ DNS servers in early cluster deployment when no cluster DNS is available yet.

 ## DNS modes supported by Kubespray

+### coredns_external_zones
+
+Array of optional external zones to coredns forward queries to. It's  injected into
+`coredns`' config file before default kubernetes zone. Use it as an optimization for well-known zones and/or internal-only
+domains, i.e. VPN for internal networks (default is unset)
+
+Example:
+
+```yaml
+coredns_external_zones:
+- zones:
+  - example.com
+  - example.io:1053
+  nameservers:
+  - 1.1.1.1
+  - 2.2.2.2
+  cache: 5
+- zones:
+  - https://mycompany.local:4453
+  nameservers:
+  - 192.168.0.53
+  cache: 0
+```
+
+or as INI
+
+```ini
+coredns_external_zones=[{"cache": 30,"zones":["example.com","example.io:453"],"nameservers":["1.1.1.1","2.2.2.2"]}]'
+```
+
 You can modify how Kubespray sets up DNS for your cluster with the variables ``dns_mode`` and ``resolvconf_mode``.

 ### dns_mode

--- a/roles/kubernetes-apps/ansible/templates/coredns-config.yml.j2
+++ b/roles/kubernetes-apps/ansible/templates/coredns-config.yml.j2
@@ -8,6 +8,18 @@ metadata:
      addonmanager.kubernetes.io/mode: EnsureExists
 data:
  Corefile: |
+{% if coredns_external_zones is defined and coredns_external_zones|length > 0 %}
+{%   for block in coredns_external_zones %}
+    {{ block['zones'] | join(' ') }} {
+        log
+        errors
+        forward . {{ block['nameservers'] | join(' ') }}
+        loadbalance
+        cache {{ block['cache'] | default(5) }}
+        reload
+    }
+{%   endfor %}
+{% endif %}
    .:53 {
        errors
        health