Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Telepresence breaks ec2 machine's internet #2389

Closed
bhavitsharma opened this issue Feb 13, 2022 · 19 comments
Closed

Telepresence breaks ec2 machine's internet #2389

bhavitsharma opened this issue Feb 13, 2022 · 19 comments

Comments

@bhavitsharma
Copy link

bhavitsharma commented Feb 13, 2022
edited
Loading

Describe the bug

Hi, I am using telepresence to connect to my staging and CI EKS clusters via EC2 machines. Connecting to CI clusters works amazingly well, but connecting to staging clusters don't. Specifically, when I connect to telepresence via sudo -E telepresence connect, the root/user daemon starts but then it somehow interferes with my EC2's internet. Worst case is I am not able to SSH in my machine, the best case - my EC2 machine can't even ping google.com unless I do telepresence quit.

Orthogonal question: Is there a way to run telepresence in a more isolated way such that it doesn't interfere with my machine's internet?

To Reproduce
Steps to reproduce the behavior:

  1. When I run sudo -E telepresence connect
  2. My ec2's internet vanishes until I reboot/disconnect telepresence.

Expected behavior
Telepresence to not mess with my machine's internet.

Versions

  • 2.4.10

Additional context
Due to PII, I can't share all the logs gathered from telepresence gather-logs but if there's any specific log which is required then I can share after redacting.

Seeing logs like:
Connector

2022-02-13 01:26:39.3373 info    connector/background-manager : Existing Traffic Manager 2.4.11 not owned by cli or does not need upgrade, will not modify
2022-02-13 01:29:06.6510 error   connector/server-grpc/conn=2 : Tunnel manager.Send() failed: EOF

2022-02-13 13:59:48.8730 error   connector/server-grpc/conn=9/Uninstall-13 : Unable to look for existing helm release: Kubernetes cluster unreachable: Get "<cluster>": dial tcp: lookup <cluster> on 127.0.0.53:53: read udp 127.0.0.1:52514->127.0.0.53:53: i/o timeout. Assuming it's already gone...

Daemon

2022-02-13 13:23:35.0659 info    Logging at this level "info"
2022-02-13 13:23:35.0661 info    ---
2022-02-13 13:23:35.0661 info    Telepresence daemon v2.4.10 (api v3) starting...
2022-02-13 13:23:35.0661 info    PID is 193
2022-02-13 13:23:35.0661 info    
2022-02-13 13:23:35.0869 info    daemon/server-grpc : gRPC server started
2022-02-13 13:23:36.7385 info    daemon/server-grpc/conn=2 : Adding never-proxy subnet 50.18.23.135/32
2022-02-13 13:23:36.7491 info    daemon/server-grpc/conn=2 : Adding never-proxy subnet 52.8.73.143/32
2022-02-13 13:23:36.7535 info    daemon/watch-cluster-info : Adding service subnet 10.100.0.0/16
2022-02-13 13:23:36.7536 info    daemon/watch-cluster-info : Adding pod subnet 172.31.0.0/18
2022-02-13 13:23:36.7540 info    daemon/watch-cluster-info : started command ["ip" "a" "add" "10.100.0.0/16" "dev" "tel0"] : dexec.pid="228"
2022-02-13 13:23:36.7541 info    daemon/watch-cluster-info :  : dexec.pid="228" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.7548 info    daemon/watch-cluster-info : finished successfully: exit status 0 : dexec.pid="228"
2022-02-13 13:23:36.7551 info    daemon/watch-cluster-info : started command ["ip" "a" "add" "172.31.0.0/18" "dev" "tel0"] : dexec.pid="229"
2022-02-13 13:23:36.7552 info    daemon/watch-cluster-info :  : dexec.pid="229" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.7561 info    daemon/watch-cluster-info : finished successfully: exit status 0 : dexec.pid="229"
2022-02-13 13:23:36.7562 info    daemon/watch-cluster-info : Setting cluster DNS to 10.100.0.10
2022-02-13 13:23:36.7562 info    daemon/watch-cluster-info : Setting cluster domain to "cluster.local."
2022-02-13 13:23:36.7588 info    daemon/server-router/MGR stream : Connected to Manager 2.4.11
2022-02-13 13:23:36.8048 info    daemon/server-dns/docker : Automatically set -dns=127.0.0.53
2022-02-13 13:23:36.8085 info    daemon/server-dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-D" "OUTPUT" "-j" "telepresence-dns"] : dexec.pid="230"
2022-02-13 13:23:36.8086 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="230" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.8134 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="230" dexec.stream="stdout+stderr" dexec.data="iptables v1.8.4 (legacy): Couldn't load target `telepresence-dns':No such file or directory\n"
2022-02-13 13:23:36.8135 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="230" dexec.stream="stdout+stderr" dexec.data="\n"
2022-02-13 13:23:36.8135 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="230" dexec.stream="stdout+stderr" dexec.data="Try `iptables -h' or 'iptables --help' for more information.\n"
2022-02-13 13:23:36.8136 info    daemon/server-dns/docker/NAT-redirect : finished with error: exit status 2 : dexec.pid="230"
2022-02-13 13:23:36.8138 info    daemon/server-dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-F" "telepresence-dns"] : dexec.pid="231"
2022-02-13 13:23:36.8139 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="231" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.8144 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="231" dexec.stream="stdout+stderr" dexec.data="iptables: No chain/target/match by that name.\n"
2022-02-13 13:23:36.8145 info    daemon/server-dns/docker/NAT-redirect : finished with error: exit status 1 : dexec.pid="231"
2022-02-13 13:23:36.8147 info    daemon/server-dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-X" "telepresence-dns"] : dexec.pid="232"
2022-02-13 13:23:36.8148 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="232" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.8153 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="232" dexec.stream="stdout+stderr" dexec.data="iptables: No chain/target/match by that name.\n"
2022-02-13 13:23:36.8154 info    daemon/server-dns/docker/NAT-redirect : finished with error: exit status 1 : dexec.pid="232"
2022-02-13 13:23:36.8156 info    daemon/server-dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-N" "telepresence-dns"] : dexec.pid="233"
2022-02-13 13:23:36.8157 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="233" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.8163 info    daemon/server-dns/docker/NAT-redirect : finished successfully: exit status 0 : dexec.pid="233"
2022-02-13 13:23:36.8165 info    daemon/server-dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-I" "OUTPUT" "1" "-j" "telepresence-dns"] : dexec.pid="234"
2022-02-13 13:23:36.8166 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="234" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.8180 info    daemon/server-dns/docker/NAT-redirect : finished successfully: exit status 0 : dexec.pid="234"
2022-02-13 13:23:36.8184 info    daemon/server-dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-A" "telepresence-dns" "-p" "udp" "--source" "127.0.0.1" "--sport" "39891" "-j" "RETURN"] : dexec.pid="235"
2022-02-13 13:23:36.8185 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="235" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.8211 info    daemon/server-dns/docker/NAT-redirect : finished successfully: exit status 0 : dexec.pid="235"
2022-02-13 13:23:36.8213 info    daemon/server-dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-A" "telepresence-dns" "-p" "udp" "--dest" "127.0.0.53/32" "--dport" "53" "-j" "REDIRECT" "--to-ports" "52912"] : dexec.pid="236"
2022-02-13 13:23:36.8213 info    daemon/server-dns/docker/NAT-redirect :  : dexec.pid="236" dexec.stream="stdin" dexec.err="EOF"
2022-02-13 13:23:36.8265 info    daemon/server-dns/docker/NAT-redirect : finished successfully: exit status 0 : dexec.pid="236"
2022-02-13 13:24:21.0625 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:21.0626 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:21.0626 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:21.0626 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:21.0626 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:26.0630 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:26.0630 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:26.0631 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:26.0631 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:26.0631 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:31.3219 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:31.3219 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:31.3219 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:31.3220 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:31.3220 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:31.3220 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:36.3224 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:36.3225 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:36.3225 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:36.3225 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:36.3226 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:36.3226 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:39.0648 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:55046->127.0.0.53:53: i/o timeout
2022-02-13 13:24:41.3406 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:41.3406 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:41.3407 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:41.3407 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:46.3398 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:46.3398 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:46.3398 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:46.3398 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:51.3261 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:51.3261 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:51.3261 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:51.3261 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:56.3256 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:56.3257 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:56.3256 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:56.3256 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:24:59.0668 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:35353->127.0.0.53:53: i/o timeout
2022-02-13 13:25:01.3395 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:01.3395 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:01.3396 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:01.3396 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:06.3353 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:06.3354 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:06.3353 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:06.3354 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:11.3286 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:11.3286 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:11.3287 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:11.3287 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:16.3285 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:16.3286 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:16.3286 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:16.3285 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:19.0698 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:60155->127.0.0.53:53: i/o timeout
2022-02-13 13:25:21.3429 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:21.3429 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:21.3428 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:21.3429 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:26.3392 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:26.3393 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:26.3393 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:26.3393 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:31.0924 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:31.0924 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:36.0878 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:36.0879 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:39.0740 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:38120->127.0.0.53:53: i/o timeout
2022-02-13 13:25:41.0752 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:41.0753 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:46.0755 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:46.0756 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:46.0756 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:46.0756 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:51.0898 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:51.0898 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:51.0899 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:51.0899 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:56.9214 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:56.9215 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:56.9215 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:56.9215 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:56.9215 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:56.9215 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:25:59.0764 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:44467->127.0.0.53:53: i/o timeout
2022-02-13 13:26:01.9262 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:01.9262 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:01.9263 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:01.9263 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:01.9263 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:01.9263 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:06.9900 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:06.9901 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:06.9900 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:06.9901 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:06.9901 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:06.9901 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:11.9472 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:11.9472 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:11.9473 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:11.9473 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:11.9473 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:11.9473 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:19.0796 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:33979->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0958 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0958 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0958 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0958 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0959 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0959 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0959 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0959 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0960 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0960 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0960 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0960 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0960 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0960 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0961 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0961 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0961 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0961 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0961 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0961 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0961 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0961 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0962 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0962 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0962 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0962 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0962 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:36.0962 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:39.0825 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:34883->127.0.0.53:53: i/o timeout
2022-02-13 13:26:41.0835 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:41.0835 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:41.0836 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:41.0836 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:41.0836 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:41.0836 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:46.0845 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:46.0846 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:46.0846 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:46.0846 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:46.0846 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:46.0846 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:51.0955 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:51.0955 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:51.0956 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:51.0956 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:51.0956 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:51.0956 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:56.0942 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:56.0943 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:56.0943 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:56.0943 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:56.0944 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:56.0944 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:26:59.0865 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:37320->127.0.0.53:53: i/o timeout
2022-02-13 13:27:01.0872 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:01.0872 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:01.0873 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:01.0873 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:01.0873 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:01.0873 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:06.0884 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:06.0884 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:06.0884 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:06.0885 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:11.1045 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:11.1046 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:11.1046 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:11.1046 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:16.1006 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:16.1007 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:16.1007 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:16.1007 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:19.0896 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:58771->127.0.0.53:53: i/o timeout
2022-02-13 13:27:21.0903 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:21.0904 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:26.0906 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:26.0906 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:26.0907 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:26.0907 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:31.1043 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:31.1044 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:31.1044 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:31.1044 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:36.1120 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:36.1121 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:36.1121 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:36.1121 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:39.0918 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:43301->127.0.0.53:53: i/o timeout
2022-02-13 13:27:41.0927 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:41.0927 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:41.0928 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:41.0928 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:46.0925 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:46.0925 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:51.1020 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:51.1020 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:56.1050 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:56.1050 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:27:59.0941 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:33507->127.0.0.53:53: i/o timeout
2022-02-13 13:28:01.0946 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:01.0946 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:06.0951 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:06.0951 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:11.1069 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:11.1069 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:16.1049 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:16.1049 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:19.0963 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:34977->127.0.0.53:53: i/o timeout
2022-02-13 13:28:21.0973 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:21.0973 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:26.0979 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:26.0979 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:31.1118 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:31.1118 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:34.1052 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:28:36.1062 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:36.1062 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:39.0997 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:39160->127.0.0.53:53: i/o timeout
2022-02-13 13:28:41.1012 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:41.1013 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:46.1008 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:46.1009 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:51.1156 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:51.1156 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:54.1177 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:28:56.1181 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:56.1181 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:28:59.1024 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:52227->127.0.0.53:53: i/o timeout
2022-02-13 13:29:01.1032 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:01.1032 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:06.1046 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:06.1047 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:11.1174 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:11.1175 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:14.1135 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:29:16.1146 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:16.1146 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:19.1049 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:35760->127.0.0.53:53: i/o timeout
2022-02-13 13:29:21.1056 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:21.1056 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:26.1071 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:26.1072 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:31.1215 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:31.1216 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:34.1222 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:29:36.1230 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:36.1230 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:39.1083 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:48514->127.0.0.53:53: i/o timeout
2022-02-13 13:29:41.1094 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:41.1095 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:46.1108 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:46.1109 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:46.1110 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:46.1110 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:51.1184 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:51.1185 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:51.1185 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:51.1185 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:54.1337 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:29:56.1344 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:56.1344 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:56.1345 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:56.1345 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:29:59.1127 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:52449->127.0.0.53:53: i/o timeout
2022-02-13 13:30:01.1137 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:01.1138 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:01.1139 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:01.1139 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:06.1142 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:06.1142 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:06.1143 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:06.1143 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:08.5349 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:09.1652 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:11.1659 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:11.1660 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:11.1659 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:11.1660 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:14.1222 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:16.2579 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:16.2580 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:16.2580 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:16.2580 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:19.1155 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:48125->127.0.0.53:53: i/o timeout
2022-02-13 13:30:21.2628 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:21.2628 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:21.2629 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:21.2627 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:26.3170 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:26.3171 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:26.3171 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:26.3170 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:29.1292 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:29.2814 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:31.2816 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:31.2817 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:31.2817 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:31.2817 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:34.1354 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:36.1359 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:36.1359 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:38.2081 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:38.2081 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:39.1178 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:50489->127.0.0.53:53: i/o timeout
2022-02-13 13:30:41.1182 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:41.1183 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:43.2130 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:43.2130 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:46.1186 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:46.1187 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:48.2351 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:48.2351 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:49.1290 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:51.1296 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:51.1296 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:51.2304 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:53.2308 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:53.2308 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:54.1388 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:30:56.1391 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:56.1392 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:30:59.1206 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:59145->127.0.0.53:53: i/o timeout
2022-02-13 13:31:01.9039 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:01.9039 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:01.9040 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:01.9040 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:06.9086 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:06.9086 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:06.9087 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:06.9087 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:09.9299 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:31:11.9301 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:11.9302 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:11.9302 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:11.9302 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:14.1294 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:31:14.9307 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:31:16.9311 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:16.9311 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:16.9311 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:16.9311 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:19.1237 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:59946->127.0.0.53:53: i/o timeout
2022-02-13 13:31:21.1243 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:21.1244 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:26.1253 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:26.1254 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:31.1540 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:31.1541 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:31.1541 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:31.1541 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:34.1429 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:31:36.1438 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:36.1438 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:36.1439 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:36.1439 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:37.7106 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:31:39.1265 info    daemon/background-metriton : scout report "incluster_dns_query" failed: Post "https://metriton.datawire.io/scout": dial tcp: lookup metriton.datawire.io on 127.0.0.53:53: read udp 127.0.0.1:53171->127.0.0.53:53: i/o timeout
2022-02-13 13:31:41.1273 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:41.1273 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:41.1273 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:41.1273 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:46.1281 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:46.1281 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:46.1282 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:46.1282 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:49.1424 info    daemon/server-dns/docker/Server : scout report "incluster_dns_query" discarded. Output buffer is full (or closed)
2022-02-13 13:31:50.9147 info    daemon/daemon-quit : Shutting down connector
2022-02-13 13:31:50.9147 info    daemon/server-dns/docker:shutdown_logger : shutting down (gracefully)...
2022-02-13 13:31:50.9147 info    daemon/server-dns/docker/Server:shutdown_logger : shutting down (gracefully)...
2022-02-13 13:31:50.9147 info    daemon:shutdown_logger : shutting down (gracefully)...
2022-02-13 13:31:51.1436 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
2022-02-13 13:31:51.1436 error   daemon/server-dns/docker/Server : read udp 127.0.0.1:39891->127.0.0.53:53: i/o timeout
time="2022-02-13T13:31:51Z" level=info dexec.pid=280 msg="started command [\"iptables\" \"-t\" \"nat\" \"-D\" \"OUTPUT\" \"-j\" \"telepresence-dns\"]"
time="2022-02-13T13:31:51Z" level=info dexec.pid=280 dexec.stream=stdin dexec.err=EOF
time="2022-02-13T13:31:51Z" level=info dexec.pid=280 msg="finished successfully: exit status 0"
time="2022-02-13T13:31:51Z" level=info dexec.pid=281 msg="started command [\"iptables\" \"-t\" \"nat\" \"-F\" \"telepresence-dns\"]"
time="2022-02-13T13:31:51Z" level=info dexec.pid=281 dexec.stream=stdin dexec.err=EOF
time="2022-02-13T13:31:51Z" level=info dexec.pid=281 msg="finished successfully: exit status 0"
time="2022-02-13T13:31:51Z" level=info dexec.pid=282 msg="started command [\"iptables\" \"-t\" \"nat\" \"-X\" \"telepresence-dns\"]"
time="2022-02-13T13:31:51Z" level=info dexec.pid=282 dexec.stream=stdin dexec.err=EOF
time="2022-02-13T13:31:51Z" level=info dexec.pid=282 msg="finished successfully: exit status 0"
2022-02-13 13:31:52.9155 info    daemon:shutdown_logger : shutting down (not-so-gracefully)...
@thallgren
Copy link
Member

First off, you should never run telepresence with sudo. Only the root daemon needs sudo. If you have problems with the daemon not starting, please look at our troubleshooting guide.

The logs aren't that helpful unless you run telepresence loglevel debug before your reproduce the problem. So please try that, then the daemon.log is probably of most interest, so we can start by looking at that one.

I also suggest you try the telepresence test-vpn command to check if you're running into problem with overlapping networks.

@thallgren
Copy link
Member

To answer the question regarding isolating telepresence. Yes, it can be done. You can run telepresence in a docker container. That will only modify the docker containers network and depending on how that network is setup, it can be either completely isolated or confined to a network only reachable from other docker containers. Doing so will of course mean that you won't be able to access the cluster using cluster DNS names from outside of those containers so a process acting as an interceptor must also run in a docker container.

@thallgren
Copy link
Member

Thinking more about this, the logs from the traffic-manager pod would also be very interesting to see at the point when the ec2 machine's internet breaks.

@thallgren
Copy link
Member

thallgren commented Feb 14, 2022
edited
Loading

Another thing of interest is what agent that is installed on the pod that you're intercepting. It's easy to determine by looking at the very start of the log for that pod's traffic-agent container where it says "Sidecar version xxx" or "Traffic Agent xxx".

@thallgren
Copy link
Member

@bhavitsharma can you please try this with the latest 2.5.1 version? I was able to reproduce your problem on an ec2 instance and 2.5.1 should resolve it. It would be great to get that verified.

@bhavitsharma
Copy link
Author

Thanks for reaching out. I'll test this and get back to you ASAP.

@bhavitsharma
Copy link
Author

bhavitsharma commented Feb 22, 2022
edited
Loading

Hi @thallgren , I am still running into same issue. Here's what I did (v 2.5.1).

  1. eval $(some_script_to_auth_into_staging_cluster)
  2. telepresence loglevel debug
  3. Now, the machine hangs.
  4. I also tried telepresence test-vpn but it succeeded :/

The thing that stands out is I have to open a tty shell via ec2 serial console to kill the telepresence agent (because SSH stops working). Even after I kill it, I can SSH in my ec2 but the internet is still disconnected. ping -c 3 google.com or any other service doesn't work.

Here's the output of telepresence test-vpn (Note that I didn't disconnect from any VPN since I don't think I am running any VPN, all our k8 clusters and EC2 machines share the same VPC).

Telepresence Network is already disconnected
Telepresence Traffic Manager is already disconnected
Please disconnect from your VPN now and hit enter once you're disconnected...

Please connect to your VPN now and hit enter once you're connected...

Launching Telepresence Root Daemon
Launching Telepresence User Daemon
Connected to context <cluster_context>
Telepresence Network disconnecting...done
Telepresence Traffic Manager disconnecting...done

---------- Test Results:
✅ pod subnet 172.31.0.0/18 is clear of VPN
✅ svc subnet 10.100.0.0/16 is clear of VPN

Here are the daemon logs

2022-02-22 08:31:13.0513 info    Telepresence daemon v2.5.1 (api v3) starting...
2022-02-22 08:31:13.0513 info    PID is 190
2022-02-22 08:31:13.0513 info    
2022-02-22 08:31:13.0541 info    daemon/server-grpc : gRPC server started
2022-02-22 08:31:14.6010 info    daemon/session : Connected to Manager 2.5.1
2022-02-22 08:31:14.6336 info    daemon/session : Adding never-proxy subnet 52.8.73.143/32
2022-02-22 08:31:14.6348 info    daemon/session : Adding never-proxy subnet 50.18.23.135/32
2022-02-22 08:31:14.6392 info    daemon/session/watch-cluster-info : Adding service subnet 10.100.0.0/16
2022-02-22 08:31:14.6392 info    daemon/session/watch-cluster-info : Adding pod subnet 172.31.0.0/18
2022-02-22 08:31:14.6394 info    daemon/session/watch-cluster-info : started command ["ip" "a" "add" "10.100.0.0/16" "dev" "tel0"] : dexec.pid="216"
2022-02-22 08:31:14.6395 info    daemon/session/watch-cluster-info :  : dexec.pid="216" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6403 info    daemon/session/watch-cluster-info : finished successfully: exit status 0 : dexec.pid="216"
2022-02-22 08:31:14.6407 info    daemon/session/watch-cluster-info : started command ["ip" "a" "add" "172.31.0.0/18" "dev" "tel0"] : dexec.pid="217"
2022-02-22 08:31:14.6407 info    daemon/session/watch-cluster-info :  : dexec.pid="217" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6426 info    daemon/session/watch-cluster-info : finished successfully: exit status 0 : dexec.pid="217"
2022-02-22 08:31:14.6427 info    daemon/session/watch-cluster-info : Setting cluster DNS to 10.100.0.10
2022-02-22 08:31:14.6427 info    daemon/session/watch-cluster-info : Setting cluster domain to "cluster.local."
2022-02-22 08:31:14.6427 info    daemon/session/dns/docker : Automatically set -dns=127.0.0.53
2022-02-22 08:31:14.6434 debug   Logging at this level "debug"
2022-02-22 08:31:14.6452 debug   daemon/session/dns/docker/SearchPaths : [] -> [ambassador cert-manager default digibank kube-node-lease kube-public kube-system monitoring]
2022-02-22 08:31:14.6452 debug   daemon/session/dns/docker/SearchPaths : Performing initial recursion check with tel2-recursion-check.kube-system
2022-02-22 08:31:14.6456 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:14.6467 info    daemon/session/dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-D" "OUTPUT" "-j" "TELEPRESENCE_DNS"] : dexec.pid="218"
2022-02-22 08:31:14.6468 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="218" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6498 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:14.6499 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:14.6499 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:14.6499 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:14.6534 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="218" dexec.stream="stdout+stderr" dexec.data="iptables v1.8.4 (legacy): "
2022-02-22 08:31:14.6534 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="218" dexec.stream="stdout+stderr" dexec.data="Couldn't load target `TELEPRESENCE_DNS':No such file or directory\n"
2022-02-22 08:31:14.6535 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="218" dexec.stream="stdout+stderr" dexec.data="\n"
2022-02-22 08:31:14.6535 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="218" dexec.stream="stdout+stderr" dexec.data="Try `iptables -h' or 'iptables --help' for more information.\n"
2022-02-22 08:31:14.6537 info    daemon/session/dns/docker/NAT-redirect : finished with error: exit status 2 : dexec.pid="218"
2022-02-22 08:31:14.6542 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:14.6542 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:14.6543 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:14.6553 info    daemon/session/dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-F" "TELEPRESENCE_DNS"] : dexec.pid="219"
2022-02-22 08:31:14.6554 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="219" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6563 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="219" dexec.stream="stdout+stderr" dexec.data="iptables: No chain/target/match by that name.\n"
2022-02-22 08:31:14.6565 info    daemon/session/dns/docker/NAT-redirect : finished with error: exit status 1 : dexec.pid="219"
2022-02-22 08:31:14.6625 info    daemon/session/dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-X" "TELEPRESENCE_DNS"] : dexec.pid="220"
2022-02-22 08:31:14.6626 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="220" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6632 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="220" dexec.stream="stdout+stderr" dexec.data="iptables: No chain/target/match by that name.\n"
2022-02-22 08:31:14.6634 info    daemon/session/dns/docker/NAT-redirect : finished with error: exit status 1 : dexec.pid="220"
2022-02-22 08:31:14.6638 info    daemon/session/dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-N" "TELEPRESENCE_DNS"] : dexec.pid="221"
2022-02-22 08:31:14.6639 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="221" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6648 info    daemon/session/dns/docker/NAT-redirect : finished successfully: exit status 0 : dexec.pid="221"
2022-02-22 08:31:14.6651 info    daemon/session/dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-A" "TELEPRESENCE_DNS" "-p" "udp" "--source" "127.0.0.1" "--sport" "35812" "-j" "RETURN"] : dexec.pid="222"
2022-02-22 08:31:14.6651 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="222" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6727 info    daemon/session/dns/docker/NAT-redirect : finished successfully: exit status 0 : dexec.pid="222"
2022-02-22 08:31:14.6805 info    daemon/session/dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-A" "TELEPRESENCE_DNS" "-p" "udp" "--dest" "127.0.0.53/32" "--dport" "53" "-j" "DNAT" "--to-destination" "127.0.0.1:43568"] : dexec.pid="223"
2022-02-22 08:31:14.6806 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="223" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6843 info    daemon/session/dns/docker/NAT-redirect : finished successfully: exit status 0 : dexec.pid="223"
2022-02-22 08:31:14.6846 info    daemon/session/dns/docker/NAT-redirect : started command ["iptables" "-t" "nat" "-I" "OUTPUT" "1" "-j" "TELEPRESENCE_DNS"] : dexec.pid="224"
2022-02-22 08:31:14.6847 info    daemon/session/dns/docker/NAT-redirect :  : dexec.pid="224" dexec.stream="stdin" dexec.err="EOF"
2022-02-22 08:31:14.6856 info    daemon/session/dns/docker/NAT-redirect : finished successfully: exit status 0 : dexec.pid="224"
2022-02-22 08:31:19.6464 debug   daemon/session/dns/docker/Server : LookupHost "tel2-recursion-check.kube-system"
2022-02-22 08:31:19.6501 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:19.6543 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:31:19.6630 debug   daemon/session/dns/docker/Server : DNS resolver is not recursive
2022-02-22 08:31:19.6630 debug   daemon/session/dns/docker/Server : A      tel2-recursion-check.kube-system. -> NXDOMAIN 
2022-02-22 08:31:19.6631 debug   daemon/session/dns/docker/Server : AAAA   tel2-recursion-check.kube-system. -> NXDOMAIN 
2022-02-22 08:31:19.6633 debug   daemon/session/dns/docker/Server : AAAA   tel2-recursion-check.kube-system.us-west-1.compute.internal. -> NXDOMAIN 
2022-02-22 08:31:19.6634 debug   daemon/session/dns/docker/Server : A      tel2-recursion-check.kube-system.us-west-1.compute.internal. -> NXDOMAIN 
2022-02-22 08:31:19.7305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:19.7354 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:19.7354 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:19.7355 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:19.7355 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:19.7393 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:19.7394 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:19.7394 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:24.7364 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:24.7397 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:31:24.9805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:24.9852 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:24.9853 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:24.9853 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:24.9853 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:24.9896 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:24.9896 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:24.9896 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:29.9854 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:29.9897 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:31:30.2305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:30.2352 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:30.2352 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:30.2353 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:30.2353 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:30.2406 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:30.2407 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:30.2407 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:35.2363 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:35.2416 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:31:35.4806 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:35.4853 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:35.4854 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:35.4854 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:35.4854 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:35.4926 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:35.4927 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:35.4927 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:40.4860 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:40.4934 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:31:40.7305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:40.7353 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:40.7353 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:40.7354 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:40.7354 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:40.7396 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:40.7396 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:40.7397 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:45.7358 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:45.7401 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:31:45.9805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:45.9854 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:45.9855 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:45.9855 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:45.9855 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:45.9895 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:45.9895 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:45.9895 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:50.9862 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:50.9905 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:31:51.2305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:51.2351 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:51.2351 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:51.2352 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:51.2352 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:51.2394 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:51.2394 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:51.2394 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:56.2353 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:56.2396 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:31:56.4805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:56.4852 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:31:56.4852 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:56.4853 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:56.4853 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:31:56.4892 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:31:56.4892 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:31:56.4893 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:01.4856 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:01.4899 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:01.7306 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:01.7350 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:01.7351 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:01.7351 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:01.7351 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:01.7390 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:01.7391 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:01.7391 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:06.7354 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:06.7397 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:06.9805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:06.9853 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:06.9853 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:06.9854 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:06.9854 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:06.9920 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:06.9920 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:06.9920 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:11.9855 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:11.9928 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:12.2305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:12.2350 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:12.2350 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:12.2351 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:12.2351 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:12.2395 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:12.2396 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:12.2396 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:17.2361 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:17.2404 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:17.4805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:17.4851 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:17.4851 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:17.4851 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:17.4852 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:17.4899 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:17.4900 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:17.4900 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:22.4853 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:22.4906 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:22.7305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:22.7351 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:22.7351 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:22.7352 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:22.7352 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:22.7421 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:22.7421 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:22.7421 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:27.7355 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:27.7428 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:27.9805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:27.9850 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:27.9851 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:27.9851 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:27.9851 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:27.9893 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:27.9893 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:27.9893 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:32.9858 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:32.9901 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:33.2305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:33.2359 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:33.2359 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:33.2359 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:33.2359 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:33.2401 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:33.2401 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:33.2401 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:38.2363 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:38.2406 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:38.4806 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:38.4850 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:38.4851 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:38.4851 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:38.4851 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:38.5299 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:38.5300 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:38.5300 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:43.4853 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:43.5307 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:43.7305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:43.7351 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:43.7351 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:43.7352 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:43.7352 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:43.7392 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:43.7392 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:43.7392 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:48.7353 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:48.7396 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:48.9806 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:48.9852 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:48.9853 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:48.9853 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:48.9853 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:48.9912 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:48.9912 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:48.9912 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:53.9864 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:53.9916 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:54.2305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:54.2351 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:54.2351 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:54.2352 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:54.2352 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:54.2403 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:54.2404 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:54.2404 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:59.2360 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:59.2413 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:32:59.4805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:59.4853 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:32:59.4853 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:59.4854 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:59.4854 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:32:59.4895 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:32:59.4895 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:32:59.4895 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:33:04.4857 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:33:04.4900 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:33:04.7305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:33:04.7348 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:33:04.7348 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:33:04.7349 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:33:04.7349 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:33:04.7388 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:04.7389 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:33:04.7389 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:33:09.7351 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:33:09.7394 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:33:09.9805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:33:09.9855 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:33:09.9855 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:33:09.9856 debug   daemon/session/router : <- TUN udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:33:09.9856 debug   daemon/session/router : -> MGR udp 172.31.0.0:46134 -> 172.31.0.2:53
2022-02-22 08:33:09.9900 debug   daemon/session/router : ++ POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:09.9901 debug   daemon/session/router : <- TUN udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:33:09.9901 debug   daemon/session/router : -> MGR udp 172.31.0.0:46190 -> 172.31.0.2:53
2022-02-22 08:33:14.9857 debug   daemon/session/router : -- POOL udp 172.31.0.0:46134 -> 172.31.0.2:53, count now is 1
2022-02-22 08:33:14.9902 debug   daemon/session/router : -- POOL udp 172.31.0.0:46190 -> 172.31.0.2:53, count now is 0
2022-02-22 08:33:22.2914 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:22.2960 debug   daemon/session/router : ++ POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 1
2022-02-22 08:33:22.2961 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:22.2962 debug   daemon/session/router : <- TUN udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:22.2962 debug   daemon/session/router : -> MGR udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:22.3001 debug   daemon/session/router : ++ POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:22.3001 debug   daemon/session/router : <- TUN udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:22.3001 debug   daemon/session/router : -> MGR udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:24.2920 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:24.2920 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:26.2925 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:26.2925 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:26.2931 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:26.3414 debug   daemon/session/router : ++ POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:26.3414 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:26.3415 debug   daemon/session/router : <- TUN udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:26.3415 debug   daemon/session/router : -> MGR udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:26.3468 debug   daemon/session/router : ++ POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:26.3469 debug   daemon/session/router : <- TUN udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:26.3469 debug   daemon/session/router : -> MGR udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:27.2972 debug   daemon/session/router : -- POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:27.3005 debug   daemon/session/router : -- POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:27.4806 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:27.4851 debug   daemon/session/router : ++ POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:27.4851 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:27.4852 debug   daemon/session/router : <- TUN udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:27.4853 debug   daemon/session/router : -> MGR udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:27.4896 debug   daemon/session/router : ++ POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:27.4896 debug   daemon/session/router : <- TUN udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:27.4896 debug   daemon/session/router : -> MGR udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:28.2937 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:28.2938 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:30.2942 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:30.2942 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:31.3423 debug   daemon/session/router : -- POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:31.3476 debug   daemon/session/router : -- POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:31.4805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:31.4855 debug   daemon/session/router : ++ POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:31.4856 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:31.4857 debug   daemon/session/router : <- TUN udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:31.4857 debug   daemon/session/router : -> MGR udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:31.4901 debug   daemon/session/router : ++ POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:31.4901 debug   daemon/session/router : <- TUN udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:31.4901 debug   daemon/session/router : -> MGR udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:32.2952 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:32.2952 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:32.4859 debug   daemon/session/router : -- POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:32.4902 debug   daemon/session/router : -- POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:32.7305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:32.7358 debug   daemon/session/router : ++ POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:32.7358 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:32.7359 debug   daemon/session/router : <- TUN udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:32.7359 debug   daemon/session/router : -> MGR udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:32.7402 debug   daemon/session/router : ++ POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:32.7402 debug   daemon/session/router : <- TUN udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:32.7403 debug   daemon/session/router : -> MGR udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:34.2958 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:34.2958 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:36.2969 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:36.2970 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:36.4865 debug   daemon/session/router : -- POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:36.4908 debug   daemon/session/router : -- POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:36.7305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:36.7359 debug   daemon/session/router : ++ POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:36.7359 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:36.7360 debug   daemon/session/router : <- TUN udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:36.7360 debug   daemon/session/router : -> MGR udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:36.7401 debug   daemon/session/router : ++ POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:36.7401 debug   daemon/session/router : <- TUN udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:36.7401 debug   daemon/session/router : -> MGR udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:37.7369 debug   daemon/session/router : -- POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:37.7412 debug   daemon/session/router : -- POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:37.9806 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:37.9850 debug   daemon/session/router : ++ POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:37.9850 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:37.9851 debug   daemon/session/router : <- TUN udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:37.9851 debug   daemon/session/router : -> MGR udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:37.9905 debug   daemon/session/router : ++ POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:37.9905 debug   daemon/session/router : <- TUN udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:37.9906 debug   daemon/session/router : -> MGR udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:38.2979 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:38.2979 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:40.2989 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:40.2989 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:41.7368 debug   daemon/session/router : -- POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:41.7411 debug   daemon/session/router : -- POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:41.9805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:41.9849 debug   daemon/session/router : ++ POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:41.9850 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:41.9850 debug   daemon/session/router : <- TUN udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:41.9850 debug   daemon/session/router : -> MGR udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:41.9890 debug   daemon/session/router : ++ POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:41.9890 debug   daemon/session/router : <- TUN udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:41.9890 debug   daemon/session/router : -> MGR udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:42.3002 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:42.3003 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:42.9853 debug   daemon/session/router : -- POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:42.9916 debug   daemon/session/router : -- POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:43.2305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:43.2355 debug   daemon/session/router : ++ POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:43.2355 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:43.2356 debug   daemon/session/router : <- TUN udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:43.2356 debug   daemon/session/router : -> MGR udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:43.2404 debug   daemon/session/router : ++ POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:43.2405 debug   daemon/session/router : <- TUN udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:43.2405 debug   daemon/session/router : -> MGR udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:44.3016 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:44.3016 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:46.3028 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:46.3029 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:46.9854 debug   daemon/session/router : -- POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:46.9897 debug   daemon/session/router : -- POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 2
2022-02-22 08:33:47.2305 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:47.2357 debug   daemon/session/router : ++ POOL udp 172.31.0.0:60673 -> 172.31.0.2:53, count now is 3
2022-02-22 08:33:47.2358 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:47.2358 debug   daemon/session/router : <- TUN udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:47.2358 debug   daemon/session/router : -> MGR udp 172.31.0.0:60673 -> 172.31.0.2:53
2022-02-22 08:33:47.2415 debug   daemon/session/router : ++ POOL udp 172.31.0.0:33028 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:47.2415 debug   daemon/session/router : <- TUN udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:47.2415 debug   daemon/session/router : -> MGR udp 172.31.0.0:33028 -> 172.31.0.2:53
2022-02-22 08:33:47.5591 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:49401 -> 172.31.0.2:53
2022-02-22 08:33:47.5638 debug   daemon/session/router : ++ POOL udp 172.31.0.0:49401 -> 172.31.0.2:53, count now is 5
2022-02-22 08:33:47.5638 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:35086 -> 172.31.0.2:53
2022-02-22 08:33:47.5639 debug   daemon/session/router : <- TUN udp 172.31.0.0:49401 -> 172.31.0.2:53
2022-02-22 08:33:47.5639 debug   daemon/session/router : -> MGR udp 172.31.0.0:49401 -> 172.31.0.2:53
2022-02-22 08:33:47.6086 debug   daemon/session/router : ++ POOL udp 172.31.0.0:35086 -> 172.31.0.2:53, count now is 6
2022-02-22 08:33:47.6087 debug   daemon/session/router : <- TUN udp 172.31.0.0:35086 -> 172.31.0.2:53
2022-02-22 08:33:47.6087 debug   daemon/session/router : -> MGR udp 172.31.0.0:35086 -> 172.31.0.2:53
2022-02-22 08:33:48.2360 debug   daemon/session/router : -- POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 5
2022-02-22 08:33:48.2413 debug   daemon/session/router : -- POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 4
2022-02-22 08:33:48.4805 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:48.4849 debug   daemon/session/router : ++ POOL udp 172.31.0.0:53229 -> 172.31.0.2:53, count now is 5
2022-02-22 08:33:48.4850 debug   daemon/session/router : Opening tunnel for id udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:48.4850 debug   daemon/session/router : <- TUN udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:48.4850 debug   daemon/session/router : -> MGR udp 172.31.0.0:53229 -> 172.31.0.2:53
2022-02-22 08:33:48.4908 debug   daemon/session/router : ++ POOL udp 172.31.0.0:52327 -> 172.31.0.2:53, count now is 6
2022-02-22 08:33:48.4909 debug   daemon/session/router : <- TUN udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:48.4909 debug   daemon/session/router : -> MGR udp 172.31.0.0:52327 -> 172.31.0.2:53
2022-02-22 08:33:49.5595 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:49.5595 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:49.5596 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   ip-172-31-19-199.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:49.5596 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      ip-172-31-19-199.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:51.5609 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:51.5609 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   api.snapcraft.io. -> SERVFAIL timeout
2022-02-22 08:33:51.5610 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) AAAA   ip-172-31-19-199.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:51.5610 debug   daemon/session/dns/docker/Server : (127.0.0.53:53) A      ip-172-31-19-199.us-west-1.compute.internal. -> SERVFAIL timeout
2022-02-22 08:33:51.5612 debug   daemon/session/dns/docker/Server : LookupHost "ip-172-31-19-199"
2022-02-22 08:33:51.5727 debug   daemon/session/dns/docker/Server : AAAA   ip-172-31-19-199. -> NOERROR EMPTY
2022-02-22 08:33:51.5728 debug   daemon/session/dns/docker/Server : A      ip-172-31-19-199. -> NOERROR ip-172-31-19-199.	4	IN	A	172.31.19.199

@thallgren
Copy link
Member

@bhavitsharma what does your /etc/resolv.conf look like? From the looks of it, your machine tries to send DNS queries to 172.31.0.2, which is an address mapped by Telepresence (it's included in the pod subnet 172.31.0.0/18). I'm trying to figure out where those requests come from. I don't see anything like that in my ec2 instance.

@bhavitsharma
Copy link
Author

It looks like this:

nameserver 127.0.0.53
options edns0 trust-ad
search us-west-1.compute.internal

@thallgren
Copy link
Member

I think you have a /.dockerenv file present? That's usually only the case when running in docker. Is it significant for your workflow or would it be possible for you to remove it?

@thallgren
Copy link
Member

My /etc/resolv.conf looks like this:

; generated by /usr/sbin/dhclient-script
search eu-north-1.compute.internal
options timeout:2 attempts:5
nameserver 172.31.0.2

which seems to indicate that the 172.31.0.2 IP is the default DNS for an ec2 instance. It also means that on my machine, that IP address is re-routed using ip-tables. On your machine, the 127.0.0.53 is re-routed instead. So my guess is that whatever server you have on 127.0.0.53 forwards to 172.31.0.2. That request is then routed to the cluster (because it's in the pod-subnet).

Try adding 172.31.0.2/32 as a never-proxy in your kubeconfig, like this:

apiVersion: v1
clusters:
- cluster:
    server: https://x.x.x.x
    extensions:
    - name: telepresence.io
      extension:
        never-proxy:
        - 172.31.0.2/32

This will tell the TUN-device to exclude that address.

@thallgren
Copy link
Member

thallgren commented Feb 22, 2022
edited
Loading

A qualified guess as to what's happening on your ec2-instance.

  1. It is set up to use systemd-resolved (mine isn't). and hence uses 127.0.0.53 as an auto-generated entry in your /etc/resolv.conf
  2. Telepresence will normally detect this and also use systemd-resolved, but the presence of /.dockerenv prevents this.
  3. Telepresence then falls back to override whatever it finds in /etc/resolv.conf. It succeeds in doing that but all requests that it then forwards to the original DNS (the one at 127.0.0.53) are routed to systemd-resolved which in turn sends them to 172.31.0.2.
  4. The 172.31.0.2 address is mapped in the pod subnet 172.31.0.0/18 so the request is forwarded to your cluster.
  5. The cluster doesn't have a DNS resolver at 172.31.0.2 so resolution will always fail.

If this guess is correct, then the never-proxy is the solution.

@thallgren
Copy link
Member

@bhavitsharma three outputs from your ec2 instance that would be of interest : resolvectl dns, ip a, and ip r.

@bhavitsharma
Copy link
Author

bhavitsharma commented Feb 23, 2022
edited
Loading

Thanks @thallgren, you were right. The EKS cluster to which I was able to connect didn't have its subnet's address prefix collision with my ec2 IP. Connecting to the cluster which does breaks my internet has its subnet colliding with my EC2. I manually verified from our subnets configuration (and terraform configs).
Also saw that the DNS resolver was broken for some reason even if I was running telepresence from outside the docker container. ping -c 3 <ip_address> worked but ping -c 3 google.com didn't. host, dig commands timed out.

I tried never-proxy solution but my SSH is still broken (not able to ping the ec2 IP also from my laptop). However, I am able to ping google.com and other aws services, including kubectl commands (verified by going to aws serial console)!

@bhavitsharma
Copy link
Author

bhavitsharma commented Feb 23, 2022
edited
Loading

resolvectl dns

Global:
Link 5 (tel0): 10.100.0.10
Link 3 (docker0):
Link 2 (ens5): 172.31.0.2

default via 172.31.16.1 dev ens5 proto dhcp src 172.31.19.199 metric 100 
10.100.0.0/16 dev tel0 proto kernel scope link src 10.100.0.0 
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown 
172.31.0.0/18 dev tel0 proto kernel scope link src 172.31.0.0 
172.31.0.2 via 172.31.16.1 dev ens5 
172.31.16.0/20 dev ens5 proto kernel scope link src 172.31.19.199 
172.31.16.1 dev ens5 proto dhcp scope link src 172.31.19.199 metric 100 

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9001 qdisc mq state UP group default qlen 1000
    link/ether 02:46:ee:32:85:f5 brd ff:ff:ff:ff:ff:ff
    inet 172.31.19.199/20 brd 172.31.31.255 scope global dynamic ens5
       valid_lft 2392sec preferred_lft 2392sec
    inet6 fe80::46:eeff:fe32:85f5/64 scope link 
       valid_lft forever preferred_lft forever
3: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default 
    link/ether 02:42:d2:37:d4:0c brd ff:ff:ff:ff:ff:ff
    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
       valid_lft forever preferred_lft forever
5: tel0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500
    link/none 
    inet 10.100.0.0/16 scope global tel0
       valid_lft forever preferred_lft forever
    inet 172.31.0.0/18 scope global tel0
       valid_lft forever preferred_lft forever
    inet6 fe80::21f1:9924:56e8:1e7c/64 scope link stable-privacy 
       valid_lft forever preferred_lft forever

@bhavitsharma
Copy link
Author

So finally I was able to connect via SSH also! I added a default route for our VPN gateway the same way your never-proxy solution added a default route for 172.31.0.2. Everything worked after that!

I hope that we can get these features inside telepresence!

@bhavitsharma bhavitsharma mentioned this issue Feb 23, 2022
Open
@bhavitsharma
Copy link
Author

bhavitsharma commented Feb 23, 2022
edited
Loading

@thallgren My only question: Is there a way to specify some default-routes/never-proxy options in telepresence's config rather than kubeconfig?

@thallgren
Copy link
Member

@bhavitsharma glad to hear that you were able to get things working!

Telepresence will currently only support TCP and UDP. ping relies on ICMP so I wouldn't expect it to work.

To answer your question. No, the kubeconfig is the only place where this can be added.

@thallgren
Copy link
Member

I'm closing this ticket in favor of #2429 which is more focused on the underlying problem.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@thallgren @bhavitsharma