CoreDNS on Kubernetes: Allow DNS zone transfer

3 min read

Kubernetes, by default, registers all the Pods and services using the cluster.local DNS zone. At some point we might want to be able to take a look at this zone. Zone transfers are going to be restricted by default:

dnstools# dig axfr cluster.local

; <<>> DiG 9.11.3 <<>> axfr cluster.local
;; global options: +cmd
; Transfer failed.

But if we are using CoreDNS, we can configure it to temporally allow zone transfers to be able to take a look at it

25/04/2022