DNS broken on Docker Desktop for windows

lewispringle · October 14, 2022, 8:25am

Trying to resolve DNS names in docker windows (windows containers) appears broken by default and with no easy way to resolve. There are dozens of posts about this, but few with fixes (and none of those have enough details or actually work).

To reproduce
- install docker windows desktop
- switch to windows container mode
- ```
docker  run -it mcr.microsoft.com/windows/servercore:ltsc2022 powershell
```
  inside container, run
```
ping www.google.com
```
  and it fails to resolve the name
  - Then repeat above, adding –dns 8.8.8.8 to docker run line and it all works
So issue is just the default DNS stuff not working with docker. You CAN workaround some issues by just specifying --dns on the command line. But not all (like docker build scripts) or scripts that indirectly use docker.

TRIED setting the DNS entry
(see dockerd | Docker Documentation)

{
  "dns": [
    "8.8.8.8"
  ],
  "builder": {
    "gc": {
      "defaultKeepStorage": "20GB",
      "enabled": true
    }
  },
  "experimental": false,
  "features": {
    "buildkit": true
  }
}

But sadly this doesnt seem to work (appears totally ignored).

lewispringle · October 14, 2022, 8:41am

One more hint - I’ve found another workaround, and it maybe relevant to understanding the bug.

Specifying --network “Default Switch” command line argument to docker run also avoids the problem, so maybe there is some mistake in the default understanding / configuration for networking, but there is no UI to correct it in the current version of Docker desktop (despite screenshots of a network settings page in other docker questions on the web).

svabra · June 25, 2023, 6:42am

True. With my version 4.20.1 of Docker Desktop I have the same issue. I need to deliberately create a network (docker network create mynetwork) and then add the --network mynetwork to the docker run command in order for the dns to resolve. That is very odd, that the networks are not set to be the same by default. I don’t see the reasoning behind it - using docker desktop. (I understand for enterprise-graded container runtimes/orchestrations)

mike010101 · August 31, 2023, 5:26pm

Im having a similar issue with DockerDesktop v4.22.1.

Im using vscode’s devcontainers on windows 11. Once it starts up in the container and i open a bash terminal tab…can ping www.google.com fine. However if I cd into another directory, strangely i can no longer do so and error from the ping command is ‘temporary failure in name resolution’.

Any thoughts on how to diagnose what is happening here?

mikez87 · November 9, 2023, 3:12am

Does this help.

github.com/microsoft/Windows-Containers

nslookup fails inside a container using the default DNS server

opened 09:21PM - 30 Mar 22 UTC

doctorpangloss

bug Networking

**Describe the bug** `nslookup` fails inside a container. **To Reproduce** …``` docker run -it --rm mcr.microsoft.com/windows/servercore:ltsc2022 Microsoft Windows [Version 10.0.20348.587] (c) Microsoft Corporation. All rights reserved. C:\>nslookup www.google.com Server: UnKnown Address: 172.30.224.1 C:\>nslookup www.google.com 8.8.8.8 Server: dns.google Address: 8.8.8.8 Non-authoritative answer: Name: www.google.com Addresses: 2607:f8b0:4005:80e::2004 216.58.195.68 *** UnKnown can't find www.google.com: Server failed ``` **Expected behavior** `nslookup` should work against the default DNS server. **Configuration:** - Edition: Windows 11 21H2 - Base Image being used: mcr.microsoft.com/windows/servercore:ltsc2022 - Container engine: docker - Container Engine version: ``` Client: Cloud integration: v1.0.22 Version: 20.10.12 API version: 1.41 Go version: go1.16.12 Git commit: e91ed57 Built: Mon Dec 13 11:44:07 2021 OS/Arch: windows/amd64 Context: default Experimental: true Server: Docker Desktop 4.5.1 (74721) Engine: Version: 20.10.12 API version: 1.41 (minimum version 1.24) Go version: go1.16.12 Git commit: 459d0df Built: Mon Dec 13 11:42:13 2021 OS/Arch: windows/amd64 Experimental: false ``` **Additional context** - Restarting the Docker daemon does not resolve the issue.