#Listen on localhost bind-interfaces listen-address=0.0.0.0 addn-hosts=/etc/hosts strict-order # Forward k8s domain to kube-dns server=/{{ dns_domain }}/{{ skydns_server }} # Reply NXDOMAIN to bogus domains requests like com.cluster.local.cluster.local local=/{{ bogus_domains }} #Set upstream dns servers {% if upstream_dns_servers is defined %} {% for srv in upstream_dns_servers %} server={{ srv }} {% endfor %} no-resolv {% elif resolvconf_mode == 'host_resolvconf' %} {# The default resolver is only needed when the hosts resolv.conf was modified by us. If it was not modified, we can rely on dnsmasq to reuse the systems resolv.conf #} server={{ default_resolver }} no-resolv {% endif %} {% if kube_log_level == '4' %} log-queries {% endif %} bogus-priv no-negcache cache-size={{ cache_size }} dns-forward-max={{ dns_forward_max }} max-cache-ttl=10 max-ttl=20 log-facility=-