How to allow/block access to external DNS from Acura services
Task
Acura requires an active DNS server to be reachable from its network for proper communication between its components. Access to external DNS servers can be intentionally blocked or allowed depending on the security requirements and current network layout.
Solution
- If you have an isolated network with a DNS server and you wish to block connections to external sources, access your Acura instance using a key pair that was supposed to be created during the initial deployment and execute the following command from the CLI:
hx_remove_resolve_coredns
- If you have an isolated network without a DNS server, make sure to allow external connections and allow public DNS servers to be reachable from Acure. Access your Acura instance using a key pair that was supposed to be created during the initial deployment and execute the following command from the CLI:
hx_restore_resolve_coredns