How do I troubleshoot consistent and intermittent DNS-related errors in AWS Lambda?

2 minute read

I see DNS-related errors in my AWS Lambda function when I attempt to reach a host.

Resolution

DNS-related errors in AWS Lambda, like Temporary failure in name resolution, getaddrinfo, ENOTFOUND, and ETIMEDOUT, can be consistent or intermittent. The troubleshooting process for consistent errors is different from the intermittent error troubleshooting process.

Troubleshooting consistent DNS-related errors

Misconfigured DNS servers, incorrect permissions, and network connectivity issues can cause consistent DNS-related errors. Take the following steps to troubleshoot consistent DNS-related errors:

When you're accessing public resources with a virtual private cloud (VPC)-configured Lambda function, verify that the Lambda function has internet access.
When you're accessing private resources, verify that the correct VPC and DNS servers are configured for the Lambda function.
When you're using custom DHCP option sets for a VPC, verify the DNS query response through Amazon Route 53 Resolver Query Logs.
Run your Amazon Elastic Compute Cloud (Amazon EC2) instance with the same network configuration as AWS Lambda. Then verify that you can resolve and reach the endpoint.
Verify that the hostname is correct for ENOTFOUND errors.
Try to access the target using an IP address instead of the hostname. This way, you can confirm whether the issue is caused by the hostname resolution or a missing endpoint route.
Make sure that the Lambda function's security group and network access control list (network ACL) allow inbound traffic to the necessary ports and IP ranges.

Troubleshooting intermittent DNS-related errors

Network congestion, high traffic, and other external factors can cause intermittent DNS-related errors. Take the following steps to troubleshoot intermittent DNS-related errors:

Implement retries and exponential backoff for the Lambda function to handle intermittent DNS errors.
Consider using runtime-specific DNS libraries that allows local caching of DNS queries. This helps in scenarios where your DNS servers reach the per-second packet limit. This can also happen with custom DNS servers.
Make sure that the Lambda function has enough resources to perform its tasks.
Monitor the Lambda errors in Amazon CloudWatch and then set up CloudWatch alarms based on the error messages to check for patterns.

Related information

How does DNS work and how do I troubleshoot partial or intermittent DNS failures?

Topics

Serverless Compute

Relevant content

Intermittent name resolution error when accessing RDS db
AWS-User-7626131
asked 2 years ago
Temporary failure in name resolution
Josh
asked 16 days ago
Intermittent Error: getaddrinfo ENOTFOUND "domain name" Issue in applications hosted in EC2
gates
asked 3 months ago
In one of instance sometimes "Temporary failure in name resolution"
alokdutta
asked 5 years ago
sudo: unable to resolve host ip-: Temporary failure in name resolution
rePost-User-5602847
asked a year ago
How do I troubleshoot Lambda function failures?
AWS OFFICIALUpdated a year ago
How do I troubleshoot Lambda function failures in an Amazon Connect contact flow?
AWS OFFICIALUpdated a year ago
How do I troubleshoot intermittent timeout errors in Amazon DynamoDB?
AWS OFFICIALUpdated 2 years ago
How do I troubleshoot Lambda function invocation timeout errors?
AWS OFFICIALUpdated a year ago
Troubleshoot 403 Access Denied error in Amazon S3
EXPERT
Gayathri Krishnamoorthy
published a year ago