I want to get DNS64 working in an ECS on EC2 container.

Question

I changed the run on ECS on Fargate to ECS on EC2, and in both runs DNS64 is supposed to work, but it doesn't. Is it a non-working specification? I want to make it work. # ECS on Fargate networkMode: awsvpc subnet DNS64: enabled root@ip-10-0-3-222:~# dig amazon.com aaaa ; <<>> DiG 9.11.5-P4-5.1+deb10u9-Debian <<>> amazon.com aaaa ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55272 ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;amazon.com. IN AAAA ;; ANSWER SECTION: amazon.com. 300 IN AAAA 64:ff9b::36ef:1c55 amazon.com. 300 IN AAAA 64:ff9b::cdfb:f267 amazon.com. 300 IN AAAA 64:ff9b::345e:ecf8 ;; Query time: 1 msec ;; SERVER: 10.0.0.2#53(10.0.0.2) ;; WHEN: Thu Jan 11 18:22:59 JST 2024 ;; MSG SIZE rcvd: 123 root@ip-10-0-3-222:~# # ECS on EC2 networkMode: awsvpc subnet DNS64: enabled root@ip-10-0-3-239:~# dig amazon.com aaaa ; <<>> DiG 9.11.5-P4-5.1+deb10u9-Debian <<>> amazon.com aaaa ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39391 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;amazon.com. IN AAAA ;; AUTHORITY SECTION: amazon.com. 244 IN SOA dns-external-master.amazon.com. hostmaster.amazon.com. 2010183054 180 60 604800 900 ;; Query time: 0 msec ;; SERVER: 10.0.0.2#53(10.0.0.2) ;; WHEN: Thu Jan 11 18:23:24 JST 2024 ;; MSG SIZE rcvd: 106 root@ip-10-0-3-239:~#

Answer

I get the same issue for amazon.com from my Windows 11 machine. Seems amazon.com doesnt have any IPV6 records for the domain apex.
Also evidence here https://mxtoolbox.com/SuperTool.aspx?action=aaaa%3aamazon.com&run=toolpage

Try a different hostname such as www.amazon.com and I believe you will recieve a results.

I want to get DNS64 working in an ECS on EC2 container.

相关内容