{ "id": "cloud/aws-ecs-service-connect-dns-resolution-failure", "signature": "ECS Service Connect: DNS resolution failed for service endpoint within the same namespace", "signature_zh": "ECS Service Connect:同一命名空间内服务端点的 DNS 解析失败", "regex": "Service Connect.*DNS resolution failed|ECS.*service.*endpoint.*not found|namespace.*DNS.*timeout", "domain": "cloud", "category": "network_error", "subcategory": null, "root_cause": "When using ECS Service Connect, tasks fail to resolve the DNS name of a service in the same namespace because the service discovery namespace is not properly associated with the VPC, or the service's DNS records are not propagated due to a misconfigured service connect configuration.", "root_cause_type": "generic", "root_cause_zh": "使用 ECS Service Connect 时,任务无法解析同一命名空间中服务的 DNS 名称,因为服务发现命名空间未正确关联到 VPC,或者由于服务连接配置错误导致服务的 DNS 记录未传播。", "versions": [ { "version": "AWS ECS: latest", "introduced": null, "deprecated": null, "removed": null, "behavior_change": null, "status": "active" }, { "version": "AWS Cloud Map: latest", "introduced": null, "deprecated": null, "removed": null, "behavior_change": null, "status": "active" }, { "version": "Amazon VPC: any", "introduced": null, "deprecated": null, "removed": null, "behavior_change": null, "status": "active" } ], "os_specific": {}, "dead_ends": [ { "action": "", "why_fails": "Overrides the default AWS DNS resolver, breaking Service Connect's built-in DNS resolution for the namespace.", "fail_rate": 0.8, "condition": "", "sources": [] }, { "action": "", "why_fails": "IPs can change when tasks are redeployed or scaled; defeats the purpose of service discovery.", "fail_rate": 0.7, "condition": "", "sources": [] }, { "action": "", "why_fails": "Restarting doesn't fix the underlying DNS configuration issue; the new tasks will face the same resolution failure.", "fail_rate": 0.5, "condition": "", "sources": [] } ], "workarounds": [ { "action": "Verify that the Cloud Map namespace is associated with the correct VPC. Run 'aws servicediscovery list-namespaces' and check the VPC configuration. If missing, create a new namespace with 'aws servicediscovery create-http-namespace --name my-namespace --vpc vpc-12345'.", "success_rate": 0.85, "how": "Verify that the Cloud Map namespace is associated with the correct VPC. Run 'aws servicediscovery list-namespaces' and check the VPC configuration. If missing, create a new namespace with 'aws servicediscovery create-http-namespace --name my-namespace --vpc vpc-12345'.", "condition": "", "sources": [] }, { "action": "Ensure the ECS task definition includes the 'awslogs' log driver and check the Service Connect logs for DNS queries using 'aws logs describe-log-groups' and filtering for 'DNS_RESOLUTION_FAILED'. Then update the service connect configuration with the correct 'clientAlias' and 'discoveryName'.", "success_rate": 0.8, "how": "Ensure the ECS task definition includes the 'awslogs' log driver and check the Service Connect logs for DNS queries using 'aws logs describe-log-groups' and filtering for 'DNS_RESOLUTION_FAILED'. Then update the service connect configuration with the correct 'clientAlias' and 'discoveryName'.", "condition": "", "sources": [] } ], "workarounds_zh": [ "Verify that the Cloud Map namespace is associated with the correct VPC. Run 'aws servicediscovery list-namespaces' and check the VPC configuration. If missing, create a new namespace with 'aws servicediscovery create-http-namespace --name my-namespace --vpc vpc-12345'.", "Ensure the ECS task definition includes the 'awslogs' log driver and check the Service Connect logs for DNS queries using 'aws logs describe-log-groups' and filtering for 'DNS_RESOLUTION_FAILED'. Then update the service connect configuration with the correct 'clientAlias' and 'discoveryName'." ], "transition_graph": { "leads_to": [], "preceded_by": [], "frequently_confused_with": [] }, "official_doc_url": "https://docs.aws.amazon.com/AmazonECS/latest/developerguide/service-connect.html", "official_doc_section": null, "error_code": "ECS.ServiceConnect.DNSResolution", "verification_tier": "ai_generated", "confidence": 0.83, "fix_success_rate": 0.78, "resolvable": "true", "first_seen": "2024-06-12", "last_confirmed": "2024-06-01", "last_updated": "2024-06-01", "evidence_count": 1, "tags": [], "locale": "en", "aliases": [] }