lythom/Chessistics
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Skip unresolvable domains in firewall allowlist instead of aborting

Browse source 
If DNS resolution transiently fails for one domain, the whole postStart
hook used to exit 1 and leave the container without a firewall. Warn and
continue so the remaining rules still get installed.
This commit is contained in:
Samuel Bouchet 2026-04-17 21:13:06 +02:00
parent 3077b2d669
commit eba81400a8
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
.devcontainer/init-firewall.sh
View file

@ -74,8 +74,8 @@ for domain in \
echo "Resolving $domain..." echo "Resolving $domain..."
ips=$(dig +noall +answer A "$domain" | awk '$4 == "A" {print $5}') ips=$(dig +noall +answer A "$domain" | awk '$4 == "A" {print $5}')
if [ -z "$ips" ]; then if [ -z "$ips" ]; then
echo "ERROR: Failed to resolve $domain" echo "WARN: Failed to resolve $domain - skipping"
exit 1 continue
fi fi
while read -r ip; do while read -r ip; do