We are facing a weird issue on our docker container running Icinga. It is reported that this machine is making a lot of Bogus DNS requests to a host called “mysql”.
I checked all my configurations and I do not see any monitor for host “mysql”. It is reported that the number of these bogus requests goes up to 176K in 24 hrs. All my monitors(less than 100) are configured to run every 5 minutes.
I am not getting any Idea at all about what could be the reason for it. If someone has faced a similar issue or aware of the mistake I am making, I would really appreciate the Help.
Okay, I can’t really help you without knowing what your container does internally. Does your Icinga Web 2 work and can you see all your hosts/services in there?
That means it can’t be caused by Icinga Web 2 or Icinga 2 trying to connect to MySQL via the wrong hostname.
Is there anything else running in that container that could cause this? Icinga can’t really cause this problem without having checks configured that check MySQL. Do you have any MySQL checks in your monitoring system?
In a default Docker environment “-p 8080:80” should do the same as “-p 0.0.0.0:8080:80”.
Did the rate of DNS requests to “mysql” decrease since you increased this check interval to 30 minutes? Maybe there is another “check_mysql” that’s not configured correctly?
I was waiting for a response from the team who raised the issue and they reported that they got similar requests to “MySQL” from different servers which do not Icinga running on it so it seems to be a networking issue.
I really appreciate your effort to try to understand the issue, Noah.