FQDN Active Names Memory Pressure

warning

Resource ContentionUpdated Feb 23, 2026

High cilium_fqdn_active_names or cilium_fqdn_active_ips counts indicate DNS-based policy consuming significant memory. When combined with low cilium_fqdn_gc_deletions_datadog, stale entries accumulate, causing endpoint regeneration delays and potential OOM conditions.

Sources

Troubleshooting — Cilium 1.19.1 documentationdocs.cilium.io

Technologies:

CiliumSymptoms of this issue are visible in Cilium metrics and logs

CoreDNSCoreDNS metrics correlate with this issue and help confirm diagnosis

How to detect:

Monitor cilium_fqdn_active_names and cilium_fqdn_active_ips growth. If counts grow unbounded while cilium_fqdn_gc_deletions_datadog remains low, GC is not keeping pace with DNS churn. Cross-reference with cilium_process_resident_memory_size to detect memory pressure.

Recommended action:

Tune DNS garbage collection intervals. Review FQDN policies to ensure they target specific domains rather than wildcards. Monitor cilium_fqdn_alive_zombie_backend for leaked references. Consider reducing DNS TTL caching duration for frequently changing external services. Increase agent memory limits if necessary.