Intermittent DNS Failures from ndots Search Amplification

warning

configurationUpdated Jan 19, 2026

High ndots setting (default 5) causes excessive DNS queries as each name is tried with all search domains before FQDN lookup, leading to DNS cache stampede and intermittent failures during pod scaling events.

Sources

How to Troubleshoot Kubernetes DNS Issues (CoreDNS) - OneUptimeoneuptime.com

Troubleshooting Intermittent Coredns Dns | AlertMend AIwww.alertmend.io

How to Debug DNS Resolution Issues in Kubernetes with CoreDNSoneuptime.com

Technologies:

CoreDNSSymptoms of this issue are visible in CoreDNS metrics and logs

KubernetesKubernetes metrics correlate with this issue and help confirm diagnosis

How to detect:

Monitor coredns_request_count spikes correlating with pod scaling events. Calculate queries per application request - if ratio exceeds 5:1, ndots amplification is likely. Check for timeout errors during high pod churn periods.

Recommended action:

Reduce ndots to 2 in pod dnsConfig for applications making external calls. Use fully qualified domain names with trailing dots in application code (e.g., 'api.example.com.'). Add TTL jitter (10% randomization) in CoreDNS config to prevent synchronized cache expirations. Configure serve_stale to handle stampede scenarios.