[GH-ISSUE #629] Bug: Dual-Stack container listens only on IPv4 #208

New issue

Closed

opened 2026-02-26 04:34:24 +03:00 by kerem · 4 comments

kerem commented 2026-02-26 04:34:24 +03:00

Owner

Copy link

Originally created by @justarandomgeek on GitHub (Aug 16, 2025).
Original GitHub issue: https://github.com/mageddo/dns-proxy-server/issues/629

What is Happening

A dual-stack container with both ipv4 and ipv6 addresses is only responding to dns requests on the container's ipv4 address. Some of my network service containers (including this dns proxy) run in a macvlan network bridged directly to my regular lan to handle various things colliding on fixed port numbers and/or providing L2-level services. This network has both ipv4 and ipv6 configured. The container is pingable (by an external host or another macvlan on the host, not the host directly due to macvlan quirks) by both addresses, and the web interface works fine over both, but the dns only responds on v4.

What is Expected

Listen on [::]:53 by default to get all (v4 and v6) container addresses

services:
 dns-proxy-server:
    image: defreitas/dns-proxy-server:latest
    hostname: dns.mageddo
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    networks:
      host_vlan:
        ipv4_address: 192.0.2.253
        ipv6_address: 2001:db8::d0cc:11:0:fc1
networks:
  host_vlan:
    driver: macvlan
    driver_opts:
      parent: bond0
    enable_ipv6: true
    ipam:
      config:
        - subnet: 192.0.2.0/24
          gateway: 192.0.2.1
          ip_range: 192.0.2.252/30
        - subnet: 2001:db8::/64
          gateway: 2001:db8::1
          ip_range: 2001:db8::d0cc:11:0:fc0/122

(real network replaced with documentation prefixes)

Originally created by @justarandomgeek on GitHub (Aug 16, 2025). Original GitHub issue: https://github.com/mageddo/dns-proxy-server/issues/629 ## What is Happening A dual-stack container with both ipv4 and ipv6 addresses is only responding to dns requests on the container's ipv4 address. Some of my network service containers (including this dns proxy) run in a macvlan network bridged directly to my regular lan to handle various things colliding on fixed port numbers and/or providing L2-level services. This network has both ipv4 and ipv6 configured. The container is pingable (by an external host or another macvlan on the host, not the host directly due to macvlan quirks) by both addresses, and the web interface works fine over both, but the dns only responds on v4. ## What is Expected Listen on `[::]:53` by default to get all (v4 and v6) container addresses ``` services: dns-proxy-server: image: defreitas/dns-proxy-server:latest hostname: dns.mageddo volumes: - /var/run/docker.sock:/var/run/docker.sock networks: host_vlan: ipv4_address: 192.0.2.253 ipv6_address: 2001:db8::d0cc:11:0:fc1 networks: host_vlan: driver: macvlan driver_opts: parent: bond0 enable_ipv6: true ipam: config: - subnet: 192.0.2.0/24 gateway: 192.0.2.1 ip_range: 192.0.2.252/30 - subnet: 2001:db8::/64 gateway: 2001:db8::1 ip_range: 2001:db8::d0cc:11:0:fc0/122 ``` (real network replaced with documentation prefixes)

kerem closed this issue 2026-02-26 04:34:24 +03:00

kerem commented 2026-02-26 04:34:24 +03:00

Author

Owner

Copy link

@justarandomgeek commented on GitHub (Nov 8, 2025):

So, is this project abandoned? this is a show-stopper level bug that has been ignored for like 4 months!

<!-- gh-comment-id:3506624285 --> @justarandomgeek commented on GitHub (Nov 8, 2025): So, is this project abandoned? this is a show-stopper level bug that has been ignored for like 4 months!

kerem commented 2026-02-26 04:34:24 +03:00

Author

Owner

Copy link

@mageddo commented on GitHub (Dec 17, 2025):

Hey @justarandomgeek. I will analyse your issue between today and tomorrow.

It looks like you’re frustrated with how fast things are happening, and I totally understand that — but hey, I’m your friend.

This is an open-source project that I’ve been maintaining for almost 10 years as a contribution to the community. I work on it in my free time, and I don’t have any sponsorship to keep it running.

Despite that, things do get fixed eventually, and the project will keep moving forward.

This year, I worked on a huge refactoring of the project to fix a lot of issues that were causing the same kind of problems, and I finally got that done today.

<!-- gh-comment-id:3667566376 --> @mageddo commented on GitHub (Dec 17, 2025): Hey @justarandomgeek. I will analyse your issue between today and tomorrow. It looks like you’re frustrated with how fast things are happening, and I totally understand that — but hey, I’m your friend. This is an open-source project that I’ve been maintaining for almost 10 years as a contribution to the community. I work on it in my free time, and I don’t have any sponsorship to keep it running. Despite that, things do get fixed eventually, and the project will keep moving forward. This year, I worked on a huge refactoring of the project to fix a lot of issues that were causing the same kind of problems, and I finally got that done today.

kerem commented 2026-02-26 04:34:24 +03:00

Author

Owner

Copy link

@mageddo commented on GitHub (Dec 19, 2025):

Beta is out 5.5.1-snapshot, I would appreciate feedback. Thanks in advance.

dig -p 53 host.docker @2804:14c:213:5427::253 +noall +answer
host.docker.		30	IN	A	172.20.5.1

My test file

services:
  dns-proxy-server:
    image: defreitas/dns-proxy-server:5.5.1-snapshot
    hostname: dns.mageddo
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    environment: 
      DPS_LOG__LEVEL: DEBUG
    networks:
      host_vlan:
        ipv4_address: 192.168.0.253
        ipv6_address: 2804:14c:213:5427::253

  testapp:
    image: ubuntu:22.04
    command: sleep infinity
    networks:
      host_vlan:
        ipv4_address: 192.168.0.252
        ipv6_address: 2804:14c:213:5427::252
networks:
  host_vlan:
    driver: macvlan
    driver_opts:
      parent: eno1
    enable_ipv6: true
    ipam:
      config:
        - subnet: 192.168.0.0/24
          gateway: 192.168.0.1
          ip_range: 192.168.0.252/30
        - subnet: 2804:14c:213:5427::/64
          gateway: 2804:14c:213:5427::1
          ip_range: 2804:14c:213:5427::250/124

<!-- gh-comment-id:3675527610 --> @mageddo commented on GitHub (Dec 19, 2025): Beta is out [5.5.1-snapshot][1], I would appreciate feedback. Thanks in advance. ```bash dig -p 53 host.docker @2804:14c:213:5427::253 +noall +answer host.docker. 30 IN A 172.20.5.1 ``` My test file ```yml services: dns-proxy-server: image: defreitas/dns-proxy-server:5.5.1-snapshot hostname: dns.mageddo volumes: - /var/run/docker.sock:/var/run/docker.sock environment: DPS_LOG__LEVEL: DEBUG networks: host_vlan: ipv4_address: 192.168.0.253 ipv6_address: 2804:14c:213:5427::253 testapp: image: ubuntu:22.04 command: sleep infinity networks: host_vlan: ipv4_address: 192.168.0.252 ipv6_address: 2804:14c:213:5427::252 networks: host_vlan: driver: macvlan driver_opts: parent: eno1 enable_ipv6: true ipam: config: - subnet: 192.168.0.0/24 gateway: 192.168.0.1 ip_range: 192.168.0.252/30 - subnet: 2804:14c:213:5427::/64 gateway: 2804:14c:213:5427::1 ip_range: 2804:14c:213:5427::250/124 ``` [1]: https://github.com/mageddo/dns-proxy-server/releases/tag/5.5.1-snapshot

kerem commented 2026-02-26 04:34:24 +03:00

Author

Owner

Copy link

@mageddo commented on GitHub (Dec 19, 2025):

Since 5.6.x, you will have to set server.host to :: to enable ipv6 listening. see #607

<!-- gh-comment-id:3676036923 --> @mageddo commented on GitHub (Dec 19, 2025): Since 5.6.x, you will have to set `server.host` to `::` to enable ipv6 listening. see #607

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

gh-pages

develop

feat/138_2

feat/629

feat/594

5.9.0

5.9.0-snapshot

5.8.4

5.8.4-snapshot

5.8.3-snapshot

5.8.2-snapshot

5.8.1-snapshot

5.8.0-snapshot

5.7.0-snapshot

5.6.2-snapshot

5.6.1-snapshot

5.6.0-snapshot

5.5.1-snapshot

5.5.0-snapshot

5.4.0-snapshot

5.3.0-snapshot

5.2.0-snapshot

5.1.3-snapshot

5.1.2-snapshot

5.1.0-snapshot

5.0.5-snapshot

5.0.3-snapshot

5.0.2-snapshot

5.0.1-snapshot

5.0.0-snapshot

4.3.0-snapshot

4.2.0-snapshot

4.0.0

4.0.0-snapshot

3.32.7

3.32.7-snapshot

3.32.6

3.32.6-snapshot

3.32.5-snapshot

3.32.4

3.32.4-snapshot

3.32.3

3.32.3-snapshot

3.32.2-snapshot

3.32.1-snapshot

3.32.0-snapshot

3.31.1-snapshot

3.31.0-snapshot

3.30.5-snapshot

3.30.4

3.30.4-snapshot

3.30.3-snapshot

3.30.2-snapshot

3.30.1

3.30.1-snapshot

3.30.0-snapshot

3.29.0-snapshot

3.27.0

3.27.0-snapshot

3.26.0-snapshot

3.25.14

3.25.14-snapshot

3.25.13-snapshot

3.25.12-snapshot

3.25.11

3.25.11-snapshot

3.25.10

3.25.10-snapshot

3.25.9-snapshot

3.25.8-snapshot

3.25.7-snapshot

3.25.6-snapshot

3.25.4-snapshot

3.25.3-snapshot

3.25.2-snapshot

3.25.1-snapshot

3.25.0-snapshot

3.24.2

3.24.2-snapshot

3.24.1

3.24.1-snapshot

3.24.0-snapshot

3.23.0-snapshot

3.22.2-snapshot

3.22.3-snapshot

3.22.1-snapshot

3.21.3-snapshot

3.22.0-snapshot

3.21.2-snapshot

3.21.1-snapshot

3.20.0-snapshot

3.21.0-snapshot

3.19.7-snapshot

3.19.6-snapshot

3.19.5-snapshot

3.19.4-snapshot

3.19.3-snapshot

3.19.2-snapshot

3.19.1

3.19.1-snapshot

3.19.0

3.18.5-snapshot

3.18.4-snapshot

3.18.3-snapshot

3.18.2

3.18.2-snapshot

3.18.1-snapshot

3.18.0-snapshot

3.17.3-snapshot

3.17.2-snapshot

3.17.1-snapshot

3.17.0-snapshot

3.16.3-snapshot

3.16.2-snapshot

3.16.1-snapshot

3.16.0-snapshot

3.15.13-snapshot

3.15.12-snapshot

3.15.11-snapshot

3.15.10-snapshot

3.15.9-snapshot

3.15.8-snapshot

3.15.7-snapshot

3.15.6-snapshot

3.15.5-snapshot

3.15.4-snapshot

3.15.3-snapshot

3.15.2-snapshot

3.15.1-snapshot

3.15.0-snapshot

3.14.5

3.14.4

3.14.3

3.14.3-snapshot

3.14.2-snapshot

3.14.1-snapshot

3.14.0-snapshot

3.13.1

3.13.1-snapshot

3.13.0-snapshot

3.12.1

3.12.0

3.11.0

3.10.2-snapshot

3.10.3-snapshot

3.10.4-snapshot

3.10.5-snapshot

3.10.1-snapshot

3.9.2

3.9.1

3.9.0

3.8.1-last-version-with-quarkus

3.8.1

3.8.0

3.7.0

3.6.0

3.5.3

3.5.2

3.5.0

3.4.0-beta

3.3.0-beta

3.2.5-beta

3.2.4-beta

3.2.3-beta

3.2.2-beta

3.2.1-beta

3.2.0-beta

3.1.7-beta

3.1.6-beta

3.1.5-beta

3.1.4-beta

3.1.3-beta

3.1.2-beta

b-jre-8

3.1.1-beta

3.1.0-beta

3.0.4-beta

3.0.3-beta

3.0.2-beta

3.0.1-beta

v2-golang

2.19.5

2.19.4

2.19.3

2.19.2

2.19.1

2.19.0

2.18.7

2.18.6

2.18.5

2.18.4

2.18.3

2.18.2

2.18.1

2.18.0

2.17.4

2.17.3

2.17.2

2.17.1

2.17.0

2.16.0

2.15.0

2.14.6

2.14.5

2.14.4

2.14.2

2.14.1

2.14.0

2.13.2

2.13.1

2.13.0

2.12.0

2.11.0

2.10.4

2.10.3

2.10.2

2.10.1

2.10.0

2.9.1

2.9.0

2.8.0

2.7.0

2.6.1

2.6.0

2.5.4

2.5.3

2.5.2

2.5.1

2.5.0

2.4.1

2.4.0

2.3.3

2.2.3

2.2.2

2.2.1

2.2.0

2.1.8

2.1.7

2.1.6

2.1.5

2.1.2

2.1.1

2.1.0

2.0.21

2.0.20

2.0.19

2.0.18

2.0.17

2.0.16

2.0.9

2.0.5

2.0.4

v1-nodejs

1.8.1

1.8.0

1.7.7

1.7.6

1.7.5

1.7.4

1.7.3

1.7.2

1.7.1

1.7.0

1.6.9

1.6.8

1.6.7

1.6.6

1.6.5

1.6.4

1.6.3

1.6.2

1.6.1

1.6.0

1.5.0

1.4.0

1.3.5

1.3.4

1.3.3

1.3.2

1.3.1

1.3.0

peteris-version

1.1.4-peteris-version

1.2.0

1.1.3

1.1.2

1.1.1

1.1.0

1.0.1

1.0.0

Labels

Clear labels   

bug

  

confirmed

  

discussion

  

duplicate

  

enhancement

  

feature

  

feature-request

  

not-planned

  

pull-request

Mirrored from GitHub Pull Request

  

secondary-feature

  

stale

  

triage

  

waiting-feedback

No labels

bug

confirmed

discussion

duplicate

enhancement

feature

feature-request

not-planned

pull-request

secondary-feature

stale

triage

waiting-feedback

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/dns-proxy-server-mageddo#208

No description provided.