Ask HN:你们如何处理开发/预发布环境的私有 DNS?
1 分•作者: kenonet•7 个月前
我们有多个环境,例如(开发、预发布、生产),我厌倦了管理内部服务的 DNS。
目前的方案都不好用:
* 公共 DNS 记录 → 安全风险,弄乱了真实的 DNS
* VPN + 自定义 DNS → 过度设计,IT 瓶颈,大家都抱怨
* 编辑 /etc/hosts → 无法扩展,经常崩溃
* Tailscale → 可以用,但成本会增加,需要网络设置
我希望开发人员可以直接访问 api.dev.company.internal,而无需:
* 让 IT 配置任何东西
* 运行完整的 VPN
* 手动编辑 hosts 文件
* 公开暴露端点
我是否遗漏了显而易见的解决方案?你们公司是如何处理这个问题的?
查看原文
We have multiple environments like (dev, staging, prod) and I'm tired of managing DNS for internal services.
Current options all suck:<p>Public DNS entries → security risk, clutters real DNS
VPN + custom DNS → overkill, IT bottleneck, everyone complains
Editing /etc/hosts → doesn't scale, breaks constantly
Tailscale → works but costs add up, needs network setup<p>I want devs to just access api.dev.company.internal without:<p>Asking IT to configure anything
Running a full VPN
Manual host file edits
Exposing endpoints publicly<p>Am I missing an obvious solution? How do you handle this at your company?