问HN:你们是如何处理开发/测试环境中的私有DNS的?
我们有多个环境(开发、测试、生产),我厌倦了管理内部服务的DNS。
目前的选项都很糟糕:
- 公共DNS条目 → 安全风险,混乱真实的DNS
- VPN + 自定义DNS → 过于复杂,IT成为瓶颈,大家都在抱怨
- 编辑/etc/hosts → 不可扩展,频繁出错
- Tailscale → 可行,但成本不断增加,需要网络设置
我希望开发人员能够直接访问 api.dev.company.internal,而不需要:
- 请求IT配置任何东西
- 运行完整的VPN
- 手动编辑主机文件
- 公开暴露端点
我是不是遗漏了什么明显的解决方案?你们公司是如何处理这个问题的?
查看原文
We have multiple environments like (dev, staging, prod) and I'm tired of managing DNS for internal services.
Current options all suck:<p>Public DNS entries → security risk, clutters real DNS
VPN + custom DNS → overkill, IT bottleneck, everyone complains
Editing /etc/hosts → doesn't scale, breaks constantly
Tailscale → works but costs add up, needs network setup<p>I want devs to just access api.dev.company.internal without:<p>Asking IT to configure anything
Running a full VPN
Manual host file edits
Exposing endpoints publicly<p>Am I missing an obvious solution? How do you handle this at your company?