tencent cloud

Tencent Cloud Smart Advisor

Release Notes
Product Introduction
Overview
Features
Product Strengths
Scenarios
Customer Cases
Purchase Guide
Getting Started
Using TSA to Perform a Cloud Risk Assessment
Using TSA to Execute a Chaos Experiment on CFG
Operation Guide
Operation Guide to TSA-Cloud Architecture
Operation Guide to TSA-Cloud Risk Assessment
Operation Guide to TSA-Chaotic Fault Generator
Operation Guide to TSA-Digital Assets
Permission Management
API Documentation
History
Introduction
API Category
Making API Requests
Other APIs
Task APIs
Cloud Architecture Console APIs
Data Types
Error Codes
FAQs
FAQs: TSA
FAQs: TSA-Cloud Risk Assessment
FAQs: TSA-Cloud Architecture
FAQs: TSA-Chaotic Fault Generator
Related Protocol
Tencent Cloud Smart Advisor Service Level Agreement
PRIVACY POLICY MODULE CHAOTIC FAULT GENERATOR
DATA PRIVACY AND SECURITY AGREEMENT MODULE CHAOTIC FAULT GENERATOR
Contact Us
문서Tencent Cloud Smart AdvisorOperation GuideOperation Guide to TSA-Chaotic Fault GeneratorFault Action LibraryComputeCVM DNS Unavailability Experiment

CVM DNS Unavailability Experiment

PDF
포커스 모드
폰트 크기
마지막 업데이트 시간: 2026-03-31 23:12:13

Background

Cloud Virtual Machine (CVM), launched by Tencent Cloud, has seen rapid and widespread adoption. When a CVM is used, the IP address of the server can be quickly located through Domain Name System (DNS) to allow easy access by users. The complexity introduced by cloud computing architectures also poses new challenges to stability. However, the importance of DNS in the Internet world has long been ignored. Issues such as malicious DNS pollution, hijacking, and lack of high availability and scalability make DNS a popular target for attacks. Therefore, to ensure business continuity and security for users, CVM DNS chaos experiments have emerged.

Experiment Execution

Step 1: Preparing an Experiment

Prepare a CVM instance to be experimented.

Step 2: Orchestrating the Experiment

1. Log in to the Tencent Cloud Smart Advisor (TSA) console, choose Architecture Governance, select Governance Mode, and click CFG. (For details about how to create an experiment, see Using TSA to Execute a Chaos Experiment on CFG.)
2. Click Create Experiment, enter the basic information about the experiment, and click Next.
3. Choose Compute > CVM from the Experiment Instance drop-down list, click Add via Search, and add an instance resource. Alternatively, click Add via Architecture Diagram, click a CVM resource on the architecture diagram, select the required instance, and add it.
4. After the instance is added, click Add Action. Under the Network Resources category, select DNS Unavailable.
5. Configure fault action parameters. The domain name allowlist parameter is supported, indicating the list of domain names that remain resolvable even while the DNS fault is active. Separate multiple domain names with semicolons (;). Then, click OK.
6. After completing the parameter configuration, set Execution Mode and Guardrail Policy, and add metrics for Observability Metrics in the Global Configuration section. After the configuration is complete, click Submit to complete the experiment creation.

Step 3: Executing the Experiment

1. Verify the DNS resolution before a fault. Use the nslookup command to test domain name resolution.
2. Go to the experiment details panel, and click Execute in the fault action group or Start Experiment in the lower part of the panel to inject a fault.
3. After successful fault injection, use nslookup to observe the CVM DNS resolution.
4. Click Execute in the corresponding recovery action to recover DNS.
5. After successful recovery, observe the CVM DNS resolution again. You can see that DNS has returned to normal.


이전 주제: Cross-AZ Experiment in CVM다음 주제: CVM DNS Resolution Tampering Experiment Case

도움말 및 지원

문제 해결에 도움이 되었나요?

피드백