how to pass --dns to terraform-plan or terraform-apply??

[SteveDevOps]

I need the ability to pass --dns options into docker run command that is effectively running the tf plan and apply. What is path of least resistance to do this? I have tried DOCKER_CONFIG env var, setting a custom json config to no avail.

We are using twingate ZTN to talk to resources in azure privately including our tf plans and applies. This is also dependent on twingate pushing dns where the service principal isn't enough to access resources like storage that have networking restrictions active. We are using twingate headless linux client in another GHA step to pull dns for these specific resources. The docker run command rendered won't consistently respect DNS coming from twingate (on the github runner) unless we can somehow pass --dns options to the docker run.

Please advise!

[SteveDevOps]

I also tried hacking resolv.conf on the ubuntu-latest runner with no consistent results:
- name: Fix resolv.conf run: | sudo sed -i '/168/d' /run/systemd/resolve/resolv.conf cat /run/systemd/resolve/resolv.conf | grep nameserver sudo systemctl restart docker

[SteveDevOps]

I also tried jamming twingate headless client setup into terraform container itself via the exposed TERRAFORM_PRE_RUN. Trying differnt commands / parts of: https://github.com/Twingate/github-action/blob/main/action.yml. I either run into libs/dependencies missing in bullseye or if I just do the basic install and twingate start I get a process that doesn't finish -- so I don't think that's even approachable.

[SteveDevOps]

Ok, finally found a solution if anyone stumbles on this. This was the only thing that worked consistently for me and I preferred DrStrangeLove's answer in this stack link. Peace.

` #this is the way :P where x.x.x.x are actual IP addresses of nameservers you need to enforce

  - name: Set Docker DNS  
  
    run: |  

      sudo systemctl stop docker  

      tmp=$(mktemp)  

      sudo jq '.+{dns:["x.x.x.x","x.x.x.x","x.x.x.x","x.x.x.x"]}' /etc/docker/daemon.json > "$tmp"  

      sudo mv "$tmp" /etc/docker/daemon.json  

      sudo cat /etc/docker/daemon.json  

      sudo systemctl start docker`