From d4e8fc28c76dfd59f1f6a4906a75dc89039de9ad Mon Sep 17 00:00:00 2001
From: nessi <sascha@nesterovic.cc>
Date: Tue, 17 Mar 2026 19:30:38 +0100
Subject: [PATCH] fix: remove DNS resolution check from gateway bootstrap flow

Remove wait_for_backend_dns function and its invocation from apply_bundle, relying instead on curl connectivity checks in main loop to handle backend availability. Simplifies bootstrap logic by removing redundant DNS verification step.
---
 deploy/scripts/gateway-entrypoint.sh | 17 -----------------
 1 file changed, 17 deletions(-)

diff --git a/deploy/scripts/gateway-entrypoint.sh b/deploy/scripts/gateway-entrypoint.sh
index 1c964ee..d1dbf94 100644
--- a/deploy/scripts/gateway-entrypoint.sh
+++ b/deploy/scripts/gateway-entrypoint.sh
@@ -56,24 +56,7 @@ NFT_CONF="/var/lib/nexavpn/nftables.generated.conf"
 
 mkdir -p /etc/wireguard
 
-wait_for_backend_dns() {
-  if command -v getent >/dev/null 2>&1; then
-    if getent hosts "${BACKEND_HOST}" >/dev/null 2>&1; then
-      return 0
-    fi
-
-    echo "Backend host ${BACKEND_HOST} is not resolvable yet."
-    return 1
-  fi
-
-  # Alpine-based images may not ship getent. In that case let curl be the
-  # source of truth for connectivity and retry in the main loop on failure.
-  return 0
-}
-
 apply_bundle() {
-  wait_for_backend_dns || return 1
-
   if [ -z "${NEXAVPN_GATEWAY_ID:-}" ]; then
     bootstrap_gateway || return 1
   fi