readonly/DNSserver
1
0
Fork 0
mirror of https://github.com/minoplhy/DNSserver.git synced 2024-11-24 02:06:52 +00:00
Code Issues Projects Releases Wiki Activity
My Personal Configuration for DNSserver using Haproxy or NGINX
122 Commits 28 Branches 0 Tags 170 KiB
Lua 80.3%
Shell 19.7%
4a11479754
Go to file
minoplhy 4a11479754 README Updates
2021-08-28 13:37:19 +07:00
addition Update check.http 2021-01-23 14:19:27 +07:00
configuration Fix Typo in kresd-forward.conf 2021-08-28 13:33:05 +07:00
bright.md Create bright.md 2021-01-01 20:25:06 +07:00
download-filters.sh Remove Energized Social and some others replace with minoplhy private-build 2021-08-10 10:35:11 +07:00
README.md README Updates 2021-08-28 13:37:19 +07:00

README.md

HaproxyDNS

Use Haproxy as Dns-over-HTTPS | DNS-over-TLS | DNSCrypt(not Haproxy) Server

!!! denylist.rpz and allowlist.rpz are made for my private use and will cause problem with some domain !!!

denylist.rpz and allowlist.rpz now moved to dedicated repository but still cause problem

Query
           Dns-over-TLS
          --------------------->  Haproxy(Frontend)    ----------------------------->  
Cluster                         Listen(TCP/443/853)                                 
          --------------------->            (HTTP/443) -------> m13253/DOH   ------->        Knot-resolver
	   Dns-over-HTTPS                                                                    Listen(global/dns)Listen(Local/dns)
	   DNSCrypt v2             
	   --------------------->  jedisct1/Encrypted DNS Server ------------------->
                                   Listen(TCP/UDP/8443)

or NGINX

Query
           Dns-over-TLS
          --------------------->  NGINX(Frontend)    ----------------------------->  
Cluster                         Listen(TCP/443/853)                                 
          --------------------->            (HTTP/443) -------> m13253/DOH   ------->        Knot-resolver
	   Dns-over-HTTPS                                                                    Listen(global/dns)Listen(Local/dns)
	   DNSCrypt v2             
	   --------------------->  jedisct1/Encrypted DNS Server ------------------->
                                   Listen(TCP/UDP/8443)

Recommendation

  1. knot-resolver Recommend using upstream repository on debian
  2. download-filters.sh Recommend if you want to download all the default filters used in kresd.conf(knot-resolver configuration)
  3. jedisct1/Encrypted-dns-server Recommend if you are looking for an easy way to start a DNSCrypt server
  4. Mozilla ssl-config Recommend if you are looking for a sample TLS/SSL configuration for your Server Software

Mirror / Fork

Mirror n Fork Repository might not up-to-date with main repository

notabug.org

codeberg.org