readonly/DNSserver
1
0
Fork 0
mirror of https://github.com/minoplhy/DNSserver.git synced 2024-11-24 10:16:54 +00:00
Code Issues Projects Releases Wiki Activity
a4efcaa05a
DNSserver/README.md
Minoplhy 4be91d5b93
Server Structure are useless and somethings useful 
- Server Structure
+ Recommendation Number 3 added
+ Less Crap
+ Recommendation Number 4 added
2021-01-11 20:15:52 +07:00

1.3 KiB
Raw Blame History

DOT DOH with haproxy

!!! denylist.rpz and allowlist.rpz are made for my private use and will cause problem with some domain !!!

Query
           Dns-over-TLS
          --------------------->  Haproxy(Frontend)    ----------------------------->  
Cluster                         Listen(TCP/443/853)                                 
          --------------------->            (HTTP/443) -------> m13253/DOH   ------->        Knot-resolver
	   Dns-over-HTTPS                                                                    Listen(Local/http)Listen(Local/dns)
	   DNSCrypt v2             
	   --------------------->  jedisct1/Encrypted DNS Server ------------------->
                                   Listen(TCP/UDP/8443)

Recommendation

  1. knot-resolver Recommend using upstream repository on debian
  2. Download.sh Recommend if you want to download all the default filters used in kresd.conf(knot-resolver configuration)
  3. jedisct1/Encrypted-dns-server is recommended if you are looking for an easy way to start a DNSCrypt server
  4. Mozilla ssl-config is recommended if you are looking for a sample TLS/SSL configuration for your Server Software

Mirror / Fork

notabug.org