mirror of
https://github.com/minoplhy/DNSserver.git
synced 2024-11-24 10:16:54 +00:00
2.3 KiB
2.3 KiB
HaproxyDNS
Use Haproxy or NGINX as Dns-over-HTTPS | DNS-over-TLS | DNSCrypt(not Haproxy) | Plain DNS Server
!!! denylist.rpz and allowlist.rpz are made for my private use and will cause problem with some domain !!!
denylist.rpz and allowlist.rpz now moved to dedicated repository but still cause problem
Query
Dns-over-TLS
---------------------> Haproxy(Frontend) ----------------------------->
Cluster Listen(TCP/443/853)
---------------------> (HTTP/443) -------> m13253/DOH -------> Knot-resolver
Dns-over-HTTPS Listen(global/dns)Listen(Local/dns)
DNSCrypt v2
---------------------> jedisct1/Encrypted DNS Server ------------------->
Listen(TCP/UDP/8443)
or NGINX
Query
Dns-over-TLS
---------------------> NGINX(Frontend) ----------------------------->
Cluster Listen(TCP/443/853)
---------------------> (HTTP/443) -------> m13253/DOH -------> Knot-resolver
Dns-over-HTTPS Listen(global/dns)Listen(Local/dns)
DNSCrypt v2
---------------------> jedisct1/Encrypted DNS Server ------------------->
Listen(TCP/UDP/8443)
Recommendation
- knot-resolver Recommend using upstream repository on debian
- download-filters.sh Recommend if you want to download all the default filters used in kresd.conf(knot-resolver configuration)
- jedisct1/Encrypted-dns-server Recommend if you are looking for an easy way to start a DNSCrypt server
- Mozilla ssl-config Recommend if you are looking for a sample TLS/SSL configuration for your Server Software
Mirror / Fork
Mirror n Fork Repository might not up-to-date with main repository