FedSearch
B1 Systems GmbH · @b1systems
120 followers · 70 posts · Server mastodon.social

Neu auf dem B1 Blog: Verschlüsseltes DNS selber machen - Teil 2️⃣
Jens Meißner zeigt heute, wie der knot-resolver als DoH- und DoT-Server eingerichtet werden kann: blog.b1-systems.de/verschlusse

#dot #DoH #knotresolver #debian #bullseye

Last updated 3 years ago
Original post

Frehi · @frehi
64 followers · 499 posts · Server fosstodon.org

Opened a bug report against because it fails to resolve planet.gnome.org when forwarding because of

gitlab.nic.cz/knot/knot-resolv

#knotresolver #kresd #dnssec #dns #gnome

Last updated 3 years ago
Original post

Doc Edward Morbius ⭕​ · @dredmorbius
2082 followers · 14677 posts · Server toot.cat

@yojimbo That's what's configured.

There's also a specific request to not cache results for the domains in question.

-- Forward archive.is/archive.fo queries as Cloudflare breaks these.
-- Sun Jun  2 00:43:35 CDT 2019

extraTrees = policy.todnames({'archive.is', 'archive.ph', 'archive.vn', 'archive.fo', 'archive.li', 'archive.md', 'archive.today' })

policy.add(policy.suffix(policy.FLAGS({'NO_CACHE'}),  extraTrees))


policy.add(
    policy.suffix(
    policy.STUB('192.168.0.1'), {
    -- policy.STUB('8.8.8.8'), {
        todname('archive.is'),
        todname('archive.ph'),
        todname('archive.vn'),
        todname('archive.fo'),
        todname('archive.li'),
        todname('archive.md'),
        todname('archive.today')
        }
    )
    )

I'm restarting kresd to test (should clear caches), as well as the upstream. And restarting Android networking (clears Android's own DNS cache).

Still naada.

@freakazoid @dch @jpmens

#kresd #knotresolver #dns #networking

Last updated 4 years ago
Original post

Doc Edward Morbius ⭕​ · @dredmorbius
2082 followers · 14677 posts · Server toot.cat

I am trying to grok kresd, the Knot Resolver (used on the Turris Omnia) ... and ... am encoutering impenetrable documentation.

If there's anyone famiar with it, my current goals:

  • Point specific domains at a specific DNS server.
  • Map one domain to another. E.g., youtube.com -> yewtu.be, reddit.com -> teddit.net, etc.
  • Assign specific IPs to specific hosts.

knot-resolver.readthedocs.io/e

My other option is to redo my DNS configuration using DNSMasq. Which quite frankly is probably preferable as its documentation and configuration are much more sane.

#dearMastomind #kresd #knotresolver #turris #omnia #turrisomnia #openwrt #dns #dnsmasq

Last updated 4 years ago
Original post