-
-
Notifications
You must be signed in to change notification settings - Fork 396
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature request: DNS over HTTPS in Go to replace Unbound #137
Comments
I just wanted to check in on the progress here! Are we there yet? 😄 |
It's still a work in progress at https://github.com/qdm12/dns/tree/v2.0.0-beta I can't give an exact timeline, but it's almost done. |
It would be great if a specific DoT server could be specified, and not just providers. Not sure if this is doable now, but I haven't been able to find it. |
Hi Quentin, any information available? |
Can anyone try image This will allow a lot more options and customizations (even Prometheus metrics at some point, it's already in the dns server Go code). |
What needs to be tested exactly ? |
@qdm12 Why not use CoreDNS? That way people can use their |
Closed issues are NOT monitored, so commenting here is likely to be not seen. This is an automated comment setup because @qdm12 is the sole maintainer of this project |
1 similar comment
Closed issues are NOT monitored, so commenting here is likely to be not seen. This is an automated comment setup because @qdm12 is the sole maintainer of this project |
Re-opening because the implementation is not supporting DNS over HTTPs yet (the dns library does, but the gluetun code was not adapted yet) |
- Faster start up - Clearer error messages - Allow for more Gluetun-specific customization - DNSSEC validation is dropped for now (it's sort of unneeded) - Fix qdm12#137
We should adopt https://github.com/qdm12/dns/releases/tag/v2.0.0-rc5 even if it has no DNSSEC validation builtin yet. Main reason being most domains are not DNSSEC secured, and so your DNS provider (cloudflare, google etc.) can lie about the records for these unsecured domains, even if you can securely proof these are unsecured. So not really a point so much, although this will be done (see qdm12/dns#97)
This is blocked by an upgrade of the qdm12/gosettings library to v0.4.0-rc9
The text was updated successfully, but these errors were encountered: