Skip to content

tinkernels/doh-relay

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

89 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
cache_i.go
cache_i.go
 
 
cache_internal.go
cache_internal.go
 
 
cache_item.go
cache_item.go
 
 
cache_redis.go
cache_redis.go
 
 
cache_redis_test.go
cache_redis_test.go
 
 
config-example.yml
config-example.yml
 
 
config.go
config.go
 
 
config_test.go
config_test.go
 
 
dns53_handler.go
dns53_handler.go
 
 
dnsmsg_answerer.go
dnsmsg_answerer.go
 
 
doh_handler.go
doh_handler.go
 
 
doh_handler_test.go
doh_handler_test.go
 
 
geoip.go
geoip.go
 
 
geoip_test.go
geoip_test.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
main_test.go
main_test.go
 
 
resolver_dns53_dnsmsg.go
resolver_dns53_dnsmsg.go
 
 
resolver_doh_dnsmsg.go
resolver_doh_dnsmsg.go
 
 
resolver_doh_dnsmsg_test.go
resolver_doh_dnsmsg_test.go
 
 
resolver_doh_json.go
resolver_doh_json.go
 
 
resolver_doh_json_test.go
resolver_doh_json_test.go
 
 
resolver_i.go
resolver_i.go
 
 
resolver_rsp_dnsmsg.go
resolver_rsp_dnsmsg.go
 
 
resolver_rsp_doh_json.go
resolver_rsp_doh_json.go
 
 
resolver_rsp_i.go
resolver_rsp_i.go
 
 
utils.go
utils.go
 
 
utils_test.go
utils_test.go
 
 

Repository files navigation

doh-relay · License Go Report Card

doh-relay is a tool for relaying DNS queries

  • Ability to provide DNS53 and DNS-over-HTTPS services simultaneously.

  • Relay DNS queries to upsteram service (can be DNS53 or DNS-over-HTTPS).

  • Support EDNS-Client-Subnet.

Build

make release

Usage

Usage:

  doh-relay [options]

Options:

  -cache
        Enable cache for DNS answers. (default true)
  -cache-backend string
        Specify cache backend (default "internal")
  -config string
        use config file (yaml format)
  -dns53
        Enable dns53 relay service.
  -dns53-2nd-ecs-ip string
        Set dns53 secondary EDNS-Client-Subnet ip, eg: 12.34.56.78.
  -dns53-listen string
        Set dns53 service listen port. (default "udp://:53,tcp://:53")
  -dns53-upstream string
        Upstream resolver for dns53 service (default upstream type is standard DoH), e.g. https://149.112.112.11/dns-query,https://9.9.9.11/dns-query
  -dns53-upstream-dns53
        If dns53 service relays DNS queries to upstream endpoints using dns53 protocol.
  -dns53-upstream-json
        If dns53 service relays DNS queries to upstream endpoints transfer with json format.
  -dns53-use-client-ip
        If dns53 service use client ip as ECS.
  -doh
        Enable DoH relay service.
  -doh-2nd-ecs-ip string
        Specify secondary EDNS-Client-Subnet ip, eg: 12.34.56.78
  -doh-listen string
        Set doh relay service listen port. (default "127.0.0.1:15353")
  -doh-path string
        DNS-over-HTTPS endpoint path. (default "/dns-query")
  -doh-tls
        Enable DoH relay service over TLS, default on clear http.
  -doh-tls-cert string
        Specify tls cert path.
  -doh-tls-key string
        Specify tls key path.
  -doh-upstream string
        Upstream resolver for doh service (default upstream type is standard DoH), e.g. https://149.112.112.11/dns-query,https://9.9.9.11/dns-query
  -doh-upstream-dns53
        If DoH service relays queries to upstream endpoints using dns53 protocol.
  -doh-upstream-json
        If DoH service relays queries to upstream DoH endpoints transfer with json format.
  -doh-use-client-ip
        If doh service use client ip as ECS.
  -loglevel string
        Set log level. (default "info")
  -maxmind-citydb-file string
        Specify maxmind city db file path.
  -redis-uri string
        Specify redis uri for caching
  -version
        Print version info.

Config file

There's a example config file with comments here.

Usage example

  • Set up a DNS53 (listening on tcp://0.0.0.0:53 and udp://0.0.0.0:53) service relaying DNS queries to DNS-over-HTTPS service (https://9.9.9.11/dns-query):

    doh-relay -dns53 -dns53-listen tcp://:53,udp://:53 -dns53-upstream https://9.9.9.11/dns-query -maxmind-citydb-file /usr/local/var/GeoIP/GeoLite2-City.mmdb

  • Set up a DNS-over-HTTPS (listening on http://0.0.0.0:15353) service relaying DNS queries to DNS-over-HTTPS service (https://9.9.9.11/dns-query), also with internal cache on:

    doh-relay -cache -doh -doh-listen :15353 -doh-upstream https://9.9.9.11/dns-query -maxmind-citydb-file /var/lib/GeoIP/GeoLite2-City.mmdb

  • Set up a DNS-over-HTTPS (listening on http://0.0.0.0:15353) service relaying DNS queries to DNS53 service (tcp://9.9.9.11:53):

    doh-relay -doh -doh-listen :15353 -doh-upstream tcp://9.9.9.11:53 -doh-upstream-dns53 -maxmind-citydb-file /var/lib/GeoIP/GeoLite2-City.mmdb

TODOs

  • Implement redis cache backend.

Thanks

github.com/miekg/dns

License

Apache-2.0

About

DNS-over-HTTPS relay service.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

8 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

12 tags

Packages

No packages published

Languages