Cloudflared
Cloudflared may be used to run a local DNS over HTTPS server (DoH), i.e., a stub resolver.
Installation
Install the cloudflared package.
Configuration
Cloudflared by default ships with 1.1.1.1 and 1.0.0.1 enabled, with the DNS server runing at port 5300, and the server only accessible to localhost.
To change the configuration, edit the following file, replacing <endpoint> with preferred endpoints.
/etc/cloudflared/config.yml
--- logfile: /var/log/cloudflared.log proxy-dns: true proxy-dns-upstream: ''' - <endpoint>''' ''' - <endpoint>''' ''' - <endpoint>''' proxy-dns-port: 53 proxy-dns-address: 0.0.0.0
As per upstream documentation, here are the available endpoints:
| Endpoints | Description |
|---|---|
- https://1.0.0.1/dns-query - https://1.1.1.1/dns-query - https://2606:4700:4700::1111/dns-query - https://2606:4700:4700::1001/dns-query | Standard |
- https://security.cloudflare-dns.com/dns-query | Standard, but blocks malware |
- https://family.cloudflare-dns.com/dns-query | Standard, but blocks malware and porn |
- https://9.9.9.9/dns-query | Quad9 |
Usage
Start and enable cloudflared.service. Now you can use your device's IP address as a DNS server.
Tip: Use 1.1.1.1/help to check if browser is using Cloudflare DoH.
gollark: So it's more like "things Denmark and Sweden do and why I think they're great"?
gollark: Vaguely relatedly, I would be a bit dubious of a plan to "change the economy and political structure for a better, stronger, richer country that puts citizens first", inasmuch as presumably if there was an easy/comparatively obvious way to do that some countries would likely already try this.
gollark: I don't know. Sure, if you want?
gollark: Learning about electronics might be interesting.
gollark: Hmm. Well. It seems like you've gone through basically everything I might suggest and also a large amount of things I haven't, so no idea then.
This article is issued from Archlinux. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.