Pages

Tuesday, 26 June 2018

DNS-over-HTTPS proxy

a DNS agent which forwards queries to Google's beta DNS-over-HTTPS service.
Build Status Godoc
An implementation of a forwarding DNS proxy for using Google's DNS-over-HTTPS service with conventional applications.
Currently does no caching or particularly sensible parsing, and supports only A and AAAA records (as no API to convert them to Go-DNS format is yet written, and the Google API is still in flux).

Usage

Just run it! Remember if you're behind a corporate proxy you will need to set your http_proxy and https_proxy environment variables to contact the Google DNS servers through them. It might also be advisable use a local caching proxy in front of this if it's going to be a daily driver.
By default it binds to port 53, so if you have a local resolver it will fail to start. You can test it by binding to a high port and using dig like so:
dns-over-https-proxy -debug=true -address=127.0.0.1:8500 -log.level=debug
and then running dig will produce output similar to the below:
$ dig -p 8500 @127.0.0.1 google.com
; <<>> DiG 9.9.5-11ubuntu1.3-Ubuntu <<>> -p 8500 @127.0.0.1 google.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54973
;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;google.com.   IN A

;; ANSWER SECTION:
google.com.  299 IN A 74.125.23.100
google.com.  299 IN A 74.125.23.113
google.com.  299 IN A 74.125.23.101
google.com.  299 IN A 74.125.23.102
google.com.  299 IN A 74.125.23.138
google.com.  299 IN A 74.125.23.139

;; Query time: 1302 msec
;; SERVER: 127.0.0.1#8500(127.0.0.1)
;; WHEN: Fri Apr 15 02:26:09 AEST 2016
;; MSG SIZE  rcvd: 184

License

Apache License, version 2.0.

Thanks

from https://github.com/wrouesnel/dns-over-https-proxy
           

No comments:

Post a Comment