docker-cloudflared
DoH
Our great sponsors
docker-cloudflared | DoH | |
---|---|---|
6 | 18 | |
294 | 52 | |
- | - | |
7.2 | 1.2 | |
4 months ago | about 1 year ago | |
Dockerfile | PHP | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
docker-cloudflared
-
An extensive tutorial on how to setup a Pi-Hole
Edit: Also great to see that AGH has secure DNS built in. My Pi-Hole solution required cloudflared [0] for that.
[0]https://github.com/crazy-max/docker-cloudflared
- pihole with DoT, DoH, or DNSCrypt
-
Firefox extends privacy and security of Canadian internet users with by-default DNS-over-HTTPS rollout in Canada
You can forward all unresolved DNS requests to Cloudflare on Pi-hole, but if you want to send them through DNS over HTTPS (DoH) on your network, you will need to forward them to something running cloudflared. Here are 2 docker containers you can use to host on separate network containers: https://github.com/crazy-max/docker-cloudflared, https://github.com/visibilityspots/dockerfile-cloudflared
-
DNS Question - Leak?
There are multiple types of encrypted DNS services (DoH, DoT, DoQ). I have used DoH using cloudflared. If you are using Docker, you can use this.
-
My ISP starts hijacking dns servers so unbound stopped working
My ISP was doing the same thing. It was only fixed after switching to DoH. OP, if you are using docker, you can use this one file solution to setup pihole+cloudflared. Repo source
-
Is this the ultimate self-hosting setup? I think so...
Cloudflared - DNS over HTTPS client that's not tied to Cloudflare (route Pihole requests through this)
DoH
-
Encrypted DNS, what's the point?
Even those who weren't interested in self-hosting might spend a couple of minutes hosting their own DNS proxy since it's much more flexible and don't require root or dedicated port (at least with DoH).
- I have a feeling 1.1.1.1 + WARP isn't gonna last long
-
AdGuard Home and dealing with DoH
To inject a little paranoia, DoH spec and implementation don't actually require the providers to only use /dns-query, it's possible (and very simple) to create an innocuous-looking website with /supersecretdns serving DoH, or directly on the homepage itself (the request for DoH vs regular webpage has different header), but if your kids are already that proficient, no way to stop them aside from plugging off the router.
-
Preparing for when NextDNS gets blocked
Get a PHP hosting (dime a dozen these days), and proxying on PHP is also seamless, pretty much any website can have a secret URL that serves DoH.
-
Tiny script for DoH proxy
https://github.com/NotMikeDEV/DoH/blob/master/dns.php handles both POST & GET. Yours only work with the POST, used by Chrome & Firefox, but not AdGuard.
-
Is there any issue with playing DoH DNS roulette?
If you are paranoid about a particular DNS server knowing your requests (but not paranoid enough to just use Tor entirely), the alternative will be just running a recursive resolver where you're running that PHP file. This exposes your server IP to the nameserver, but that's it, no extra third parties are involved. Or take it to the next level by running Tor there and forwarding plain DNS requests through it.
-
Anyone know of a free service I can host a custom dns on
DoH can be somewhat protected with a secret path, you can even create one for free on Cloudflare Worker or any PHP hosting, but only Windows 11, iOS, macOS, and browsers support it natively. DoT is supported by Android natively but hiding the custom domain is more complex (you'll need wildcard cert, which requires manual record update with LetsEncrypt every 90 days), and if someone snoops on your traffic since they can see the domain for the DoT.
- Dirt simple PHP script to run DNS over HTTPS (DoH) on almost any hosting
- Is there any DoH add-on for WordPress?
-
My ISP starts hijacking dns servers so unbound stopped working
That relies on a list of known DoH providers. Private DoH server won't be in the list, which can be very easily made on any PHP hosting or even just a Cloudflare Worker.
What are some alternatives?
Docker Compose - Define and run multi-container applications with Docker
Unbound - Unbound is a validating, recursive, and caching DNS resolver.
encrypted-dns - DNS over HTTPS config profiles for iOS & macOS
docker-fail2ban - Fail2ban Docker image
bebasdns - Membantumu berselancar dengan aman dan tidak terbatas!.
Home Assistant - :house_with_garden: Open source home automation that puts local control and privacy first.
dnsproxy - Simple DNS proxy with DoH, DoT, DoQ and DNSCrypt support
AnonAddy-docker - AnonAddy Docker image
doh-cf-workers - DNS-over-HTTPS proxy on Cloudflare Workers
node-red-contrib-home-assistant-websocket - Node-RED integration with Home Assistant
docker-bind - Bind (bind9) caching DNS server on Alpine or Debian with wild-card domain support [multi-arch]