From 550b68d149255f8a82a3d7f0e72ae421f78f46d1 Mon Sep 17 00:00:00 2001 From: Mikaela Suomalainen Date: Sat, 18 Jul 2020 02:19:36 +0300 Subject: [PATCH] etc/systemd/resolved: add [adguard,cloudflare}-strict.conf I am not actually using either though and I am not sure if I will, but maybe they are nice to have as a backup here just in case. --- etc/systemd/resolved.conf.d/adguard-strict.conf | 11 +++++++++++ etc/systemd/resolved.conf.d/cloudflare-strict.conf | 8 ++++++++ 2 files changed, 19 insertions(+) create mode 100644 etc/systemd/resolved.conf.d/adguard-strict.conf create mode 100644 etc/systemd/resolved.conf.d/cloudflare-strict.conf diff --git a/etc/systemd/resolved.conf.d/adguard-strict.conf b/etc/systemd/resolved.conf.d/adguard-strict.conf new file mode 100644 index 00000000..bd09358c --- /dev/null +++ b/etc/systemd/resolved.conf.d/adguard-strict.conf @@ -0,0 +1,11 @@ +# AdGuard / systemd-resolved. For people who don't panic when DNSSEC or +# DoT doesn't work and captive portals attack? See README.md +# Also requires not panicking if you need something AdGuard is blocking. +[Resolve] +DNS=2a00:5a60::ad2:ff#dns.adguard.com 176.103.130.131#dns.adguard.com 2a00:5a60::ad1:ff#dns.adguard.com 176.103.130.130#dns.adguard.com +Domains=~. +# In case of adblocking DNS it makes no sense to start disabling these, +# especially DNSOverTLS, so there won't be non-strict version. +DNSSEC=true +DNSOverTLS=true +Cache=true diff --git a/etc/systemd/resolved.conf.d/cloudflare-strict.conf b/etc/systemd/resolved.conf.d/cloudflare-strict.conf new file mode 100644 index 00000000..c22d90af --- /dev/null +++ b/etc/systemd/resolved.conf.d/cloudflare-strict.conf @@ -0,0 +1,8 @@ +# Cloudflare / systemd-resolved. For people who don't panic when DNSSEC or +# DoT doesn't work and captive portals attack? See README.md +[Resolve] +DNS=2606:4700:4700::1111#cloudflare-dns.com 1.0.0.1#cloudflare-dns.com 2606:4700:4700::1001#cloudflare-dns.com 1.1.1.1#cloudflare-dns.com +Domains=~. +DNSSEC=true +DNSOverTLS=true +Cache=true