Mikaela
/
shell-things
mirror of https://gitea.blesmrt.net/mikaela/shell-things.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

conf/systemd/user: add dnsproxy.service

This commit is contained in:
Aminda Suomalainen 2023-02-23 13:52:48 +02:00
parent 6f1335aff1
commit 7239409083
Signed by: Mikaela
SSH Key Fingerprint: SHA256:CXLULpqNBdUKB6E6fLA1b/4SzG0HvKD19PbIePU175Q
1 changed files with 23 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
conf/systemd/user/dnsproxy.service Normal file
View File

@ -0,0 +1,23 @@
# https://github.com/AdguardTeam/dnsproxy
# SELinux takes an offence against the ExecStart so let's be an user service
# instead
# DON'T FORGET! loginctl enable-linger USERNAME
[Unit]
Description=DNS over HTTPS resolver
# /etc/resolv.conf -> unbound -> dnsproxy
After=network-online.target unbound.service
Wants=unbound.service
[Service]
Type=simple
# -v is verbose output, journalctl --user -u dnsproxy
# 127.0.2.1@53 comes from https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/unbound/unbound.conf.d/dnscrypt-proxy.conf
# and it's not a privileged port https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/sysctl.d/23-starts-unprivileged-ports.conf
# The DoH server is self-explanatory, bootstrap is Quad9 with ECS
ExecStart=/home/aminda/src/github.com/AdguardTeam/dnsproxy/dnsproxy -v -l 127.0.2.1 -p 53 -u https://dns0.eu/ -b 149.112.112.11:53 -b 9.9.9.11:53 -b [2620:fe::11]:53 -b [2620:fe::fe:11]:53 --http3
Restart=always
RestartSec=5s
[Install]
WantedBy=multi-user.target