From a0ccd790ab7b18a7635e0570b8a23eed6854f226 Mon Sep 17 00:00:00 2001 From: Aminda Suomalainen Date: Sun, 21 Apr 2024 10:54:22 +0300 Subject: [PATCH] unbound & systemd-resolved: add Quad9 alternative port --- etc/systemd/resolved.conf.d/dot-quad9.conf | 4 ++++ etc/unbound/unbound.conf.d/dot-quad9.conf | 16 ++++++++++++++++ 2 files changed, 20 insertions(+) diff --git a/etc/systemd/resolved.conf.d/dot-quad9.conf b/etc/systemd/resolved.conf.d/dot-quad9.conf index f45c9186..cca251a2 100644 --- a/etc/systemd/resolved.conf.d/dot-quad9.conf +++ b/etc/systemd/resolved.conf.d/dot-quad9.conf @@ -1,12 +1,16 @@ [Resolve] # Secure DNS=2620:fe::9#dns.quad9.net 149.112.112.112#dns.quad9.net 2620:fe::fe#dns.quad9.net 9.9.9.9#dns.quad9.net +DNS=[2620:fe::9]:8853#dns.quad9.net 149.112.112.112:8853#dns.quad9.net [2620:fe::fe]:8853#dns.quad9.net 9.9.9.9:8853#dns.quad9.net # No Threat Blocking #DNS=2620:fe::10#dns10.quad9.net 149.112.112.10#dns10.quad9.net 2620:fe::fe:10#dns10.quad9.net 9.9.9.10#dns10.quad9.net +#DNS=[2620:fe::10]:8853#dns10.quad9.net 149.112.112.10:8853#dns10.quad9.net [2620:fe::fe:10]:8853#dns10.quad9.net 9.9.9.10:8853#dns10.quad9.net # Secure + ECS #DNS=2620:fe::11#dns11.quad9.net 149.112.112.11#dns11.quad9.net 2620:fe::fe:11#dns11.quad9.net 9.9.9.11#dns11.quad9.net +#DNS=[2620:fe::11]:8853#dns11.quad9.net 149.112.112.11:8853#dns11.quad9.net [2620:fe::fe:11]:8853#dns11.quad9.net 9.9.9.11:8853#dns11.quad9.net # No Threat Blocking + ECS #DNS=9.9.9.12#dns12.quad9.net 149.112.112.12#dns12.quad9.net 2620:fe::12#dns12.quad9.net 2620:fe::fe:12#dns12.quad9.net +#DNS=9.9.9.12:8853#dns12.quad9.net 149.112.112.12:8853#dns12.quad9.net [2620:fe::12]:8853#dns12.quad9.net [2620:fe::fe:12]:8853#dns12.quad9.net # Uncomment for port 443 resolver #DNS=[2a02:1b8:10:234::2]:443#dot1.applied-privacy.net 146.255.56.98:443#dot1.applied-privacy.net #DNSOverTLS=true diff --git a/etc/unbound/unbound.conf.d/dot-quad9.conf b/etc/unbound/unbound.conf.d/dot-quad9.conf index 9c11de5a..82f3f6fd 100644 --- a/etc/unbound/unbound.conf.d/dot-quad9.conf +++ b/etc/unbound/unbound.conf.d/dot-quad9.conf @@ -21,20 +21,36 @@ forward-zone: forward-addr: 9.9.9.9@853#dns.quad9.net forward-addr: 2620:fe::9@853#dns.quad9.net forward-addr: 149.112.112.112@853#dns.quad9.net + forward-addr: 2620:fe::fe@8853#dns.quad9.net + forward-addr: 9.9.9.9@8853#dns.quad9.net + forward-addr: 2620:fe::9@8853#dns.quad9.net + forward-addr: 149.112.112.112@8853#dns.quad9.net ## No Threat Blocking #forward-addr: 2620:fe::fe:10@853#dns10.quad9.net #forward-addr: 149.112.112.10@853#dns10.quad9.net #forward-addr: 2620:fe::10@853#dns10.quad9.net #forward-addr: 9.9.9.10@853#dns10.quad9.net + #forward-addr: 2620:fe::fe:10@8853#dns10.quad9.net + #forward-addr: 149.112.112.10@8853#dns10.quad9.net + #forward-addr: 2620:fe::10@8853#dns10.quad9.net + #forward-addr: 9.9.9.10@8853#dns10.quad9.net ## Secure + ECS #forward-addr: 2620:fe::fe:11@853#dns11.quad9.net #forward-addr: 9.9.9.11@853#dns11.quad9.net #forward-addr: 2620:fe::11@853#dns11.quad9.net #forward-addr: 149.112.112.11@853#dns11.quad9.net + #forward-addr: 2620:fe::fe:11@8853#dns11.quad9.net + #forward-addr: 9.9.9.11@8853#dns11.quad9.net + #forward-addr: 2620:fe::11@8853#dns11.quad9.net + #forward-addr: 149.112.112.11@8853#dns11.quad9.net ## No Threat Blocking + ECS #forward-addr: 2620:fe::fe:12@853#dns12.quad9.net #forward-addr: 9.9.9.12@853#dns12.quad9.net #forward-addr: 2620:fe::12@853#dns12.quad9.net #forward-addr: 149.112.112.12@853#dns12.quad9.net + #forward-addr: 2620:fe::fe:12@8853#dns12.quad9.net + #forward-addr: 9.9.9.12@8853#dns12.quad9.net + #forward-addr: 2620:fe::12@8853#dns12.quad9.net + #forward-addr: 149.112.112.12@8853#dns12.quad9.net # vim: filetype=unbound.conf