Mikaela
/
shell-things
mirror of https://gitea.blesmrt.net/mikaela/shell-things.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

systemd-resolved: add DNA/Moi & Elisa DNS servers 

I was unable to find authoritative source for what is Telia's DNS
This commit is contained in:
Aminda Suomalainen 2024-04-28 16:11:13 +03:00
parent 581096257f
commit d64b4f2001
Signed by: Mikaela
SSH Key Fingerprint: SHA256:CXLULpqNBdUKB6E6fLA1b/4SzG0HvKD19PbIePU175Q
3 changed files with 24 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
etc/systemd/resolved.conf.d/05-do53-dna-moi.conf Normal file
View File

@ -0,0 +1,5 @@
[Resolve]
# https://asiakaspalvelu.moi.fi/hc/fi/articles/360029789832-Mitk%C3%A4-ovat-Moin-palvelinosoitteet
DNS=2001:14b8:1000::1 2001:14b8:1000::2
DNS=62.241.198.245 62.241.198.246
# vim: filetype=systemd

8
etc/systemd/resolved.conf.d/05-do53-elisa.conf Normal file
View File

@ -0,0 +1,8 @@
[Resolve]
# https://elisa.fi/asiakaspalvelu/nettiliittymat/tiedonsiirtoportit-porttiohjaukset/
# Elisa
DNS=193.229.0.40 193.229.0.42
# Saunalahti
DNS=2001:998:20::20 2001:998:20::40
DNS=195.74.0.47 195.197.54.100
# vim: filetype=systemd

12
etc/systemd/resolved.conf.d/README.md
View File

@ -33,10 +33,20 @@ sudo systemctl restart systemd-resolved
there truly is no local resolver, systemd-resolved will detect that and act accordingly.)
- To rephrase, this is to be used together with other files, especially
some of those beginning with `10-dot-`.
- `05-do53-dna-moi.conf` - DNS servers used by DNA and Moi (who is on DNA's
network and owned by them)
- `05-do53-elisa.conf` - DNS servers used by Elisa and apparently their
Saunalahti still exists here as well.
- `10-dot-*.conf` - configuration to use the DNS provider with DNS-over-TLS.
At least one of these should be used in addition to `00-defaults.conf`
- `98-local-resolver.conf` attempts to configure localhost resolver and
disables unnecessary features for that scenario.
disables unnecessary features for that scenario. The number 10 takes
priority over 00 and 05 so if a DNSOverTLS=true is uncommented, it will
also apply to the former ones that are unlikely to support it. When
numbering the files, I didn't think I would be adding the plaintext DNS
servers that I am unlikely to use whenever Unbound is available (and I
currently have only one system that has systemd-resolved while not having
Unbound and it seems to prefer DoT over my router anyway).
- `99-lan-resolver.conf.sample` when renamed would allow enabling resolvers on
LAN assuming they are trusted. Note that if used together with
`98-local-resolver.conf`, DNSSEC would be disabled.