resolv.conf: more notes, hilight systemd-resolved, add DoH addresses

This commit is contained in:
Aminda Suomalainen 2020-08-08 19:44:08 +03:00
parent ca25fa1a66
commit f58ba9424e
Signed by: Mikaela
GPG Key ID: 99392F62BAE30723

View File

@ -23,12 +23,14 @@ nameserver 2620:fe::9
# trust-ad option is required from glibc2.31+ to tell everything to trust # trust-ad option is required from glibc2.31+ to tell everything to trust
# AD/DNSSEC in case there is a localhost DNS server that validates it # AD/DNSSEC in case there is a localhost DNS server that validates it
options edns0 single-request-reopen #trust-ad options edns0 single-request-reopen #trust-ad
# I am not entirely sure local is valid to use here. And this has a bad # I am not entirely sure local is valid to use here. And this has a bad
# habit of flooding nameserver with names I don't want it to know about # habit of flooding nameserver with names I don't want it to know about
# and in some cases there are _fun_ A/AAA responses to nonexistant domains. # and in some cases there are _fun_ A/AAA responses to nonexistant domains.
# !!! The systemd-resolved file to avoid search domains is # !!! The systemd-resolved file to avoid search domains is
# /usr/lib/systemd/resolv.conf # /usr/lib/systemd/resolv.conf
#search mikaela.internal local mikaela.info #search mikaela.internal local mikaela.info
# note and remember missing DNSSEC # note and remember missing DNSSEC
# use.opendns.com http://208.69.38.205/ # use.opendns.com http://208.69.38.205/
# system.opendns.com http://208.69.38.170/ # system.opendns.com http://208.69.38.170/
@ -44,10 +46,21 @@ options edns0 single-request-reopen #trust-ad
# 149.112.112.112, 9.9.9.9 # 149.112.112.112, 9.9.9.9
# 2620:fe::9, 2620:fe::fe # 2620:fe::9, 2620:fe::fe
# See also: # 2020-08-08: obviously the purpouse here is to be a random DNS note that
# /run/systemd/resolve/stub-resolv.conf /usr/lib/systemd/resolv.conf /run/systemd/resolve/resolv.conf # hopefully englightens future me when I need it on everything and nothing
# related to DNS!
# /run/systemd/resolve/stub-resolv.conf contains search domains and doesn't seem to be # DNS-over-HTTPS
# Quad9: https://dns.quad9.net/dns-query
# Google: https://dns.google/dns-query
# Cloudflare: https://cloudflare-dns.com/dns-query
# OpenDNS: https://doh.opendns.com/dns-query
# Adguard: https://dns.adguard.com/dns-query
# systemd-resolved symlink files:
# !!! /run/systemd/resolve/stub-resolv.conf !!! /usr/lib/systemd/resolv.conf /run/systemd/resolve/resolv.conf
# !!! /run/systemd/resolve/stub-resolv.conf !!! contains search domains and doesn't seem to be
# overwritable and somehow works with Mullvad # overwritable and somehow works with Mullvad
# https://github.com/mullvad/mullvadvpn-app/issues/1952 # https://github.com/mullvad/mullvadvpn-app/issues/1952
# /usr/lib/systemd/resolv.conf doesn't contain search domains, can # /usr/lib/systemd/resolv.conf doesn't contain search domains, can