Feature Request: Custom IP for EDNS client subnet

[AvailCat]

(@ainar-g: updating the top post to summarize the discussion and make sure nothing is lost; original content is under the <details> tag.)

In some situations, users need the ability to set the EDNS(0) Client Subnet to a custom value.

Proposed changes:

• UI:

  • On the Settings → DNS settings page, in the DNS-server configuration section, expand the Enable EDNS client subnet inputs:

    • Add the checkbox input Use custom IP subnet.

    • Add the text input Custom subnet, which is only active when the previously-added checkbox is checked.

  • Add the same inputs to persistent client settings.

• Configuration file:

  • The boolean property dns.edns_client_subnet is replaced with the following new object:

    edns_client_subnet:
        enabled: true
        use_custom: true
        custom: '1.2.3.0/24'

  • The migration should preserve the old value of dns.edns_client_subnet and set it into the new dns.edns_client_subnet.enabled property. The default values for the other properties are false and empty string.

  • Add the same object to persistent clients.

---

Original post content

My environment:
I have following device:

• Computer 1 (Internal A, Internal B): 192.168.1.2, 10.0.0.3
• Server A (Internal A): 192.168.1.10 (ADGuard locate at here)
• Server B (Internet): 10.0.0.1 (Internal DoH reverse proxy)

The target server have two options,

• 10.0.0.3(Internal B) for 10.0.0.0/24
• a.b.c.d(Internet) for Internet traffic

Problem:
Computer 1 should connect to target server with 10.0.0.3 for better speed, but AdGuardHome won't let DoH server know this device was also located in 10.0.0.0/24, then it will resolve target to a.b.c.d

[zero77]

@AvailCat
This should be possible with dnscrypt-proxy.

[ghost]

why not start by anonymise the ip (like NextDns Do), see if it's simple or not, and decide after that ?

Edit : when i say anonymise i think let enough in ipv4 ans ipv6 for the CDN to localise the country, but not the full ip

[ainar-g]

A possible extension from #4187: per-client EDNS subnet settings.

[LittleJake]

A possible extension from #4187: per-client EDNS subnet settings.

Is there any difference that request an AAAA/A record with the subnet of IPV4/IPV6?

What if using IPV4 for the subnet of an AAAA record or using IPV6 for the subnet of an A record?

[YBS-PC]

v0.107.26
if edns_client_subnet.use_custom is true then AGH not starting for me (wih or without custom_ip).

[ainar-g]

@LittleJake, the same IP network is used. There is no connection between the type of the question and the ECS option.

@YBS-PC, please provide the verbose logs to diagnose the issue.

[YBS-PC]

@YBS-PC, please provide the verbose logs to diagnose the issue.
aghlog.txt

[LittleJake]

@YBS-PC, please provide the verbose logs to diagnose the issue.
aghlog.txt

Use the exact IP address just fine. AdGuardHome will mask the IP address into /24. But you can't assign the mask of the IP address is not a good idea.

[fernvenue]

Hi, I'm using this feature right now, but I just found out that we can just set single IP address here, is there any solution to use custom EDNS for both IPv4 and IPv6 addresses?

[rapdodge]

Hi, I'm using this feature right now, but I just found out that we can just set single IP address here, is there any solution to use custom EDNS for both IPv4 and IPv6 addresses?

I'm two this...

I have v4 + v6
It's nice if there is separate ecs for v4&v6

This is if i've set the custom IPv4 address

This is if i've doesn't set the custom ecs ip

[brotaxt]

Hi, I'm using this feature right now, but I just found out that we can just set single IP address here, is there any solution to use custom EDNS for both IPv4 and IPv6 addresses?

I'm two this...

I have v4 + v6 It's nice if there is separate ecs for v4&v6

This is if i've set the custom IPv4 address

This is if i've doesn't set the custom ecs ip

How can I check if ecs is working? Where does your output come from?

[rapdodge]

Hi, I'm using this feature right now, but I just found out that we can just set single IP address here, is there any solution to use custom EDNS for both IPv4 and IPv6 addresses?

I'm two this...
I have v4 + v6 It's nice if there is separate ecs for v4&v6
This is if i've set the custom IPv4 address
This is if i've doesn't set the custom ecs ip

How can I check if ecs is working? Where does your output come from?

It's https://www.dnscheck.tools/