How to ensure all DNS requests on local network redirect using dnscrypt-proxy #2366
Replies: 4 comments
-
Though my network is only me, desktop PC with ethernet connection to my internet routeur, I have the same question, but I can give an idea, some tutorial on the internet about dnscrypt-proxy talk about some tool in it called "hostip" but I see nothing about this in the official dnscrypt-proxy documentation, this tool is supposed to answer our problem |
Beta Was this translation helpful? Give feedback.
-
Can you share the link where you read about this?
…On Tue, Apr 11, 2023, 9:04 AM Menard01 ***@***.***> wrote:
Though my network is only me, desktop PC with ethernet connection to my
internet routeur, I have the same question, but I can give an idea, some
tutorial on the internet about dnscrypt-proxy talk about some tool in it
called "hostip" but I see nothing about this in the official dnscrypt-proxy
documentation, this tool is supposed to answer our problem
I personnaly ask about this for some applications that could bypass the
proxy
—
Reply to this email directly, view it on GitHub
<#2366 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AI3H7UG4LBQ4UNDNTU4OEQLXAVXJBANCNFSM6AAAAAAWWZFHRI>
.
You are receiving this because you authored the thread.Message ID:
***@***.***
com>
|
Beta Was this translation helpful? Give feedback.
-
There https://doc.ubuntu-fr.org/dnscrypt but now I have doubts because it seems to be only an equivalent of "dig" from the bind9-dnsutils package |
Beta Was this translation helpful? Give feedback.
-
i have a similar problem. I'm using these rule in my firewall (nftables, iptables substitute) to capture dns traffic and redirect to my localhost dns server: In iptables the equivalent is: With ipv4 it works perfectly, but with ipv6 it doesn't repply. The problem is with dnscrypt-proxy, because with bind9 it works perfectly ipv4 and ipv6. My version is 2.1.4 and my socket configuration is listen_addresses = ['[::]:53'] |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
Hello, I am using edgeOS for a family home network and am attempting to do content filtering by using dnscrypt-proxy to connect via DoH to the cloudflare family DNS servers. The solution works well as long as any DNS requests are made to the default nameserver (192.168.1.1), but the filtering is easily circumvented by a user specifying their own DNS server.
I understand that this can be solved using NAT to redirect port 53 requests to 192.168.1.1, but haven't been able to configure it correctly.
Anyone have guidance on how to get this working? Here is my destination NAT rule for port 53.

Beta Was this translation helpful? Give feedback.
All reactions