8,925
edits
Changes
Template:Networking rutos manual dns (view source)
Revision as of 15:00, 27 June 2024
, Thursday at 15:00no edit summary
{{Template: Networking_rutos_manual_fw_disclosure
{{Template: Networking_device_manual_fw_disclosure
| fw_version = {{{series}}}_R_00.07.00
| series = {{{series}}}
| series = {{{series}}}
| name = {{{name}}}
| fw_version ={{Template: Networking_device_manual_latest_fw
| series = {{{series}}}
| name = {{{name}}}
}}
}}
}}
__TOC__
__TOC__
==Summary==
==Summary==
The <b>General Settings</b> section is used to set up the main DNS parameters. Refer to the table below for information on each configuration field.
The <b>General Settings</b> section is used to set up the main DNS parameters. Refer to the table below for information on each configuration field.
[[File:Networking_rutos_manual_dns_general_settings.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_dns_general_settings_v2.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
<tr>
<tr>
<td>Log queries</td>
<td>Log queries</td>
<td>off | on; default: <b>off</b></td>
<td>off {{!}} on; default: <b>off</b></td>
<td>When enabled, write received DNS requests to syslog.</td>
<td>Write received DNS requests to syslog.</td>
</tr>
</tr>
<tr>
<tr>
<td>DNS forwardings</td>
<td>DNS forwardings</td>
<td>string; default: <b>none</b></td>
<td>Hostname (domain name) {{!}} IP address (ip); default: <b>none</b></td>
<td>List of DNS servers to forward requests to.</td>
<td>List of DNS servers to forward requests to. See the dnsmasq -S option man page for syntax details.</td>
</tr>
<tr>
<td>Addresses</td>
<td>Hostname (domain name) {{!}} IP address (ip); default: <b>none</b></td>
<td>List of IP addresses for queried domains. See the dnsmasq -A option man page for syntax details.</td>
</tr>
</tr>
<tr>
<tr>
<td>Rebind protection</td>
<td>Rebind protection</td>
<td>off | on; default: <b>on</b></td>
<td>off {{!}} on; default: <b>on</b></td>
<td>Discards upstream RFC1918 responses. When enabled, the device will not resolve domain names for internal hosts.</td>
<td>Discards upstream RFC1918 responses. When enabled, the device will not resolve domain names for internal hosts.</td>
</tr>
</tr>
<tr>
<tr>
<td>Local Service Only</td>
<td>Local Service Only</td>
<td>off | on; default: <b>off</b></td>
<td>off {{!}} on; default: <b>off</b></td>
<td>Limit DNS service to subnets and interfaces on which this device is serving as a DNS server.</td>
<td>Limit DNS service to subnets interfaces on which we are serving DNS.</td>
</tr>
</tr>
<tr>
<tr>
<td>Listen Interfaces</td>
<td>Listen Interfaces</td>
<td>network interface(s); default: <b>none</b></td>
<td>network interface(s); default: <b>none</b></td>
<td>Limits listening for DNS queries to interfaces specified in this field and loopback. Leave empty to listen on all interfaces.</td>
<td>Limit DHCP and DNS requests listening to these interfaces, and loopback. Leave empty to listen on all interfaces.</td>
</tr>
</tr>
<tr>
<tr>
<td>Exclude Interfaces</td>
<td>Exclude Interfaces</td>
<td>network interface(s); default: <b>none</b></td>
<td>network interface(s); default: <b>none</b></td>
<td>Prevents listening for DNS queries on interfaces specified in this field. Leave empty to listen on all interfaces.</td>
<td>Prevent DHCP and DNS requests listening on these interfaces. Leave empty to listen on all interfaces.</td>
</tr>
</tr>
</table>
</table>
==Advanced Settings==
===Advanced Settings===
The <b>Advanced Settings</b> section is used to set up some of the more specific DNS parameters. Refer to the table below for information on each configuration field.
The <b>Advanced Settings</b> section is used to set up some of the more specific DNS parameters. Refer to the table below for information on each configuration field.
[[File:Networking_rutos_manual_dns_advanced_settings.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_dns_advanced_settings_v2.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
<tr>
<tr>
<td>Filter private</td>
<td>Filter private</td>
<td>off | on; default: <b>on</b></td>
<td>off {{!}} on; default: <b>on</b></td>
<td>Do not forward reverse lookups for local networks.</td>
<td>Do not forward reverse lookups for local networks.</td>
</tr>
</tr>
<tr>
<tr>
<td>Localise queries</td>
<td>Localise queries</td>
<td>off | on; default: <b>on</b></td>
<td>off {{!}} on; default: <b>on</b></td>
<td>Localise hostname depending on the requesting subnet if multiple IPs are available.</td>
<td>Localise hostname depending on the requesting subnet if multiple IPs are available.</td>
</tr>
</tr>
<td>Size of DNS query cache</td>
<td>Size of DNS query cache</td>
<td>integer [0..10000]; default: <b>none</b></td>
<td>integer [0..10000]; default: <b>none</b></td>
<td>Number of cached DNS entries. Set to 0 for no caching.</td>
<td>Number of cached DNS entries (max is 10000, 0 is no caching).</td>
</tr>
</table>
==HTTPS DNS Proxy==
Light-weight DNS-over-HTTPS, non-caching translation proxy for the RFC 8484 DoH standard. It receives regular (UDP) DNS requests and resolves them via DoH resolver.
<b>Note:</b> IGMP Proxy is additional software that can be installed from the <b>System → [[{{{name}}} Package Manager|Package Manager]]</b> page.
===HTTPS DNS proxy configuration===
The <b>HTTPS DNS proxy configuration</b> section is used to enable the service. Refer to the table below for information on each configuration field.
[[File:Networking_rutos_manual_https_dns_proxy.png|border|class=tlt-border]]
<table class="nd-mantable">
<tr>
<th>Field</th>
<th>Value</th>
<th>Description</th>
</tr>
<tr>
<td>Enable</td>
<td>off {{!}} on; default: <b>off</b></td>
<td>Enables HTTPS DNS proxy configuration.</td>
</tr>
</tr>
</table>
</table>
===DNS over HTTPS resolvers===
The <b>DNS over HTTPS resolvers</b> section is used to set up some of the more specific DNS parameters. Refer to the table below for information on each configuration field.
[[File:Networking_rutos_manual_dns_over_https_resolvers.png|border|class=tlt-border]]
<table class="nd-mantable">
<tr>
<th>Field</th>
<th>Value</th>
<th>Description</th>
</tr>
<tr>
<td>Preset</td>
<td>Custom {{!}} Google {{!}} CloudFlare; default: <b>CloudFlare</b></td>
<td>Presets for popular DNS over HTTPS resolvers. Use "Custom" to set your resolver.</td>
</tr>
<tr>
<td>Bootsrap DNS</td>
<td>IPv4/IPv6 address; default: <b>depends on the service provider</b></td>
<td>This DNS is used for the initial "Resolver URL" resolve.</td>
</tr>
<tr>
<td>Resolver URL</td>
<td>url; default: <b>depends on the service provider</b></td>
<td>Resolver URL.</td>
</tr>
<tr>
<td>Port</td>
<td>integer [1..65535]; default: <b>depends on the service provider</b></td>
<td>Internal port used for this resolver. Change only if it collides with existing ports on this device.</td>
</tr>
<tr>
<td>Actions</td>
<td>-interactive button; default: <b>Delete</b></td>
<td>Deletes the preset.</td>
</tr>
</table>
<b>Note:</b> If more than one resolver is specified then the first is used as the main one and others are used as failovers.
[[Category:{{{name}}} Network section]]
[[Category:{{{name}}} Network section]]