Line 23: |
Line 23: |
| The <b>General Settings</b> section is used to set up the main DNS parameters. Refer to the table below for information on each configuration field. | | The <b>General Settings</b> section is used to set up the main DNS parameters. Refer to the table below for information on each configuration field. |
| | | |
− | [[File:Networking_rutos_manual_dns_general_settings.png|border|class=tlt-border]] | + | [[File:Networking_rutos_manual_dns_general_settings_v2.png|border|class=tlt-border]] |
| | | |
| <table class="nd-mantable"> | | <table class="nd-mantable"> |
Line 33: |
Line 33: |
| <tr> | | <tr> |
| <td>Log queries</td> | | <td>Log queries</td> |
− | <td>off | on; default: <b>off</b></td> | + | <td>off {{!}} on; default: <b>off</b></td> |
− | <td>When enabled, write received DNS requests to syslog.</td> | + | <td>Write received DNS requests to syslog.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td>DNS forwardings</td> | | <td>DNS forwardings</td> |
− | <td>string; default: <b>none</b></td> | + | <td>Hostname (domain name) {{!}} IP address (ip); default: <b>none</b></td> |
− | <td>List of DNS servers to forward requests to.</td> | + | <td>List of DNS servers to forward requests to. See the dnsmasq -S option man page for syntax details.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Addresses</td> |
| + | <td>Hostname (domain name) {{!}} IP address (ip); default: <b>none</b></td> |
| + | <td>List of IP addresses for queried domains. See the dnsmasq -A option man page for syntax details.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td>Rebind protection</td> | | <td>Rebind protection</td> |
− | <td>off | on; default: <b>on</b></td> | + | <td>off {{!}} on; default: <b>on</b></td> |
| <td>Discards upstream RFC1918 responses. When enabled, the device will not resolve domain names for internal hosts.</td> | | <td>Discards upstream RFC1918 responses. When enabled, the device will not resolve domain names for internal hosts.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td>Local Service Only</td> | | <td>Local Service Only</td> |
− | <td>off | on; default: <b>off</b></td> | + | <td>off {{!}} on; default: <b>off</b></td> |
− | <td>Limit DNS service to subnets and interfaces on which this device is serving as a DNS server.</td> | + | <td>Limit DNS service to subnets interfaces on which we are serving DNS.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td>Listen Interfaces</td> | | <td>Listen Interfaces</td> |
| <td>network interface(s); default: <b>none</b></td> | | <td>network interface(s); default: <b>none</b></td> |
− | <td>Limits listening for DNS queries to interfaces specified in this field and loopback. Leave empty to listen on all interfaces.</td> | + | <td>Limit DHCP and DNS requests listening to these interfaces, and loopback. Leave empty to listen on all interfaces.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td>Exclude Interfaces</td> | | <td>Exclude Interfaces</td> |
| <td>network interface(s); default: <b>none</b></td> | | <td>network interface(s); default: <b>none</b></td> |
− | <td>Prevents listening for DNS queries on interfaces specified in this field. Leave empty to listen on all interfaces.</td> | + | <td>Prevent DHCP and DNS requests listening on these interfaces. Leave empty to listen on all interfaces.</td> |
| </tr> | | </tr> |
| </table> | | </table> |
| | | |
− | ==Advanced Settings== | + | ===Advanced Settings=== |
| | | |
| The <b>Advanced Settings</b> section is used to set up some of the more specific DNS parameters. Refer to the table below for information on each configuration field. | | The <b>Advanced Settings</b> section is used to set up some of the more specific DNS parameters. Refer to the table below for information on each configuration field. |
| | | |
− | [[File:Networking_rutos_manual_dns_advanced_settings.png|border|class=tlt-border]] | + | [[File:Networking_rutos_manual_dns_advanced_settings_v2.png|border|class=tlt-border]] |
| | | |
| <table class="nd-mantable"> | | <table class="nd-mantable"> |
Line 77: |
Line 82: |
| <tr> | | <tr> |
| <td>Filter private</td> | | <td>Filter private</td> |
− | <td>off | on; default: <b>on</b></td> | + | <td>off {{!}} on; default: <b>on</b></td> |
| <td>Do not forward reverse lookups for local networks.</td> | | <td>Do not forward reverse lookups for local networks.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td>Localise queries</td> | | <td>Localise queries</td> |
− | <td>off | on; default: <b>on</b></td> | + | <td>off {{!}} on; default: <b>on</b></td> |
| <td>Localise hostname depending on the requesting subnet if multiple IPs are available.</td> | | <td>Localise hostname depending on the requesting subnet if multiple IPs are available.</td> |
| </tr> | | </tr> |
Line 93: |
Line 98: |
| <td>Size of DNS query cache</td> | | <td>Size of DNS query cache</td> |
| <td>integer [0..10000]; default: <b>none</b></td> | | <td>integer [0..10000]; default: <b>none</b></td> |
− | <td>Number of cached DNS entries. Set to 0 for no caching.</td> | + | <td>Number of cached DNS entries (max is 10000, 0 is no caching).</td> |
| </tr> | | </tr> |
| </table> | | </table> |
| + | |
| + | ==HTTPS DNS Proxy== |
| + | |
| + | Light-weight DNS-over-HTTPS, non-caching translation proxy for the RFC 8484 DoH standard. It receives regular (UDP) DNS requests and resolves them via DoH resolver. |
| + | |
| + | <b>Note:</b> IGMP Proxy is additional software that can be installed from the <b>System → [[{{{name}}} Package Manager|Package Manager]]</b> page. |
| + | |
| + | ===HTTPS DNS proxy configuration=== |
| + | |
| + | The <b>HTTPS DNS proxy configuration</b> section is used to enable the service. Refer to the table below for information on each configuration field. |
| + | |
| + | [[File:Networking_rutos_manual_https_dns_proxy.png|border|class=tlt-border]] |
| + | |
| + | <table class="nd-mantable"> |
| + | <tr> |
| + | <th>Field</th> |
| + | <th>Value</th> |
| + | <th>Description</th> |
| + | </tr> |
| + | <tr> |
| + | <td>Enable</td> |
| + | <td>off {{!}} on; default: <b>off</b></td> |
| + | <td>Enables HTTPS DNS proxy configuration.</td> |
| + | </tr> |
| + | </table> |
| + | |
| + | ===DNS over HTTPS resolvers=== |
| + | |
| + | |
| + | The <b>DNS over HTTPS resolvers</b> section is used to set up some of the more specific DNS parameters. Refer to the table below for information on each configuration field. |
| + | |
| + | [[File:Networking_rutos_manual_dns_over_https_resolvers.png|border|class=tlt-border]] |
| + | |
| + | <table class="nd-mantable"> |
| + | <tr> |
| + | <th>Field</th> |
| + | <th>Value</th> |
| + | <th>Description</th> |
| + | </tr> |
| + | <tr> |
| + | <td>Preset</td> |
| + | <td>Custom {{!}} Google {{!}} CloudFlare; default: <b>CloudFlare</b></td> |
| + | <td>Presets for popular DNS over HTTPS resolvers. Use "Custom" to set your resolver.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Bootsrap DNS</td> |
| + | <td>IPv4/IPv6 address; default: <b>depends on the service provider</b></td> |
| + | <td>This DNS is used for the initial "Resolver URL" resolve.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Resolver URL</td> |
| + | <td>url; default: <b>depends on the service provider</b></td> |
| + | <td>Resolver URL.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Port</td> |
| + | <td>integer [1..65535]; default: <b>depends on the service provider</b></td> |
| + | <td>Internal port used for this resolver. Change only if it collides with existing ports on this device.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Actions</td> |
| + | <td>-interactive button; default: <b>Delete</b></td> |
| + | <td>Deletes the preset.</td> |
| + | </tr> |
| + | </table> |
| + | |
| + | <b>Note:</b> If more than one resolver is specified then the first is used as the main one and others are used as failovers. |
| | | |
| [[Category:{{{name}}} Network section]] | | [[Category:{{{name}}} Network section]] |