Note to self: my LAN DNS server ‘understanding’ is running dnsmasq with dbab for ad-blocking.
Tag Archives: dns
PHP DoH endpoint
This in the news today: A simple PHP script that can be used to add a DoH endpoint to a HTTPS server.
I should really get around to installing dnscrypt-proxy… and now that I know about cloaking there is no reason not to go all-in. Also I was referred to some installation doco on #lobsters.
DNS over HTTPS
Today I read Run Your Own DNS over HTTPS (DoH) Resolver on Ubuntu with DNSdist which mentioned BIND will support DoH in version 9.17, which is still in development.
Everything You Ever Wanted To Know About TTLs
Read an article about DNS TTL settings: Everything You Ever Wanted To Know About TTLs.
Configuring bind for LAN PTR records
I have a hosts file that defines IP addresses on the LAN for all of my virtual hosts. The good thing about using the LAN IP addresses for inter-host communication is that it’s free bandwidth. I had a problem with Postfix though, because Postfix does a reverse lookup on IP addresses to get the corresponding hostname, and the IP address Postfix has for local addresses is the LAN IP address, not the public IP address. The public IP addresses are configured with proper reverse DNS PTR records, but the local addresses weren’t. So I decided to fix that.
Basically I installed bind and configured it with PTR records for the 10.0.0.0/8 network. Now when Postfix asks for the RDNS of a LAN IP address it should get the corresponding hostname. I didn’t need to configure bind with zones for the local IP addresses, because those are all specified in my /etc/hosts file. At least I hope I don’t have to configure DNS zones for my local IP addresses in bind, because that’d just be a pain in the arse.