Linux Notes
2019.11.26
A managed AdBock powered by AdGuard Home with DoH & DoT enabled
AdGuard Home supports all modern DNS encryption protocols, which enable us to setup a secure DNS server with custom AdBlock filters.
macOS big sur now supports native DoH and DoT, you can follow this guid to configure on your Mac. If you have a self-hosting DoH/DoT server, you can also enable in your Mac following my blog post: https://frankindev.com/2019/11/26/doh-dot-based-on-adguardhome/.
cloudflared is an open source golang DNS over HTTPS (DoH) client developed by Cloudflare, which allow us quick start DoH for macOS system at present.
Install cloudflared using Homebrew
brew install cloudflare/cloudflare/cloudflared
Create config file
Create a new config file: /usr/local/etc/cloudflared/config.yaml, with the following content:
proxy-dns: true
proxy-dns-upstream:
- https://dns.frankindev.com/dns-query/public
- https://dns.google/dns-query
Multi upstream are supported. You can find a list of DoH upstream at: https://github.com/curl/curl/wiki/DNS-over-HTTPS.
Activate cloudflared as a service
sudo cloudflared service install
Test and set
dig A @127.0.0.1 github.com
If it’s working, change local DNS to 127.0.0.1 on you MacOS (System Preferences > Network > Advanced > DNS).
Restart cloudflared service
If the DNS resolving stopped, restart the cloudflared service with:
sudo cloudflared service uninstall
sudo cloudflared service install
Although cloudflared works, but I found it slows my DNS queries a lot that push me back to the traditional way… Waiting for new release of macOS Big Sur with native support of DoH…
THE END
Ads by Google
林宏
Frank Lin
Hey, there! This is Frank Lin (@flinhong), one of the 1.41 billion . This 'inDev. Journal' site holds the exploration of my quirky thoughts and random adventures through life. Hope you enjoy reading and perusing my posts.
YOU MAY ALSO LIKE
Tutorials
2020.01.09
Setup an IKEv2 server with strongSwan
IKEv2, or Internet Key Exchange v2, is a protocol that allows for direct IPSec tunnelling between networks. It is developed by Microsoft and Cisco (primarily) for mobile users, and introduced as an updated version of IKEv1 in 2005. The IKEv2 MOBIKE (Mobility and Multihoming) protocol allows the client to main secure connection despite network switches, such as when leaving a WiFi area for a mobile data area. IKEv2 works on most platforms, and natively supported on some platforms (OS X 10.11+, iOS 9.1+, and Windows 10) with no additional applications necessary.
Web Notes
2022.03.01
Install Nextcloud with PlanetScale cloud database
Notes of Nextcloud installation on Ubuntu server with Nginx web server and PlanetScale cloud database.