On Tue, Aug 30, 2022 at 5:19 AM Jelle de Jong <jelledej...@powercraft.nl> wrote:
> dnsmasq has lots of nice features like tftp, tftp-mtu, srv-host, > dhcp-boot, dhcp-range etc that have nothing to do with a dns resolving. > Yes, big +1 on that. > I would like to keep using dnsmasq but I would also like my URIBL > lookups to work. > I'm not sure I fully understand your original question, but you can do black/white listing with dnsmasq directly, or using, say unbound on your backend. The OpenWrt project has an adblock package that does this in an DNS-tool agnostic way (they support use of dnsmasq, unbound, resolv, etc) using a simple bash script to set things up. Look at https://github.com/openwrt/packages/tree/openwrt-21.02/net/adblock , specifically https://github.com/openwrt/packages/blob/openwrt-21.02/net/adblock/files/adblock.sh to get some ideas on how to do that. And just for the record, I have used unbound and stubby both as upstreams on dnsmasq, usually to get DoT over the WAN (I like stubby for this a lot, as it's so specifically designed for that and it's very lightweight). You simply set up unbound/stubby/whatever to listen on some arbitrary port (I like 5453, others use 5353 but that interferes with mDNS), then point dnsmasq to "upstream" at 127.0.0.1#5453 and you're off to the races.
_______________________________________________ Dnsmasq-discuss mailing list Dnsmasq-discuss@lists.thekelleys.org.uk https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss
