Re: [dnsdist] DNS over HTTPS

2021-01-27 Thread Blason R via dnsdist
Hi there, Here are my responses - and my config file addACL('0.0.0.0/0') addDOHLocal("0.0.0.0:443", "/etc/ssl/certs/5c4e864be20f67a8.pem", "/etc/ssl/certs/san.key", { "/" }, { doTCP=true, reusePort=true, tcpFastOpenSize=0 } ) newServer({address="127.0.0.1:53", qps=100 }) webserver ("192.168.5

Re: [dnsdist] DNS over HTTPS

2021-01-27 Thread Remi Gacogne via dnsdist
Hi Blason, On 1/27/21 10:49 AM, Blason R via dnsdist wrote: I am implementing DOH with BIND as my backend. I do have certain queries and would really appreciate it if community can help me? 1. After implementing dnsdist and BIND as downstream servers; I observed that a lot of queries are

[dnsdist] DNS over HTTPS

2021-01-27 Thread Blason R via dnsdist
Hi Folks, I am implementing DOH with BIND as my backend. I do have certain queries and would really appreciate it if community can help me? 1. After implementing dnsdist and BIND as downstream servers; I observed that a lot of queries are being sent to ROOT DNS servers. Any clue why? 2.

Re: [dnsdist] DNS views using DNSDIST

2021-01-27 Thread frank+pdns--- via dnsdist
Hi, You would have a few options to do that. I wrote a blogpost about implementing BIND views using dnsdist and two instances of powerdns-auth. See https://www.frank.be/implementing-bind-views-with-powerdns/ for details. If you wan

[dnsdist] DNS views using DNSDIST

2021-01-27 Thread Jahanzeb Arshad via dnsdist
Greetings, We have been using BIND DNS server with views to return different A records for different source networks. Now we have put DNSDIST as frontend to the BIND DNS servers. Now BIND DNS is seeing the dnsdist as the client IP and the views are no more valid. We are unable to figure out how we