Dns adguard not working manual#
I'm not very sure what "Forward local domain queries to upstream DNS" is actually doing, from reading the manual and forums, I guess, if that option is enabled, then, whenever I query a domain it will always be forwarded to upstream DNS and skip local dnsmasq? If that's the case, then I should keep that option turned off.įor "Enable multicast DNS"/"Enable reflector", again, I'm not sure if I have to add some extra configuration or if it works out of the box. To my understanding, the "Use received DNS with user-entered DNS" updates my local DNS Server table with DNS records found from WAN while I'm browsing the Internet, therefore the next time I'm visiting the page my local DNS server holds the record and the address is resolved directly if the IP of the address has changed, then the local DNS record is updated, correct? Now it blocks all of my internet activity. I'm not sure if my DNS Server settings are ok, for example, I'm not sure if I should enable "Use received DNS with user-entered DNS", "Forward local domain queries to upstream DNS" or "Enable multicast DNS"/"Enable reflector". I have had the dns address in my private dns settings and it was working until today. I run service firewall restart, then cat /etc/stubby/stubby_alt.yml and the contents of the file were unchanged, so I guess wanup is the correct place. This is the output of nslookup from my router, I also notice that it takes a very long time to resolve :/ The issue is that sometimes everything works but other times my libcurl in DDNS throws error 6, some websites may occasionally not work properly and as I said, I'm not sure if my personal AdGuard DNS is indeed working.
I also set some subdomains that I host through my home server so I can access them when I'm not home, but when I'm home I don't want to go via NAT to access them since they are hosted on my LAN. lan domains are pointing to my home server. test domains are pointing to my computer and all. In dnsmasq custom configuration, I have set two local TLDs. To my understanding that way my router acts as my DNS server for my custom domains and then it upstreams everything else to AdGuard DNS, no? I'm not sure if I should enable "Use received DNS with user-entered DNS", the same applies to "Forward local domain queries to upstream DNS" and "Enable multicast DNS". Everything else is left as is.įor DNS Server (LAN), I'm using internal DNS with Intercept DNS port enabled. The priority is set to String-Order because if I set it to No-Resolv I cannot connect anywhere.
Private servers on the LAN are resolved by BIND, and an ADGuard Home server is used as forwarder for everything else.To my understanding, my settings "translate" like so:įor DNS Client (WAN), I'm enabling DNSSEC, therefore for my custom DNS to work it must support DNSSEC (which it does if I'm not mistaken), then I choose dnsmasq as my validation method and I'm using a dnscrypt-proxy with manual configuration in order to use AdGuard personal DNS. I've done almost exactly what you've described: using bind (though in my case I use both bind, and also free-ipa, which run a bind under the hood to provide DNS) to my home LAN.
Please can someone say if this is possible or if I need to change my topology etc? Any pointers would be much appreciated. Instead I want DNS queries (if passed upstream by my Bind9 Server) to be passed over DNSSEC (or DNS over TLS) to my AdGuard VM for secure ad blocking and encypted public queries. My Current DNS query path is Netowrk 192.168.0.0/24 > 192.168.0.253 Bind9Server (This handles requests for A records and CNAMES etc for private IP ranges, if not found is passed upstream) > 8.8.8.8 (Public DNS for anything outside my LAN) I'm currently running an Ubuntu Server VM on a Proxmox Host, running Bind9 DNS for my internal LAN (home lab), I want to setup AdGuard on a seprate VM and use DNSSEC or DNS over TLS for everything upstread of my bind9 box. In the diagram I threw together the left hand side shows my current LAN's DNS query path, I would like to have it as shown on the right hand side with AdGuard and DNSSEC or DNS over TLS if possible I have a decent physical Proxmox host capable of having two separate VMs if needed, is this possible?
0 kommentar(er)
