[ previous ] [ next ] [ threads ]
 From:  Siloportem <mono at siloportem dot net>
 To:  m0n0wall dash dev at lists dot m0n0 dot ch
 Subject:  DNSCrypt support
 Date:  Fri, 07 Feb 2014 00:04:03 +0100

I have made some changes to the current beta 1.8.2b of m0n0wall to add
DNSCrypt support.
Is there any interest to officially include this in m0n0wall. Then I
would make some changes and commit it to SVN.

It needs the additional packages libsodium (507,4 kB) and dnscrypt-proxy
(189 kB).

I have also added a new option in "Advanced setup" that enables/disables
dnscrypt-proxy. When disabled, everything is like it was before. When
enabled the configuration of dnsmasq is modified so that dnsmasq uses
dnscrypt-proxy as DNS-server. dnscrypt-proxy forwards this request
encrypted to the real DNS-server.
The DNS servers configured in "General setup" are ignored for requests
from the local net to the dns-forwarder, when dnscrypt-proxy is enabled.

With my current changes only the OpenDNS server can be used for
DNSCrypt. If there is interest to include dnscrypt support in m0n0wall,
I could make an option to configure the DNS-server for dnscrypt-proxy
(only DNS servers with DNSCrypt support will work).

See: http://dnscrypt.org/ for details