From: Tomas Krizek Date: Wed, 11 Nov 2020 09:54:01 +0000 (+0100) Subject: etc/config: add doh2 examples X-Git-Tag: v5.2.0^2~3 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=4c1631cc53a10fb04ed20c920d5dbcd42707b3b3;p=thirdparty%2Fknot-resolver.git etc/config: add doh2 examples --- diff --git a/etc/config/config.cluster b/etc/config/config.cluster index 58227bdf6..dd10a7470 100644 --- a/etc/config/config.cluster +++ b/etc/config/config.cluster @@ -11,6 +11,8 @@ net.listen('127.0.0.1', 53, { kind = 'dns' }) net.listen('::1', 53, { kind = 'dns'}) net.listen('127.0.0.1', 853, { kind = 'tls' }) net.listen('::1', 853, { kind = 'tls' }) +net.listen('127.0.0.1', 443, { kind = 'doh2' }) +net.listen('::1', 443, { kind = 'doh2'}) -- Refer to manual for optimal cache size cache.size = 16 * GB diff --git a/etc/config/config.internal b/etc/config/config.internal index 53661e01b..46bbf173e 100644 --- a/etc/config/config.internal +++ b/etc/config/config.internal @@ -8,6 +8,8 @@ net.listen('127.0.0.1', 53, { kind = 'dns' }) net.listen('::1', 53, { kind = 'dns'}) net.listen('127.0.0.1', 853, { kind = 'tls' }) net.listen('::1', 853, { kind = 'tls' }) +net.listen('127.0.0.1', 443, { kind = 'doh2' }) +net.listen('::1', 443, { kind = 'doh2' }) -- define list of internal-only domains internalDomains = policy.todnames({'company.example', 'internal.example'}) diff --git a/etc/config/config.isp b/etc/config/config.isp index 445754ed0..3dc3e7f0e 100644 --- a/etc/config/config.isp +++ b/etc/config/config.isp @@ -8,6 +8,8 @@ net.listen('127.0.0.1', 53, { kind = 'dns' }) net.listen('::1', 53, { kind = 'dns'}) net.listen('127.0.0.1', 853, { kind = 'tls' }) net.listen('::1', 853, { kind = 'tls' }) +net.listen('127.0.0.1', 443, { kind = 'doh2' }) +net.listen('::1', 443, { kind = 'doh2' }) -- Refer to manual for optimal cache size cache.size = 4 * GB diff --git a/etc/config/config.personal b/etc/config/config.personal index 6b56f11a4..e6803a1c7 100644 --- a/etc/config/config.personal +++ b/etc/config/config.personal @@ -5,8 +5,10 @@ -- Network interface configuration net.listen('127.0.0.1', 53, { kind = 'dns' }) net.listen('127.0.0.1', 853, { kind = 'tls' }) +--net.listen('127.0.0.1', 443, { kind = 'doh2' }) net.listen('::1', 53, { kind = 'dns', freebind = true }) net.listen('::1', 853, { kind = 'tls', freebind = true }) +--net.listen('::1', 443, { kind = 'doh2' }) -- Load useful modules modules = { diff --git a/etc/config/config.privacy b/etc/config/config.privacy index 3fd9a4253..d36f3a2d2 100644 --- a/etc/config/config.privacy +++ b/etc/config/config.privacy @@ -8,6 +8,8 @@ net.listen('127.0.0.1', 53, { kind = 'dns' }) net.listen('::1', 53, { kind = 'dns'}) net.listen('127.0.0.1', 853, { kind = 'tls' }) net.listen('::1', 853, { kind = 'tls' }) +net.listen('127.0.0.1', 443, { kind = 'doh2' }) +net.listen('::1', 443, { kind = 'doh2' }) -- TLS server configuration -- use this to configure your TLS certificates diff --git a/etc/config/config.splitview b/etc/config/config.splitview index 1b1d1983b..1054af5a7 100644 --- a/etc/config/config.splitview +++ b/etc/config/config.splitview @@ -8,6 +8,8 @@ net.listen('127.0.0.1', 53, { kind = 'dns' }) net.listen('::1', 53, { kind = 'dns'}) net.listen('127.0.0.1', 853, { kind = 'tls' }) net.listen('::1', 853, { kind = 'tls' }) +net.listen('127.0.0.1', 443, { kind = 'doh2' }) +net.listen('::1', 443, { kind = 'doh2' }) -- Load Useful modules modules = {