Announce DoT/DoH address via _dns.resolver.arpa SVCB record (RFC 9642)

Question

Announce DoT/DoH address via _dns.resolver.arpa SVCB record (RFC 9642)

lgrahl opened this issue 9 months ago · 3 comments

RFC 9462 "Discovery of Designated Resolvers" added the possibility to discover an encrypted DNS server (DoH/DoT) via an SVCB record. This is great when announcing the DNS server via DHCP / Router Advertisements, allowing machines in the network to easily discover and upgrade to DoH/DoT without requiring the user to fiddle with configurations.

I tried adding an SVCB record for _dns.resolver.arpa. manually but it turned out to be currently unsupported. https://github.com/miekg/dns already has support for SVCB records, so I assume this could be added easily?

But it would be better if blocky would support it out of the box, so that it can respond with the correct IP address for the interface the request came in from (if reachable on multiple networks).

Answer 1 · 2024-07-09T22:23:06.000Z

When developing this feature please consider the behaviour while running blocky inside a container (because the container IPv4/IPv6 will be different)

Answer 2 · 2024-10-08T04:01:10.000Z

This issue is stale because it has been open 90 days with no activity. Remove stale label or comment or this will be closed in 5 days.

Answer 3 · 2024-10-08T12:07:51.000Z

Still relevant.