This docker image is meant to supply a minimalistic and flexible DNS-forwarding service using dnsmasq.
- Allows host entries for the whole network
- Easy to handle (like /etc/hosts or C:\Windows\System32\drivers\etc\hosts)
- Allows multiple failover DNS server
- DNS caching override (on/off)
- Custom blacklisting / whitelisting
- Custon DNS cache size
To deploy the DNS server on your host, you can copy the following compose file:
version: '3.3'
services:
own-dnsmasq:
image: theclocktwister/easy-dnsmasq:latest
ports:
- 53:53/udp
environment:
DNS_SERVER: 1.1.1.1 # Chosse your primary DNS server
REFRESH_INTERVAL: 60 # The interval ro reload the /etc/hosts file and restart dnsmasq
volumes:
- /.../hosts.conf:/etc/hosts # static hosts look-up table
- /.../blacklists/:/blacklists # blacklist folder
- /.../whitelists/:/whitelists # whitelist folder
restart: always
cap_add:
- NET_ADMIN # needed for network stack accessYou can specify certain values by using the -eoption in docker run, or the environment section in docker-compose files. The following variables are recognized:
DNS_SERVERThis is the DNS server to forward unknown queries to (default: 1.1.1.1)REFRESH_INTERVALThe interval (in minutes) in which the /etc/hosts config is reloaded and dnsmasq restarted (default: 60)
If you want the domain "example.com" to be resolved as 10.20.0.1 for instance, add an entry in a file and mount it as a volume into .../<yourfile>:/etc/hosts as shown in the example. The entry style is identical with the style used in Windows' and Linux' hosts file:
10.20.0.15 example.org
10.20.0.1 s1.example.org
10.20.0.2 s2.example.org
If you want DNS requests to a specific domain to be dropped by the easy-dnsmasq server, just insert an entry in a file and make sure it's inside the mounted volume for /blacklists. The format is very simple: one domain per line. The same applies to whilelists in the mountable volume /whitelists.