A systemd service for AdguardTeam/dnsproxy to provide DNS.
This is for Linux systems installed with the resolvconf package to modify the /etc/resolv.conf file.
The adguard-dnsproxy-setup.service uses an argument of linux-amd64 in its ExecStart line.
Refer to assets in AdguardTeam/dnsproxy Releases for other OS architectures.
Examples:
linux-386for i386 / x86linux-arm64for aarch64 / arm64linux-arm6for armv6l / armhf
After cloning this repository, run the command below to download and start up this DNS proxy server.
makeUsing sudo is optional since the Makefile already checks for admin access.
Admin access is need to be permitted to bind IP addresses for listening.
If you want to run the exact targets, run
make install start.
If you are not in the
dnsproxy-systemdgit folder, you may runmake -C dnsproxy-systemdif you have cloned into the current directory.
The Makefile has 2 variables to customize, BINDIR and CONFDIR.
make BINDIR=/opt/adguard CONFDIR=/etc/adguardIf you change their values, be sure the chosen directory is root-owned.
Due to certain file conflicts, /etc and /usr/sbin are some of the directories not allowed.
Refer to the options in Adguard/dnsproxy main.go for yaml configuration.
The listen-addrs option is required.
Make sure adguard-dnsproxy.service is stopped when editing this option.
Make sure any IP addresses in this option are not already used on port 53.
Check for IP address on port 53 with ss, netstat or lsof.
sudo ss -tnlp | grep :53sudo netstat -tnlp | grep :53sudo lsof -Pni:53 -sTCP:LISTENLinux and BSD may encounter errors for any QUIC or UDP transfers, especially DNS over QUIC.
This is solved by setting the maximum buffer size to a high enough level.
It can be done by using sysctl -w or permanently to /etc/sysctl.conf as shown below.
sudo sh -c 'echo "net.core.rmem_max=26214400" >> /etc/sysctl.conf'sudo sh -c 'echo "kern.ipc.maxsockbuf=30146560" >> /etc/sysctl.conf'