DNS over QUIC (help needed)

Hi!

Can you help me with following:

I want to add quic://dns.adguard-dns.com as my DNS resolver. Adguard prompts to use dnsproxy (link to GitHub) for that. But as I see it is not created for OpenWRT?

Can anyone help me understand this?

You can use any doh dot maybe even dnscrypt proxy present in OpenWRT.

I don’t see any option in Luci where to put DoH or DoT. I see only DNS regular unencrypted IP in DHCP/DNS section

You need to install dnscrupt doh proxy or stubby with 1st 2 having luci frontend.

Can I have screenshots? I cannot find how to install Luci frontend.

Also after installing just enter dns link? Do I need to configure any forwardings in firewall?

https://openwrt.org/docs/guide-user/services/dns/doh_dnsmasq_https-dns-proxy


- Navigate to LuCI → Network → DHCP and DNS to configure Dnsmasq.
- Navigate to LuCI → Services → HTTPS DNS Proxy to configure https-dns-proxy.

What to enter in Dnsmasq section?

doh proxy luci app reconfigures dnsmasq and firewall from its own options, like adds DNS DNAT if you check the box etc.

Ok. This https-dns-proxy set up successfully. But I can’t see GUI plugin for luci. Or I need to install it directly from SSH?

luci-app-https-dns-proxy

So remove https-dns-proxy and install luci-app-https-dns-proxy or they must work simultaneously?

I cannot find luci-app-https-dns-proxy in Luci plugins page…

i do not know what you have installed.
ssh
opkg update
opkg install luci-app-https-dns-proxy

But in link https://openwrt.org/docs/guide-user/services/dns/doh_dnsmasq_https-dns-proxy


Command-line instructions

Install the required packages. DNS encryption should be enabled automatically.

# Install packages
opkg update
opkg install https-dns-proxy

LAN clients should use Dnsmasq as a primary resolver. Dnsmasq forwards DNS queries to https-dns-proxy which encrypts DNS traffic

So remove https-dns-proxy and install luci-app-https-dns-proxy?

you need the app if you want configure https-dns-proxy via web

http/3 isn't working in cURL yet on OpenWrt so https-dns-proxy only has http/2.

DNSCrypt proxy has it though.

https://openwrt.org/docs/guide-user/services/dns/doh_dnsmasq_https-dns-proxy#web_interface
just install luci-app-https-dns-proxy via Administration/Software in Luci, you need to log out an in to enable new luci plugins.

So I need both of packages?

What to do with https-dns-proxy?

The web interface will pull it as a dependency, there is no problem having it pre-installed.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.