-
-
Notifications
You must be signed in to change notification settings - Fork 37
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Resolution problem with some domains #108
Comments
Maybe try with |
Also maybe |
Hello Quentin, But the logs don't put any information about that, just retry and only have this is the logs, maybe need to add something about block in the logs ?
With the verbosity at max :
http://fastmirror.pp.ua is a mirror for open-source big projects, how can I check or pull request for this ? For the beta, I see that it works, it's not the same malicious link ? dot:
image: qmcgaw/dns:latest
container_name: pihole-unbound-DoT
environment:
PROVIDERS: 'cloudflare'
CACHING: 'off'
BLOCK_MALICIOUS: 'on'
VERBOSITY: 2
VERBOSITY_DETAILS: 1
networks:
dnsnet:
ipv4_address: 10.10.10.34
restart: unless-stopped
dot2:
image: qmcgaw/dns:v2.0.0-beta
container_name: pihole-unbound-DoT2
environment:
PROVIDERS: 'cloudflare'
CACHING: 'off'
BLOCK_MALICIOUS: 'on'
VERBOSITY: 1
VERBOSITY_DETAILS: 1
networks:
dnsnet:
ipv4_address: 10.10.10.36
restart: unless-stopped
|
Sorry for the huge delay answering. v2.0.0-beta is a totally different program really, it's coded from scratch and doesn't use Unbound. Maybe that was a bug back then? Try pulling the newer image? I also don't see fastmirror.pp.ua in https://raw.githubusercontent.com/qdm12/files/master/malicious-hostnames.updated so maybe it's no longer blocked 🤔 With the v2.0.0-beta image, you can also log all requests and/or responses using EDIT: Also v2.0.0-beta is about to come out of beta and be the newer stable version. |
Hello,
I've got some troubles with dns resolution with your image. Example with fastmirror.pp.ua (debian image or libreoffice download).
The docker file is simple, one service for DoT and one with pihole on top.
I doing my test inside my pihole docker (most easy to install debug tools with apt). I ask the DNS request directly to the DoT container with the image qmcgaw/dns.
I've change the PROVIDERS: from
'cloudflare,quad9'
to 'cloudflare' do simplify the test.The test is reproducible, I've try on a fresh vps in another datacenter directly with the docker-compose file and same results.
My tests :
kdig -d @1.1.1.1 +tls-ca +tls-host=cloudflare-dns.com fastmirror.pp.ua
dig fastmirror.pp.ua @1.1.1.1
dig fastmirror.pp.ua @10.10.10.34
dig perdu.com @10.10.10.34
The output :
The docker-compose :
The text was updated successfully, but these errors were encountered: