qomui icon indicating copy to clipboard operation
qomui copied to clipboard

Published 20 hours ago verified publisher icon corrad1nho

Use qomui alongside dnscrypt-proxy

Open runo280 opened this issue 5 years ago • 7 comments

I'm using dnscrypt-proxy and it's features like blacklist, in order to use it via system we should make /etc/resolv.conf read-only, but your app is trying to modify it, and it can't. Also dnscrypt-proxy running on port 53, and qomui wants to start dnsmasq service, as it wants to run on port 53 it can't (I mean dnsmasq). As I really needed it and I want to all dns queries goes through it, please help to solve these issues.

runo280 avatar Mar 11 '19 06:03 runo280

On Ubuntu systems this is a problem as well as it uses systemd-resolved which listens on port 53.

snevas avatar Mar 19 '19 16:03 snevas

Dnsmasq is only needed for bypass. You can also set custom DNS servers (such as 127.0.0.1) via the option tab. Would it help including a setting not to overwrite DNS server at all?

corrad1nho avatar Apr 06 '19 13:04 corrad1nho

Maybe, I don't know really, also it shouldn't try to touch /etc/resolv.conf.

runo280 avatar Apr 06 '19 14:04 runo280

Why shouldn't it? Do you mean it'd be better to set DNS servers via systemd-resolved? This would add another dependency, though, that I'd like to avoid. However, Qomui could check for the presence of this service and change DNS servers accordingly.

corrad1nho avatar Apr 06 '19 15:04 corrad1nho

Please look at dnscrypt installation guide, I changed contents of the /etc/resolv.conf and made it read only chattr +i /etc/resolv.conf, I want it to be the unique dns resolver that system uses.

runo280 avatar Apr 06 '19 15:04 runo280

Ok, I will implement an option to leave DNS servers unchanged, i.e. to not override /etc/resolv.conf.

corrad1nho avatar Apr 06 '19 16:04 corrad1nho

Additionally, the next release will include an option to not use dnsmasq at all.

corrad1nho avatar Apr 08 '19 21:04 corrad1nho