How to Get DNS Crypt Working
Getting DNS Crypt Working
I have tried downloading and enabling DNS Crypt. The config file, contrary to the notes on the offical website, is to be found in /etc/default, and is specified in the paths directions in /etc/init.d/dnscrypt-proxy. The config has a resolver specified, as well as IPv6 block and cache entries.
DNSCRYPT_PROXY_LOCAL_ADDRESS=127.0.2.1:53
DNS_PROXY_RESOLVER_NAME=dnscrypt.eu-nl
BlockIPv6 yes
LocalCache on
DNSCRYPT_PROXY_OPTIONS=""
Despite these fulfilling the requirements according to the official website, any attempt to run DNS Crypt with "sudo dnscrypt-proxy /etc/default/dnscrypt-proxy.conf" (I added the '.conf' to the file and path specification, just to be sure) will fail with readout claiming no resolver set.
Running DNS Crypt using systemctl (sudo systemctl start dnscrypt-proxy), on the other hand, and then viewing the output of "journalctl -xe" and "lsof -i -n", show that the resolver successfully downloads the certificate and key. But running hostip -r 127.0.0.1 example.com, as recommended, results in a time out, showing that DNS Crypt is failing to resolve hostnames.
What am I missing out? There is no mention of how all this relates to resolv.conf or secondary nameserver lists it may specify, dnsmasq.conf or Network Manager.
|