Ask Your Question
4

DNSSEC & Overriding DHCP Resolver (Securely)

asked 2018-06-25 14:58:49 -0500

indolering gravatar image

I setup DNSSEC-trigger and everything appears to be working nicely. However, not all domains are signed and I would like to use Cloudflare's DNS resolver whenever and DNS-over-TLS whenever I don't need to deal with a captive portal. I'm aware I can set the DNS server manually in the control panel, but this doesn't allow me to specify a public key. Furthermore, it's unclear if that works with GNOME's captive-portal detection system.

What's the best way to go about specifying a DNS server (along with the public key) in a way that meshes well with DNSSEC-Trigger? Is it possible to do this without interfering with the captive portal process?

edit retag flag offensive close merge delete

1 Answer

Sort by » oldest newest most voted
1

answered 2018-08-01 11:34:31 -0500

Petr Menšík gravatar image

Take a look at getdns package, service stubby inside. I think that is what are you looking for. I were unable to use GNOME's captive portal my way, I doubt it can be for this.

edit flag offensive delete link more

Comments

Yes, I don't think this is possible.

indolering gravatar imageindolering ( 2019-02-20 02:10:33 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

2 followers

Stats

Asked: 2018-06-25 14:58:49 -0500

Seen: 65 times

Last updated: Aug 01 '18