Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [global]
- # default listen address.
- # set to "" to list to all addresses (default)
- #
- listen = ""
- # default log level
- #
- # these are Syslog-compatible log levels
- # Emergency = 0
- # Alert = 1
- # Crit = 2
- # Error = 3
- # Warn = 4
- # Notice = 5 # default for DoH daemon -- not chatty at all
- # Information = 6 # also controlled from cli using -verbose switch: add's some diagnostics information
- # Debug = 7 # also controlled from cli using -debug switch: very chatty and fully verbose
- #
- loglevel = 5
- # http-only server
- # according to RFC8484, DoH must only be supported via TLS on HTTP/2
- # However, for development purposes, the http-plain mode can be helpful,
- # i.e. to capture wire format traffic.
- # When running in Docker, it may be also indiciated to expose the service
- # through plain-text HTTP, and run it behind a frontend load-balancer,
- # which does the TLS offloading.
- #
- [http]
- enable = true
- port = 8080
- # settings for TLS HTTP/2 service (mandatory)
- #
- [tls]
- enable = false
- port = 8443
- pkey = "./conf/private.key"
- cert = "./conf/public.crt"
- # DNS resolver
- #
- # at least one host must be specified in
- # URI format, as described in https://tools.ietf.org/html/rfc3986
- #
- # multiple hosts can be specified as shown below,
- # both in FQDN format or using IP(v4|6) addresses.
- #
- # use udp:// for standard DNS resolvers
- # - port number can be specified using ':<port>' syntax, defaults to ':53'
- # use https:// for DoH servers
- # - port number can be specified using ':<port>' syntax, defaults to ':443'
- # - DoH servers can support both POST or GET request methods,
- # append '#<request-method>' to indicate preferred method (defaults to '#POST')
- # - use the FQDN only, do not append '/dns-query' URI to hostname (read: it will be ignored)
- #
- # [ "udp://192.0.2.1:53", "udp://fully-qualified-host.local", "https://cloudflare-dns.com#POST", "https://cloudflare-dns.com#GET" ]
- #
- [dns]
- resolvers = [ "udp://192.0.2.1:53", "udp://localhost" ]
- # Optional influxDB to report telemetry information
- #
- # Telemetry logging only includes counters for HTTP GET / POST requests,
- # and the number of DNS RR Type requests (e.g. TYPE A, TYPE NS) processed.
- # No additional information, e.g. queried hostnames, returned IP addresses,
- # source IPs, etc, is included in the telemetry.
- #
- [influx]
- enable = false
- url = ""
- database = ""
- username = ""
- password = ""
- # Optional Redis cache support to perform application-level caching of DNS responses
- # This works side-by-side with any ordinary DNS query cache, but on the DoH frontend service,
- # saving extra round-trips and recursion through the DNS backends.
- #
- [redis]
- enable = false
- addr = "localhost"
- port = "6379"
- password = ""
Add Comment
Please, Sign In to add comment