ustclug/neatdns ustclug/neatdns

  • Stars
    star
    282
  • Rank 146,549 (Top 3 %)
  • Language
    Shell
  • License
    MIT License
  • Created about 8 years ago
  • Updated 12 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
ustclug/neatdns
github

ustclug

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

anti-pollution DNS server

Neat DNS

an anti-pollution DNS server

Including the following software:

  • bind
  • dnscrypt-wrapper
  • collectd

Deployment

docker run -itd \
	--name=neatdns \
	-p 53:53/tcp \
	-p 53:53/udp \
	-p 443:443/tcp \
	-p 443:443/udp \
	-v $DNSCRYPT_KEY_PATH:/srv/dnscrypt-wrapper \
	-e DNSCRYPT_PROVIDER=2.dnscrypt-cert.example.org \
	--cap-add=NET_ADMIN \
	ustclug/neatdns

P.S. you should install docker first.

Available environment variables:

Name Implication Default Value
GLOBAL_DNS1 preferred DNS server to resolve non-China website 8.8.4.4
GLOBAL_DNS2 alternate DNS server to resolve non-China website 8.8.8.8
CHINA_DNS1 preferred DNS server to resolve China website 119.29.29.29
CHINA_DNS2 alternate DNS server to resolve China website 223.5.5.5
DNSCRYPT_ON auto-start DNSCrypt daemon true
DNSCRYPT_PROVIDER DNSCrypt provider name 2.dnscrypt-cert.ustclug.org
DNSCRYPT_PORT DNSCrypt port 443
COLLECTD_ON auto-start collectd false
COLLECTD_HOSTNAME hostname defined in collectd.conf neatdns
INFLUXDB_HOST remote influxDB host influxdb
INFLUXDB_PORT remote influxDB port 25826
FAIL2BAN_ON auto-start fail2ban true

DNSCrypt Client Usage

Please get your own DNSCrypt fingerprint first:

$ cat $DNSCRYPT_KEY_PATH/fingerprint
Provider public key fingerprint : 4365:1587:E7A0:8C7C:1759:D300:6218:89AE:5999:42CA:562E:CB00:03E5:2147:A850:E191

ATTENTION: It would show a different fingerprint, please replace the fingerprint below with your own one.

Then, run dnscrypt-proxy on the client side, for example:

dnscrypt-proxy --local-address=127.0.0.1:53 --resolver-address=$DNS_SERVER:443 --provider-name=2.dnscrypt-cert.example.org --provider-key=4365:1587:E7A0:8C7C:1759:D300:6218:89AE:5999:42CA:562E:CB00:03E5:2147:A850:E191

NOTE: You need to replace $DNS_SERVER with your server IP address.

More Repositories

1

Linux101-docs

Linux 101 学生课程教材与讲义
Makefile
628
star
2

mirrorhelp

Documents about how to use repos on mirrors.ustc.edu.cn.
Python
426
star
3

mirrorrequest

通过 issue 为中国科大开源镜像站(mirrors.ustc.edu.cn)提交新的镜像申请~
Python
412
star
4

hackergame2019-writeups

Write-ups for hackergame 2019
HTML
269
star
5

hackergame2018-writeups

Write-ups for hackergame 2018
Jupyter Notebook
261
star
6

qtguide

Qt Programming Guide
HTML
93
star
7

ustcmirror-images

Docker images used by ustcmirror 🚀
Shell
68
star
8

hackergame

Hackergame platform for 2018 and beyond
Python
64
star
9

discussions

Issue Tracker for USTC LUG
47
star
10

telegram-web

💀Telegram Web Client (deprecated)
Shell
44
star
11

Yuki

Mirror management tool, developed and used in-house in USTC
Go
39
star
12

simple-pxe

便宜,快速,品质尚可
Shell
32
star
13

rb-backup

基于 rsync 和 ssh 的远程备份脚本,利用 btrfs snapshot 实现增量备份……
Shell
29
star
14

website

The next-gen website of LUG@USTC.
HTML
26
star
15

Linux101-USTC

Linux 101 is a course organized by several members of LUG@USTC. It is designed to popularize Linux and open source culture in USTC. First brought up by Jin Zida.
Shell
22
star
16

lug-vpn-web

LUG VPN 申请系统
Python
21
star
17

documentations

LUG @ USTC Technical Documentation
21
star
18

liimstrap

中国科大图书馆查询机生成脚本
Shell
14
star
19

Open-Source-Desktop-Show

Dress your Linux up!
13
star
20

rsync-proxy

根据 module name 反向代理不同 host 上的 rsync daemon 以减轻单台主机上的 IO 压力
Go
12
star
21

mirrors-index

Mirrored infrequently. Go https://git.lug.ustc.edu.cn/mirrors/mirrors-index for latest version
HTML
11
star
22

raid-telegraf

Parse megacli & storcli & ssacli outputs, and can be used in telegraf inputs.exec
Python
9
star
23

TunnelMonitor

monitoring iptables connection balance and switching automatically
Go
8
star
24

lugftp

FTP site of USTC Linux User Group
Shell
7
star
25

opensuse-guide

opensuse-guide in Chinese
Hack
6
star
26

openvz-daemon

OpenVZ daemon with HTTP API
C
5
star
27

adrain

Admission Rain
PHP
5
star
28

docker-image

💀docker image used by USTC LUG (deprecated)
Shell
4
star
29

hackergame2017

Python
4
star
30

light-list

accelerate list of light service (Last run: 2024-05-05)
Shell
4
star
31

lug-sites-sync

💀Script to sync lug.ustc.edu.cn/sites pages (deprecated)
Shell
3
star
32

light-server

light accelerator daemon
Shell
2
star
33

101strap

Linux 101 Desktop VM building scripts
Shell
2
star
34

mirrorimage

Docker Distribution Images replaced with USTC Mirrors (Last run: 2024-05-05)
Shell
2
star
35

lugwiki

wiki site of USTC Linux User Group
Shell
2
star
36

light-socks5

light accelerator socks5 daemon
Go
2
star
37

monitor

tools used by USTC LUG monitor site
Shell
2
star
38

lug-stickers

1
star
39

library

LUG Library
Python
1
star