Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/nicki-krizek/resolver-dns-tls-deploy
OUTDATED: Ansible playbook used to deploy Knot Resolver < 5.
https://github.com/nicki-krizek/resolver-dns-tls-deploy
Last synced: about 2 months ago
JSON representation
OUTDATED: Ansible playbook used to deploy Knot Resolver < 5.
- Host: GitHub
- URL: https://github.com/nicki-krizek/resolver-dns-tls-deploy
- Owner: nicki-krizek
- License: gpl-3.0
- Created: 2019-06-09T15:50:48.000Z (over 5 years ago)
- Default Branch: master
- Last Pushed: 2019-09-05T15:34:38.000Z (over 5 years ago)
- Last Synced: 2024-10-14T17:18:14.778Z (3 months ago)
- Language: Shell
- Homepage:
- Size: 32.2 KB
- Stars: 2
- Watchers: 1
- Forks: 0
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
Privacy-oriented DNS-over-TLS Resolver
======================================
This ansible playbook / roles can be be used to deploy DNS-over-TLS only
Knot Resolver for Debian 9.
Features
--------
- DNS-over-TLS only - to avoid abuse of resolver for DDoS amplification attacks
- cache pre-warming with [Cisco
Umbrella](http://s3-us-west-1.amazonaws.com/umbrella-static/index.html)
domain popularity list for improved performance and privacy
- uses latest upstream [Knot Resolver](https://www.knot-resolver.cz)
- Debian 9 compatible
TODO
----
- automate certificate renewal
- go through [DNS Privacy Service Recommendations](https://datatracker.ietf.org/doc/draft-ietf-dprive-bcp-op/)