A non-poisonous and CDN-friendly Recursive DNS Resolver
Project description
greendns
A DNS recursive resolve server to avoid result being poisoned and friendly to CDN. It will qeury dns servers at the same time and don't wait for all responses. It's more efficient and quicker than ChinaDNS
You must config at least two dns servers. One part is local and poisoned, the other part is unpoisoned(tunnel through VPN or use OpenDNS 443/5353 port, dnscrypt-proxy is recommended)
How it works
First filter poisoned ip with blocked iplist with -b argument.
Second,
| A record is local | A record is foreign
local and poisoned dns server | a | b
unpoisoned dns server | c | d
From the matrix, we get the result as follows,
ac: use local dns server result
ad: use local dns server result
bc: impossible. use unpoisoned dns server result
bd: use unpoisoned dns server result
Conclusion,
Using local dns server result if returned A record is local.
Using unpoisoned dns server result if returned A record is Foreign.
It has two assumptions,
- the polluted domain is foreign.
- the A record in poisoned response is foreign.
Install
pip install greendns
Usage
greendns -r greendns -f etc/greendns/localroute.txt -b etc/greendns/iplist.txt
Configure
greendns -r greendns -h
usage: greendns [-h] [-r HANDLER] [-p PORT] [-t TIMEOUT] [-l LOGLEVEL]
[-m MODE] [--lds LDS] [--rds RDS] [-f LOCALROUTE]
[-b BLACKLIST] [--rfc1918] [--cache]
optional arguments:
-h, --help
-r HANDLER, --handler HANDLER
Specify handler class, greendns|quickest (default:
None)
-p PORT, --port PORT Specify listen port or ip (default: 127.0.0.1:1053)
-t TIMEOUT, --timeout TIMEOUT
Specify upstream timeout (default: 1.5)
-l LOGLEVEL, --log-level LOGLEVEL
Specify log level, debug|info|warning|error (default:
info)
-m MODE, --mode MODE Specify io loop mode, select|epoll (default: select)
--lds LDS Specify local poisoned dns servers (default:
223.5.5.5:53,114.114.114.114:53)
--rds RDS Specify unpoisoned dns servers (default:
tcp:208.67.222.220:443,193.112.15.186:2323)
-f LOCALROUTE, --localroute LOCALROUTE
Specify local routes file (default:
/home/etc/greendns/localroute.txt)
-b BLACKLIST, --blacklist BLACKLIST
Specify ip blacklist file (default:
/home/etc/greendns/blacklist.txt)
--rfc1918 Specify if rfc1918 ip is local (default: False)
--cache Specify if cache is enabled (default: False)
Acknowledgements
- @clowwindy: the author of the ChinaDNS
License
This project is under the MIT license. See the LICENSE file for the full license text.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
greendns-0.9.5.tar.gz
(83.2 kB
view details)
File details
Details for the file greendns-0.9.5.tar.gz.
File metadata
- Download URL: greendns-0.9.5.tar.gz
- Upload date:
- Size: 83.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/1.12.1 pkginfo/1.4.2 requests/2.21.0 setuptools/40.6.3 requests-toolbelt/0.8.0 tqdm/4.28.1 CPython/3.7.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
76c3a034ed9a100077490d4fe5cf903c3df0298f68e0a590e026a84c9eeb4a88
|
|
| MD5 |
9314e0af2a5a5b0dced01eb9de30e3b7
|
|
| BLAKE2b-256 |
462098e7ff182986b3f6486de78dd00c8e2db069163b625c9f35ad072498d2c8
|
