What are the best DNS Servers for privacy use?

Started by opnsenseuser, November 12, 2018, 01:41:36 PM

Previous topic - Next topic
Print
Go Down Pages 1 2 3
User actions
November 20, 2018, 11:37:23 AM #15
Quote from: mimugmail on November 20, 2018, 11:27:53 AM
With 18.7.8 you'll have a devel pkg to install, then you forward unbound to dnscrypt-proxy like here:
https://www.routerperformance.net/opnsense/dnsbl-via-bind-plugin/

Then your DNS is forwarded via port 853 so it wont be intercepted ...

thats really really great! thx very very much!! :-)
Supermicro A2SDi-4C-HLN4F
Team Rebellion Member (sidebar / themes: tukan, cicada & vicuna)
November 22, 2018, 04:59:38 PM #16
Quote from: mimugmail on November 20, 2018, 11:27:53 AM
With 18.7.8 you'll have a devel pkg to install, then you forward unbound to dnscrypt-proxy like here:
https://www.routerperformance.net/opnsense/dnsbl-via-bind-plugin/

Then your DNS is forwarded via port 853 so it wont be intercepted ...

sorry, but on 18.7.8 i can´t find the plugin!
Supermicro A2SDi-4C-HLN4F
Team Rebellion Member (sidebar / themes: tukan, cicada & vicuna)
November 22, 2018, 05:06:40 PM #17
It's in development mode, so you need -devel installed or type:

# pkg install os-dnscrypt-proxy-devel


Cheers,
Franco
November 22, 2018, 05:09:20 PM #18
Quote from: franco on November 22, 2018, 05:06:40 PM
It's in development mode, so you need -devel installed or type:

# pkg install os-dnscrypt-proxy-devel


Cheers,
Franco

so on 19.1 dev mode it isn´t avaible?

regards,
René
Supermicro A2SDi-4C-HLN4F
Team Rebellion Member (sidebar / themes: tukan, cicada & vicuna)
November 22, 2018, 05:10:48 PM #19
I'm seeing it in the list GUI list... os-dnscrypt-proxy-devel ... :)
November 22, 2018, 05:49:52 PM #20
Quote from: franco on November 22, 2018, 05:10:48 PM
I'm seeing it in the list GUI list... os-dnscrypt-proxy-devel ... :)

sorry,  there is no new plugin!

1. i did
Code Select
opnsense-code core
2. i did
Code Select
opnsense-code plugin
3.
Code Select
cd /usr/core
4.
Code Select
make upgrade
5. did a restart -> no difference!

see my screenshot
Supermicro A2SDi-4C-HLN4F
Team Rebellion Member (sidebar / themes: tukan, cicada & vicuna)
November 22, 2018, 05:51:05 PM #21
only this
Code Select
pkg install os-dnscrypt-proxy-devel works for me
Supermicro A2SDi-4C-HLN4F
Team Rebellion Member (sidebar / themes: tukan, cicada & vicuna)
November 22, 2018, 05:53:16 PM #22
make upgrade in core only upgrades UI, not Kernel or Plugins or pkg .. :)
November 22, 2018, 06:00:01 PM #23
Quote from: mimugmail on November 22, 2018, 05:53:16 PM
make upgrade in core only upgrades UI, not Kernel or Plugins or pkg .. :)

i also tried
Code Select
opnsense-update -kr 18.7.8

Fetching kernel-18.7.8-amd64.txz: .. failed


Supermicro A2SDi-4C-HLN4F
Team Rebellion Member (sidebar / themes: tukan, cicada & vicuna)
November 22, 2018, 06:04:36 PM #24
is not that important. it works with the help of
Code Select
pkg install os-dnscrypt-proxy-devel now without problems. Now it's time to configure.

Thanks again, best regards, René
Supermicro A2SDi-4C-HLN4F
Team Rebellion Member (sidebar / themes: tukan, cicada & vicuna)
November 22, 2018, 07:34:38 PM #25
Quote from: noname12123 on November 22, 2018, 06:00:01 PM
Quote from: mimugmail on November 22, 2018, 05:53:16 PM
make upgrade in core only upgrades UI, not Kernel or Plugins or pkg .. :)

i also tried
Code Select
opnsense-update -kr 18.7.8

Fetching kernel-18.7.8-amd64.txz: .. failed

only opnsense-update .. nothing else. -kr would install a kernel and 18.7.8 has no new kernel ;)
November 22, 2018, 09:33:36 PM #26 Last Edit: November 22, 2018, 09:35:12 PM by noname12123
i have two vm´s . the first vm it doesn´t work even after using opnsense-update
the other vm works without any problems.

@mimugmail thx for your support. :-)

@mimugmail will there be a documentation on opnsense wiki?

Supermicro A2SDi-4C-HLN4F
Team Rebellion Member (sidebar / themes: tukan, cicada & vicuna)
November 23, 2018, 06:16:24 AM #27
When it's stable, yes. At first you just need the redirect part for Unbound in the link I posted before.
Then enable the service, choose the values you insist, like nolog, dnssec etc. and the program searches the correct and fastest DNS servers for you.
November 23, 2018, 09:26:52 AM #28
As for DNS servers I don't recommend adguard.

I use uBLOCK Origin through firefox as a add on and it blocks much more than adguard. Not just a little bit but a whole lot like on one site 56 more blocks.

I'm also searching and trying DNS servers myself currently.

Trying to avoid IDS/IPS and anything that needs a proxy but it looks more and more like that might be the final solution.
November 23, 2018, 11:40:32 AM #29
I'm running dnscrypt here at home, added a Port Forward for every DNS request to localhost 5353 .. works great :)
Print
Go Up Pages 1 2 3
User actions