ncruces / go-dns

net.Resolvers with caching, opportunistic encryption, and DoT/DoH
https://pkg.go.dev/github.com/ncruces/go-dns
MIT License
41 stars 8 forks source link

Create an opportunistic DoT resolver #7

Closed ncruces closed 4 years ago

ncruces commented 4 years ago

An opportunistic DoT resolver should use the system's provided DNS servers, but try DoT on port 853 without verifying certificates, and only then fall back to legacy DNS.

Use the opportunistic resolver internally for DoH/DoT bootstrapping/meta lookups.