lutfor-diu commented 2 years ago

Operating System

DietPi

Architecture

32-bit

Platform

Windows, Linux

Project

Aduard Home, Unbound, DNScrypt

Browser

Edge

Issue

Not working

Issue Description

tried your Dnscrypt config code but cloudfare showing that i'm not using DOH, here i have attached the Dnscrypt config

### More info about dnscrypt-proxy configuration settings
##go to: https://github.com/DNSCrypt/dnscrypt-proxy/blob/master/dnscrypt-proxy/example-dnscrypt-proxy.toml

### List of local addresses and ports to listen to. Can be IPv4 and/or IPv6.
### Example with both IPv4 and IPv6:
## listen_addresses = ['127.0.0.1:53', '[::1]:53']
## To listen to all IPv4 addresses, use `listen_addresses = ['0.0.0.0:53']`
## To listen to all IPv4+IPv6 addresses, use `listen_addresses = ['[::]:53']`
listen_addresses = ['127.0.0.1:6053', '[::1]:6053']

### Use servers reachable over IPv6 -- Do not enable if you don't have IPv6 connectivity
ipv6_servers = true
block_ipv6 = false

### Enable a DNS cache to reduce latency and outgoing traffic(set false if using Unbound)
cache = false

### Use servers implementing the specific protocol
dnscrypt_servers = false
odoh_servers = false
doh_servers = true

### You can choose other servers from public resolver list that is fastest for you
##go to: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md
#or for easier readable & searchable server database: https://theummahentrepreneur.notion.site/DNScrypt-DOH-servers-75553dc433194fd1a4e641f4918611ab
##(not all servers support anonymized DNS feature). Using dnscrypt.ca-1 as example that supports it

### For oDoH, REPLACE cloudflare/cloudflare-ipv6 with 'odoh-cloudflare'
### For DoH(dnscrypt) and anonymized dns, REPLACE cloudflare/cloudflare-ipv6 with 'dnscrypt.ca-1'
### For DoH(dnscrypt) and anonymized dns with Cloudflare, only ADD 'dnscrypt.ca-1' to server_names
server_names = ['cloudflare', 'cloudflare-ipv6']
### Example of Quad9 DNS servers with Quad9_DNScrypt anonymized servers:
#server_names = ['quad9-doh-ip4-port5053-filter-ecs-pri', 'quad9-doh-ip6-port5053-filter-ecs-pri', 'quad9-dnscrypt-ip4-filter-pri', 'quad9-dnscrypt-ip6-filter-pri']

### Servers ###
### For more sources and resolver lists: https://github.com/DNSCrypt/dnscrypt-proxy/wiki/DNS-server-sources
[sources]
  [sources.'public-resolvers']
  url = 'https://download.dnscrypt.info/resolvers-list/v2/public-resolvers.md'
  cache_file = '/var/cache/dnscrypt-proxy/public-resolvers.md'
  minisign_key = 'RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3'
  refresh_delay = 72
  prefix = ''

### Anonymized DNS relays ####
  [sources.'relays']
  urls = ['https://raw.githubusercontent.com/DNSCrypt/dnscrypt-resolvers/master/v3/relays.md', 'https://download.dnscrypt.info/resolvers-list/v3/relays.md', 'https://ipv6.download.dnscrypt.info/resolvers-list/v3/relays.md']
  cache_file = '/var/cache/dnscrypt-proxy/relays.md'
  minisign_key = 'RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3'
  refresh_delay = 72
  prefix = ''

### oDoH server and relay is already set here. For more servers and relays 
##go to: https://github.com/DNSCrypt/dnscrypt-proxy/wiki/Oblivious-DoH
### For DoH(dnscrypt) server with anonymized DNS, replace odoh-cloudflare with 'dnscrypt.ca-1'
### For DoH(dnscrypt) relays set to ['*'] for random server(could get a slow 1) 
##or choose a relay server that is fastest for you: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/relays.md
[anonymized_dns]
routes = [
    { server_name='odoh-cloudflare', via=['odohrelay-koki-ams', 'odohrelay-crypto-sx']}
]

### ODoH (Oblivious DoH) servers and relays ###
  [sources.'odoh-servers']
  urls = ['https://raw.githubusercontent.com/DNSCrypt/dnscrypt-resolvers/master/v3/odoh-servers.md', 'https://download.dnscrypt.info/resolvers-list/v3/odoh-servers.md']
  minisign_key = 'RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3'
  cache_file = '/var/cache/dnscrypt-proxy/odoh-servers.md'
  refresh_delay = 72
  prefix = ''
  [sources.'odoh-relays']
  urls = ['https://raw.githubusercontent.com/DNSCrypt/dnscrypt-resolvers/master/v3/odoh-relays.md', 'https://download.dnscrypt.info/resolvers-list/v3/odoh-relays.md']
  minisign_key = 'RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3'
  cache_file = '/var/cache/dnscrypt-proxy/odoh-relays.md'
  refresh_delay = 72
  prefix = ''

[query_log]
  file = '/var/log/dnscrypt-proxy/query.log'

[nx_log]
  file = '/var/log/dnscrypt-proxy/nx.log'

welcome[bot] commented 2 years ago

Thanks for opening your first issue here 🙋🕵️

trinib commented 2 years ago

need logs

lutfor-diu commented 2 years ago

need logs I have medium knowledge. Please guide me, how to do that?

trinib commented 2 years ago

@lutfor-diu

sudo nano /var/log/dnscrypt-proxy/query.log

but what does sudo systemctl status dnscrypt-proxy.service outputs ?

lutfor-diu commented 2 years ago

@lutfor-diu

sudo nano /var/log/dnscrypt-proxy/query.log

but what does sudo systemctl status dnscrypt-proxy.service outputs ?

Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Now listening to [::1]:6053 [UDP]
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Now listening to [::1]:6053 [TCP]
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [odoh-relays] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [public-resolvers] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [relays] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [odoh-servers] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Firefox workaround initialized
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] [cloudflare] OK (DoH) - rtt: 59ms
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Server with the lowest initial latency: cloudflare (rtt: 59ms)
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] dnscrypt-proxy is ready - live servers: 1

lutfor-diu commented 2 years ago

sudo nano /var/log/dnscrypt-proxy/query.log

doesn't exist

lutfor-diu commented 2 years ago

@lutfor-diu
sudo nano /var/log/dnscrypt-proxy/query.log
but what does sudo systemctl status dnscrypt-proxy.service outputs ?

Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Now listening to [::1]:6053 [UDP]
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Now listening to [::1]:6053 [TCP]
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [odoh-relays] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [public-resolvers] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [relays] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [odoh-servers] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Firefox workaround initialized
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] [cloudflare] OK (DoH) - rtt: 59ms
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Server with the lowest initial latency: cloudflare (rtt: 59ms)
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] dnscrypt-proxy is ready - live servers: 1

you have odoh source and not doh cloudflare source.. check the configurations again

what will be the config than? can you help please

lutfor-diu commented 2 years ago

@lutfor-diu
sudo nano /var/log/dnscrypt-proxy/query.log
but what does sudo systemctl status dnscrypt-proxy.service outputs ?

Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Now listening to [::1]:6053 [UDP]
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Now listening to [::1]:6053 [TCP]
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [odoh-relays] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [public-resolvers] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [relays] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Source [odoh-servers] loaded
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Firefox workaround initialized
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] [cloudflare] OK (DoH) - rtt: 59ms
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] Server with the lowest initial latency: cloudflare (rtt: 59ms)
Nov 02 19:56:43 DietPi dnscrypt-proxy[1082]: [2022-11-02 19:56:43] [NOTICE] dnscrypt-proxy is ready - live servers: 1

you have odoh source and not doh cloudflare source.. check the configurations again

what will be the config than? can you help please

server_names = ['cloudflare', 'cloudflare-ipv6']

i used this but same problem.

trinib commented 2 years ago

@lutfor-diu im wrong it suppose to show sources loaded.. i ll get back to

trinib commented 2 years ago

@lutfor-diu sorry about that i was kind of trying to multitask .. now i took a proper look at the issue i realized that you are using only ipv4 meaning you are not using ::1 or the system ipv6 in DNS option on windows or linux .. Do you have ipv6 turned off in windows and linux ??

lutfor-diu commented 2 years ago

@lutfor-diu sorry about that i was kind of trying to multitask .. now i took a proper look at the issue i realized that you are using only ipv4 meaning you are not using ::1 or the system ipv6 in DNS option on windows or linux .. Do you have ipv6 turned off in windows and linux ??

My isp doesn't support ipv6, and yes ipv6 disabled in Linux

trinib commented 2 years ago

@lutfor-diu sorry about that i was kind of trying to multitask .. now i took a proper look at the issue i realized that you are using only ipv4 meaning you are not using ::1 or the system ipv6 in DNS option on windows or linux .. Do you have ipv6 turned off in windows and linux ??

My isp doesn't support ipv6, and yes ipv6 disabled in Linux

ok try on windows

trinib commented 2 years ago

@lutfor-diu you have this off ?

lutfor-diu commented 2 years ago

@lutfor-diu you have this off ?

Screenshot_1

lutfor-diu commented 2 years ago

@lutfor-diu sorry about that i was kind of trying to multitask .. now i took a proper look at the issue i realized that you are using only ipv4 meaning you are not using ::1 or the system ipv6 in DNS option on windows or linux .. Do you have ipv6 turned off in windows and linux ??

My isp doesn't support ipv6, and yes ipv6 disabled in Linux

ok try on windows

not working

lutfor-diu commented 2 years ago

@lutfor-diu sorry about that i was kind of trying to multitask .. now i took a proper look at the issue i realized that you are using only ipv4 meaning you are not using ::1 or the system ipv6 in DNS option on windows or linux .. Do you have ipv6 turned off in windows and linux ??

My isp doesn't support ipv6, and yes ipv6 disabled in Linux

ok try on windows

not working Screenshot_2

trinib commented 2 years ago

have you tested dnscrypt by itself to see if its showing DoH? turn off dot, remove 127.0.0.1:53

lutfor-diu commented 2 years ago

have you tested dnscrypt by itself to see if its showing DoH? turn off dot, remove 127.0.0.1:53

tried, no luck.

trinib commented 2 years ago

try using port 5353 instead of 6053

lutfor-diu commented 2 years ago

try using port 5353 instead of 6053 brother i tried with the default port 5353, same result, DOT works but DOH not working

trinib commented 2 years ago

i do not see any error in the logs . you should be seeing DoH connected .. check adguard home and see if any configuration was wrong

trinib commented 2 years ago

try it on rasberry os to see if its not a issue with dietpi

it is strange it's not showing

lutfor-diu commented 2 years ago

try it on rasberry os to see if its not a issue with dietpi

it is strange it's not showing
`### More info about dnscrypt-proxy configuration settings
##go to: https://github.com/DNSCrypt/dnscrypt-proxy/blob/master/dnscrypt-proxy/example-dnscrypt-proxy.toml

List of local addresses and ports to listen to. Can be IPv4 and/or IPv6.

Example with both IPv4 and IPv6:

listen_addresses = ['127.0.0.1:53', '[::1]:53']

To listen to all IPv4 addresses, use `listen_addresses = ['0.0.0.0:53']`

To listen to all IPv4+IPv6 addresses, use `listen_addresses = ['[::]:53']`

listen_addresses = ['127.0.0.1:6053', '[::1]:6053']

Use servers reachable over IPv6 -- Do not enable if you don't have IPv6 connectivity

ipv6_servers = true block_ipv6 = false

Enable a DNS cache to reduce latency and outgoing traffic(set false if using Unbound)

cache = false

Use servers implementing the specific protocol

dnscrypt_servers = false odoh_servers = false doh_servers = true

You can choose other servers from public resolver list that is fastest for you

go to: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md

DNScrypt-DOH-servers-75553dc433194fd1a4e641f4918611ab

(not all servers support anonymized DNS feature). Using dnscrypt.ca-1 as example that supports it

For oDoH, REPLACE cloudflare/cloudflare-ipv6 with 'odoh-cloudflare'

For DoH(dnscrypt) and anonymized dns, REPLACE cloudflare/cloudflare-ipv6 with 'dnscrypt.ca-1'

For DoH(dnscrypt) and anonymized dns with Cloudflare, only ADD 'dnscrypt.ca-1' to server_names

server_names = ['cloudflare', 'cloudflare-ipv6']

Example of Quad9 DNS servers with Quad9_DNScrypt anonymized servers:

server_names = ['quad9-doh-ip4-port5053-filter-ecs-pri', 'quad9-doh-ip6-port5053-filter-ecs-pri', 'quad9-dnscrypt-ip4-filter-pri', 'quad9-dnscrypt-ip6-filter-pri']

Servers

For more sources and resolver lists: https://github.com/DNSCrypt/dnscrypt-proxy/wiki/DNS-server-sources

[sources] [sources.'public-resolvers'] url = 'https://download.dnscrypt.info/resolvers-list/v2/public-resolvers.md' cache_file = '/var/cache/dnscrypt-proxy/public-resolvers.md' minisign_key = 'RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3' refresh_delay = 72 prefix = ''

Anonymized DNS relays

[sources.'relays'] urls = ['https://raw.githubusercontent.com/DNSCrypt/dnscrypt-resolvers/master/v3/relays.md', 'https://download.dnscrypt.info/resolvers-list/v3/relays.md', 'https://ipv6.download.dnscrypt.info/resolvers-list/v3/relays.md'] cache_file = '/var/cache/dnscrypt-proxy/relays.md' minisign_key = 'RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3' refresh_delay = 72 prefix = ''

oDoH server and relay is already set here. For more servers and relays

go to: https://github.com/DNSCrypt/dnscrypt-proxy/wiki/Oblivious-DoH

For DoH(dnscrypt) server with anonymized DNS, replace odoh-cloudflare with 'dnscrypt.ca-1'

For DoH(dnscrypt) relays set to ['*'] for random server(could get a slow 1)

or choose a relay server that is fastest for you: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/relays.md

[anonymized_dns] routes = [ { server_name='odoh-cloudflare', via=['odohrelay-koki-ams', 'odohrelay-crypto-sx']} ]

ODoH (Oblivious DoH) servers and relays

[sources.'odoh-servers'] urls = ['https://raw.githubusercontent.com/DNSCrypt/dnscrypt-resolvers/master/v3/odoh-servers.md', 'https://download.dnscrypt.info/resolvers-list/v3/odoh-servers.md'] minisign_key = 'RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3' cache_file = '/var/cache/dnscrypt-proxy/odoh-servers.md' refresh_delay = 72 prefix = '' [sources.'odoh-relays'] urls = ['https://raw.githubusercontent.com/DNSCrypt/dnscrypt-resolvers/master/v3/odoh-relays.md', 'https://download.dnscrypt.info/resolvers-list/v3/odoh-relays.md'] minisign_key = 'RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3' cache_file = '/var/cache/dnscrypt-proxy/odoh-relays.md' refresh_delay = 72 prefix = ''

[query_log] file = '/var/log/dnscrypt-proxy/query.log'

[nx_log] file = '/var/log/dnscrypt-proxy/nx.log' '



Is there any wrong with this code? Need any comment/uncomment ? I see there are config for all types of server from doh to odoh

trinib commented 2 years ago

@lutfor-diu according to logs everything seems fine .. what do you get in query log ? monitor logs

lutfor-diu commented 2 years ago

@lutfor-diu according to logs everything seems fine .. what do you get in query log ? monitor logs

after several service restart its working now. dont know where i did mistake. thank you for your awesome guide. Screenshot_1

lutfor-diu commented 2 years ago

@lutfor-diu according to logs everything seems fine .. what do you get in query log ? monitor logs

how to add more server?

trinib commented 2 years ago

https://github.com/trinib/AdGuard-WireGuard-Unbound-DNScrypt/wiki/DNS-Providers

lutfor-diu commented 2 years ago

https://github.com/trinib/AdGuard-WireGuard-Unbound-DNScrypt/wiki/DNS-Providers

didn't find any dnscrypt server. stubby server will work? server_names = ['cloudflare', 'cloudflare-ipv6'] want to add here

trinib commented 2 years ago

### You can choose other servers from public resolver list that is fastest for you
##go to: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md
#or for easier readable & searchable server database: https://theummahentrepreneur.notion.site/DNScrypt-DOH-servers-75553dc433194fd1a4e641f4918611ab
##(not all servers support anonymized DNS feature). Using dnscrypt.ca-1 as example that supports it

lutfor-diu commented 2 years ago

### You can choose other servers from public resolver list that is fastest for you
##go to: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md
#or for easier readable & searchable server database: https://theummahentrepreneur.notion.site/DNScrypt-DOH-servers-75553dc433194fd1a4e641f4918611ab
##(not all servers support anonymized DNS feature). Using dnscrypt.ca-1 as example that supports it

added this server server_names = ['cloudflare', 'cloudflare-ipv6', 'adguard-dns-unfiltered-doh', 'bortzmeyer', 'ams-doh-nl']

but showing only 1 server running. Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] Now listening to [::1]:5353 [UDP] Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] Now listening to [::1]:5353 [TCP] Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] Source [public-resolvers] loaded Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] Source [relays] loaded Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] Source [odoh-servers] loaded Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] Source [odoh-relays] loaded Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] Firefox workaround initialized Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] [cloudflare] OK (DoH) - rtt: 55ms Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] Server with the lowest initial latency: cloudflare (rtt: 55ms) Nov 04 09:43:26 DietPi dnscrypt-proxy[3979]: [2022-11-04 09:43:26] [NOTICE] dnscrypt-proxy is ready - live servers: 1

trinib commented 2 years ago

working

lutfor-diu commented 2 years ago

working

which code you changed?

trinib commented 2 years ago

I just add servers and restart dnscrypt proxy service

lutfor-diu commented 2 years ago

I just add servers and restart dnscrypt proxy service

Hi Brother when input in adguard upstream ip it works but when leave the unbound ip in upstream it didn't work. though unbound forwaded to dnscrypt ipand port.

doest dnscrypt work with unbound? i did run cloudflare test. not showing DOH but DOT working.

trinib commented 2 years ago

I just add servers and restart dnscrypt proxy service

Hi Brother when input in adguard upstream ip it works but when leave the unbound ip in upstream it didn't work. though unbound forwaded to dnscrypt ipand port.

doest dnscrypt work with unbound? i did run cloudflare test. not showing DOH but DOT working.

try and test addresses one by one to see what it getting the error from in adguard

trinib / AdGuard-WireGuard-Unbound-DNScrypt

DOH not working and not showing on cloudfare website. #64

Operating System

Architecture

Platform

Project

Browser

Issue

Issue Description

Thanks for opening your first issue here 🙋🕵️

List of local addresses and ports to listen to. Can be IPv4 and/or IPv6.

Example with both IPv4 and IPv6:

listen_addresses = ['127.0.0.1:53', '[::1]:53']

To listen to all IPv4 addresses, use `listen_addresses = ['0.0.0.0:53']`

To listen to all IPv4+IPv6 addresses, use `listen_addresses = ['[::]:53']`

Use servers reachable over IPv6 -- Do not enable if you don't have IPv6 connectivity

Enable a DNS cache to reduce latency and outgoing traffic(set false if using Unbound)

Use servers implementing the specific protocol

You can choose other servers from public resolver list that is fastest for you

go to: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md

or for easier readable & searchable server database: https://theummahentrepreneur.notion.site/DNScrypt-DOH-servers-75553dc433194fd1a4e641f4918611ab

(not all servers support anonymized DNS feature). Using dnscrypt.ca-1 as example that supports it

For oDoH, REPLACE cloudflare/cloudflare-ipv6 with 'odoh-cloudflare'

For DoH(dnscrypt) and anonymized dns, REPLACE cloudflare/cloudflare-ipv6 with 'dnscrypt.ca-1'

For DoH(dnscrypt) and anonymized dns with Cloudflare, only ADD 'dnscrypt.ca-1' to server_names

Example of Quad9 DNS servers with Quad9_DNScrypt anonymized servers:

server_names = ['quad9-doh-ip4-port5053-filter-ecs-pri', 'quad9-doh-ip6-port5053-filter-ecs-pri', 'quad9-dnscrypt-ip4-filter-pri', 'quad9-dnscrypt-ip6-filter-pri']

Servers

For more sources and resolver lists: https://github.com/DNSCrypt/dnscrypt-proxy/wiki/DNS-server-sources

Anonymized DNS relays

oDoH server and relay is already set here. For more servers and relays

go to: https://github.com/DNSCrypt/dnscrypt-proxy/wiki/Oblivious-DoH

For DoH(dnscrypt) server with anonymized DNS, replace odoh-cloudflare with 'dnscrypt.ca-1'

For DoH(dnscrypt) relays set to ['*'] for random server(could get a slow 1)

or choose a relay server that is fastest for you: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/relays.md

ODoH (Oblivious DoH) servers and relays

trinib / AdGuard-WireGuard-Unbound-DNScrypt

DOH not working and not showing on cloudfare website. #64

Operating System

Architecture

Platform

Project

Browser

Issue

Issue Description

Thanks for opening your first issue here 🙋🕵️

List of local addresses and ports to listen to. Can be IPv4 and/or IPv6.

Example with both IPv4 and IPv6:

listen_addresses = ['127.0.0.1:53', '[::1]:53']

To listen to all IPv4 addresses, use listen_addresses = ['0.0.0.0:53']

To listen to all IPv4+IPv6 addresses, use listen_addresses = ['[::]:53']

Use servers reachable over IPv6 -- Do not enable if you don't have IPv6 connectivity

Enable a DNS cache to reduce latency and outgoing traffic(set false if using Unbound)

Use servers implementing the specific protocol

You can choose other servers from public resolver list that is fastest for you

go to: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md

or for easier readable & searchable server database: https://theummahentrepreneur.notion.site/DNScrypt-DOH-servers-75553dc433194fd1a4e641f4918611ab

(not all servers support anonymized DNS feature). Using dnscrypt.ca-1 as example that supports it

For oDoH, REPLACE cloudflare/cloudflare-ipv6 with 'odoh-cloudflare'

For DoH(dnscrypt) and anonymized dns, REPLACE cloudflare/cloudflare-ipv6 with 'dnscrypt.ca-1'

For DoH(dnscrypt) and anonymized dns with Cloudflare, only ADD 'dnscrypt.ca-1' to server_names

Example of Quad9 DNS servers with Quad9_DNScrypt anonymized servers:

server_names = ['quad9-doh-ip4-port5053-filter-ecs-pri', 'quad9-doh-ip6-port5053-filter-ecs-pri', 'quad9-dnscrypt-ip4-filter-pri', 'quad9-dnscrypt-ip6-filter-pri']

Servers

For more sources and resolver lists: https://github.com/DNSCrypt/dnscrypt-proxy/wiki/DNS-server-sources

Anonymized DNS relays

oDoH server and relay is already set here. For more servers and relays

go to: https://github.com/DNSCrypt/dnscrypt-proxy/wiki/Oblivious-DoH

For DoH(dnscrypt) server with anonymized DNS, replace odoh-cloudflare with 'dnscrypt.ca-1'

For DoH(dnscrypt) relays set to ['*'] for random server(could get a slow 1)

or choose a relay server that is fastest for you: https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/relays.md

ODoH (Oblivious DoH) servers and relays

To listen to all IPv4 addresses, use `listen_addresses = ['0.0.0.0:53']`

To listen to all IPv4+IPv6 addresses, use `listen_addresses = ['[::]:53']`