mirror of
https://github.com/ookangzheng/blahdns.git
synced 2025-12-16 14:15:37 +07:00
85 lines
4.5 KiB
Markdown
Executable File
85 lines
4.5 KiB
Markdown
Executable File
## Announcements
|
|
|
|
**Blahdns [Hosts](https://oooo.b-cdn.net/blahdns/adsblock.list) or [RPZ](https://oooo.b-cdn.net/blahdns/rpz.blacklist) can be download via new CDN.** (2019-10-24)
|
|
|
|
**BlahDNS can resolve `.eth` tld. [http://matoken.eth/]**
|
|
|
|
**Non ASCii & UTF-8 domains now can be resolve `kdig xn--i-7iq.ws` [https://i❤.ws]**
|
|
|
|
**All dnscryptV2 expired certificate has been replaced. Enjoy (2019-10-02 23:45 GMT+8)**
|
|
|
|
**Switerland DoT-DoH Cert will be expire at 2020-01-15**
|
|
|
|
* If you are developer using those services, both are blocked by default.
|
|
`data.mob.com, google-analytics, googleadservices, amazon-adsystem, crashlytics.com analytics.yahoo, doubleclick.net, hm.baidu.com, etc.. `
|
|
|
|
* For more old announcements, go [here](https://github.com/ookangzheng/blahdns/issues/36)
|
|
|
|
## Our features
|
|
* Block Trackers, Ads, Malwares
|
|
* No ECS, DNSSEC ready, No logs, OpenNIC, Eth TLD, Yggdrasil
|
|
|
|
## Server status
|
|
* Server status [UpTimeRobot](https://stats.blahdns.com) | [Dnsprivacy.org](https://dnsprivacy.org/jenkins/job/dnsprivacy-monitoring/)
|
|
|
|
## Server architecture
|
|
|
|
```bash
|
|
Server (August 2, 2019 -- Germany, Japan)
|
|
|-- Let's Encrypt SSL
|
|
|-- Knot-resolver (OpenNIC, ICANN)
|
|
| |-- DNSCryptv2 (dnsdist, port 8443)
|
|
| |-- doh-server (DoH, GET, POST -- m13253)
|
|
| |-- |-- DoH (HAProxy, port 443, TLS 1.3, require SNI)
|
|
|-- DoT (HAProxy, port 853, 443, TLS 1.3, require SNI)
|
|
|
|
Server (August 2, 2019 -- Switzerland)
|
|
|-- Let's Encrypt SSL
|
|
|-- Knot-resolver (OpenNIC, ICANN, forward-upstream to https://www.switch.ch/security/info/public-dns/)
|
|
| |-- DNSCryptv2 (dnsdist, port 8443)
|
|
| |-- doh-server (DoH, GET, POST -- m13253)
|
|
| |-- |-- DoH (HAProxy, port 443, TLS 1.3, require SNI)
|
|
|-- DoT (HAProxy, port 853, 443, TLS 1.3, require SNI)
|
|
```
|
|
|
|
## Config file / Client
|
|
* Yggdrasil IPv6 Network: [Setup guide](https://github.com/ookangzheng/blahdns/blob/master/client-conf/yggdrasil.md)
|
|
* Android DoH/DoT: [Nebulo App](https://play.google.com/store/apps/details?id=com.frostnerd.smokescreen) | [personalDNSfilter App](https://zenz-solutions.de/personaldnsfilter/) | [Intra](https://play.google.com/store/apps/details?id=app.intra)
|
|
* iOS Dnscryptv2/DoH: [Dnscloak](https://itunes.apple.com/app/dnscloak-secure-dns-client/id1452162351)
|
|
* Dnscryptv2: [dnscrypt-proxy](https://github.com/jedisct1/dnscrypt-proxy/)
|
|
* Config files: [ Client config example ](https://github.com/ookangzheng/blahdns/tree/master/client-conf)
|
|
|
|
## Server information
|
|
VISIT: [HERE for more details](https://github.com/ookangzheng/blahdns/tree/master/server-conf)
|
|
|
|
## Default blocked wildcard domain
|
|
* `+.glassbox.+ `# https://techcrunch.com/2019/02/06/iphone-session-replay-screenshots
|
|
|
|
## Awesome dns-resolver
|
|
https://gist.github.com/ookangzheng/c8fba46fe1dbcc8152e3231f53f91e86
|
|
|
|
## Huge thanks to those OSS and ORG
|
|
1. [Knot-resolver](https://github.com/CZ-NIC/knot-resolver)
|
|
2. [m13253](https://github.com/m13253/dns-over-https)
|
|
3. [DNSPrivacy.org](https://dnsprivacy.org)
|
|
|
|
## Site found which try to block DoH / DoT / Dnscrypt
|
|
1. https://forum.opnsense.org/index.php?PHPSESSID=s1mi1kp08r1c5lrr57rfklbtu0&topic=12238.0 (opensense)
|
|
|
|
## Disclaimer
|
|
* This is an experimental service, I'm not responsible for any down-time.
|
|
* Be sure you have agree with our [POLICY](https://github.com/ookangzheng/blahdns/#policy) before start to use.
|
|
* This service is for PERSONAL use, huge traffic are not welcome, will drop PTR, ANY by default.
|
|
* We can't block some ads with Apps inside your phone (Youtube official app Ads, Facebook app Ads, Twitter app Ads... )
|
|
|
|
## Policy
|
|
* Use at your own risk. Under no circumstances will the operator be held responsible or liable in any way for any claims, damages, losses, expenses, costs or liabilities whatsoever (including, without limitation, any direct or indirect damages for loss of profits, business interruption or loss of information) resulting or arising directly or indirectly from accessing or otherwise using this service (Blahdns server).
|
|
* The operator does not guarantee in any way the access, availability and continuity of the functioning of this service.
|
|
* By using this website and service you consent to the disclaimer and agree to its terms and conditions.
|
|
|
|
## Donate
|
|
|
|
[](https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=KC33GK5CT2Q9Y&source=url)
|
|
|
|
|
<a href='https://ko-fi.com/P5P4GPQ8' target='_blank'><img height='36' style='border:0px;height:36px;' src='https://az743702.vo.msecnd.net/cdn/kofi4.png?v=0' border='0' alt='Buy Me a Coffee at ko-fi.com' /></a>
|