Last active
July 7, 2022 06:51
-
-
Save leiless/5fbdeafb69d56fe737ba639ded9ac124 to your computer and use it in GitHub Desktop.
Sample Corefile for leiless/dnsredir plugin
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # XXX: Deprecated, see below for updates | |
| # https://coredns.io/plugins/cache/ | |
| (global_cache) { | |
| cache { | |
| # [5, 60] | |
| success 65536 3600 300 | |
| # [1, 10] | |
| denial 8192 600 60 | |
| prefetch 1 60m 10% | |
| } | |
| } | |
| . { | |
| debug | |
| log . {combined} | |
| loop | |
| reload 2s | |
| errors | |
| hosts { | |
| fallthrough | |
| } | |
| import global_cache | |
| dnsredir accelerated-domains.china.conf google.china.conf apple.china.conf { | |
| expire 15s | |
| max_fails 3 | |
| health_check 3s | |
| policy round_robin | |
| path_reload 2s | |
| to 114.114.114.114 223.5.5.5 119.29.29.29 | |
| } | |
| dnsredir . { | |
| expire 60s | |
| max_fails 5 | |
| health_check 5s | |
| policy random | |
| spray | |
| to tls://8.8.8.8@8888.google tls://8.8.4.4@dns.google | |
| to tls://1.1.1.1 tls://1.0.0.1 | |
| to tls://9.9.9.9@quad9.net | |
| # Global TLS server name | |
| tls_servername one.one.one.one | |
| } | |
| } | |
According to 防火墙屏蔽了多个 DoH 服务器, many popular DoH/DoT servers got SNI blocked in mainland China.
Please consider using other(especially minor) DoH servers listed in:
- https://github.com/curl/curl/wiki/DNS-over-HTTPS
- https://kb.adguard.com/en/general/dns-providers
- List of direct IPv4/IPv6 DoH
Or, you can forward all DoH/DoT traffic to your proxy.
SEE ALSO
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
简单好用,谢谢