- A software Dnsmasq to recommend today
A local DNS and DHCP server (DNS is only discussed in this article)
It is also a free software made by foreign gods to follow the GPL protocol. This is the official website of the project
http://www.thekelleys.org.uk/dnsmasq/doc.html
The DNS subsystem provides a local DNS server for the network, with forwarding of all query types to upstream recursive DNS servers and caching of common record types (A, AAAA, CNAME and PTR, also DNSKEY and DS when DNSSEC is enabled).
As can be seen from the introduction of the official website, this local DNS server is designed to forward DNS requirements to the next level of DNS, and then cache DNS results to the local. DNS types support A, AAAA, etc., and are still comprehensive.
Here are two key points
- He can let you specify the superior DNS server you need to ask about;
- He can cache DNS results up to 1w of data.
The first point, which is very important, is the key to prevent DNS hijacking and DNS contamination. You can specify Google DNS 8.8.8.8 or 114DNS 114.114.114.114, both of which are reliable DNS rather than carrier-designated DNS (some sites can be inexhnedly taken to other sites). One notable result is that websites that were previously unoable can be opened!
Second, you can cache up to 1w data, as long as you get DNS data can also be used later, the computer to get DNS mobile phone can be re-used, can significantly improve the network's DNS speed.
- Install Dnsmasq
Here I use lede soft routing firmware and a god released Jump's soft routing firmware, both built-in Dnsmasq. Specifically set up on the network – DHCP/DNS
Provide a GUI interface to let you set up, you only need to fill in the background GUI configuration OK, do not need SSH to go in to change linux files.
- Basic settings – DNS forwarding, please add 2 bars, one is 114.114.114.114, and one is 8.8.8.8
- Advanced Settings – DNS query cache size, set to 9999
Others do not need to be changed.
There are 2 pits here, and I tested them for 2 days before I reached a conclusion.
- The Dnsmasq of the koolshare forum should be a bug version based on my multi-day test. The phenomenon is that it can be used at first, and a few hours later the local DNS server hangs up. Before I looked for a long time reason, all kinds of settings are useless. Finally, it's OK to replace the JUMP firmware. So you need to find a reliable firmware. According to my setup tutorial configuration is good, if there is a problem is definitely not a configuration problem, or a version problem.
- Many tutorials on the Internet are based on Linxu, setting up reslov files or something, is very complicated. I suggest that you do not use, because there are various references, change more than one file, easy to error, and Dnsmasq version is not the same, reference rules are not the same, some are read / etc folder profile, some are read / tmp folder under the profile, not clear. It is recommended to set it up directly with a GUI. Don't mess with SSH into changing files.
It is recommended that everyone should deploy Dnsmasq local DNS, there are questions that can be raised. If you use it after a good effect, or if there are other good DNS solutions you can leave a message below.