From 8a8e68580f9a4fb6421ad1b2c630b984f1527c27 Mon Sep 17 00:00:00 2001 From: David Mora Date: Fri, 11 May 2018 15:41:50 -0400 Subject: [PATCH] stubby: Bump to 0.2.3 Update to new upstream version. Also changed to Cloudflare's DNS as default. Signed-off-by: David Mora --- net/stubby/Makefile | 6 +++--- net/stubby/files/README.md | 29 ++++++----------------------- net/stubby/files/stubby.yml | 24 +++++++++++++++++------- 3 files changed, 26 insertions(+), 33 deletions(-) diff --git a/net/stubby/Makefile b/net/stubby/Makefile index 5bf344c66..3cc8dae6e 100644 --- a/net/stubby/Makefile +++ b/net/stubby/Makefile @@ -5,7 +5,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=stubby -PKG_VERSION:=0.2.2 +PKG_VERSION:=0.2.3 PKG_RELEASE:=1 PKG_LICENSE:=BSD-3-Clause @@ -15,8 +15,8 @@ PKG_MAINTAINER:=David Mora PKG_SOURCE_PROTO:=git PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.xz PKG_SOURCE_URL:=https://github.com/getdnsapi/$(PKG_NAME) -PKG_SOURCE_VERSION:=1a6acd642c7dc9a04cf092e1a3837c5636d4b465 -PKG_MIRROR_HASH:=f5a270a0ef4e7e2f0387b649ed77d66917ba9bd88dee14e3f9edd2573e8d3c3a +PKG_SOURCE_VERSION:=8fb853ac8d6148fd9b53fdcbc107ecd375071ec5 +PKG_MIRROR_HASH:=db736f4a728970d2441009ac19716d6129700eab3f441a5db3a0c26d41bf162c PKG_FIXUP:=autoreconf diff --git a/net/stubby/files/README.md b/net/stubby/files/README.md index ad8cd39dd..14b7bbf92 100644 --- a/net/stubby/files/README.md +++ b/net/stubby/files/README.md @@ -32,32 +32,15 @@ Additionally, due to the slight overhead involved with DNS-over-TLS, it is recom ### Round Robin Upstream Setting Changed -The default stubby config list multiple upstream resolvers, and because of this, it makes sense to "load balance" between them. However, in this package's default stubby config, the only upstream service listed is quad9. One entry is for ipv6 and one for ipv4. +The default stubby config list multiple upstream resolvers, and because of this, it makes sense to "load balance" between them. However, in this package's default stubby config, the only upstream service listed is Cloudflare. One entry is for ipv6 and one for ipv4. -By setting the "round_robin_upstreams" value to 0, we are simply forcing stubby to try and use ipv6 connectivity to quad9 first, and if not available, simply use the ipv4 service. +By setting the "round_robin_upstreams" value to 0, we are simply forcing stubby to try and use ipv6 connectivity to Cloudflare first, and if not available, simply use the ipv4 service. -quad9 is an Anycast DNS service. This should take care of any needed "failover" in the event that one of quad9's nodes goes down. +Cloudflare is an Anycast DNS service. This should take care of any needed "failover" in the event that one of Cloudflare's nodes goes down. ### Upstream Resolvers Changed -Most of the default resolvers for stubby are in Europe. To provide a better experience for a larger number of users, this package defaults to using quad9's DNS service. +Most of the default resolvers for stubby are in Europe. To provide a better experience for a larger number of users, this package defaults to using Cloudflare's DNS service. Cloudflare's DNS service has been ranked number one in speed against many other top resolvers. -Note: quad9 has multiple IPs available for their service. The "features" applied are based on the endpoint your DNS client connects to. For this package, the default resolvers are set to the non-filtering, EDNS Client-Subnet capable endpoints. - -https://www.quad9.net/faq/#Is_there_a_service_that_Quad9_offers_that_does_not_have_the_blocklist_or_other_security - -https://www.quad9.net/faq/#Does_Quad9_support_DNS_over_TLS - -`````` - -# IPv6 addresses -# Quad 9 IPv6 - - address_data: 2620:fe::10 - tls_auth_name: "dns.quad9.net" - -# IPv4 addresses -# Quad 9 service - - address_data: 9.9.9.10 - tls_auth_name: "dns.quad9.net" - -`````` +https://developers.Cloudflare.com/1.1.1.1/commitment-to-privacy/ +https://www.dnsperf.com/dns-resolver/1-1-1-1 \ No newline at end of file diff --git a/net/stubby/files/stubby.yml b/net/stubby/files/stubby.yml index 382350dde..278fa2ee3 100644 --- a/net/stubby/files/stubby.yml +++ b/net/stubby/files/stubby.yml @@ -11,19 +11,29 @@ tls_query_padding_blocksize: 128 edns_client_subnet_private : 0 +round_robin_upstreams: 0 + idle_timeout: 10000 listen_addresses: - 127.0.0.1@5453 - 0::1@5453 -round_robin_upstreams: 0 - upstream_recursive_servers: -# Quad 9 IPv6 - - address_data: 2620:fe::10 - tls_auth_name: "dns.quad9.net" +# IPv6 addresses +# # Cloudflare IPv6 + - address_data: 2606:4700:4700::1111 + tls_auth_name: "cloudflare-dns.com" + +# # Quad 9 IPv6 +# - address_data: 2620:fe::10 +# tls_auth_name: "dns.quad9.net" + # IPv4 addresses +# # Cloudflare servers + - address_data: 1.1.1.1 + tls_auth_name: "cloudflare-dns.com" + # Quad 9 service - - address_data: 9.9.9.10 - tls_auth_name: "dns.quad9.net" +# - address_data: 9.9.9.10 +# tls_auth_name: "dns.quad9.net"