Skip to content

Latest commit

 

History

History
48 lines (28 loc) · 2.39 KB

README.md

File metadata and controls

48 lines (28 loc) · 2.39 KB

Secure DNS Resolver

Information, configuration files and how tos about the public secure DNS resolvers operated by the Digital Society Switzerland.

The Digital Society Switzerland runs publicly available DNS-over-HTTPS (DoH) and DNS-over-TLS (DoT) DNS resolver systems.

Secure DNS resolver overview

This repository contains:

  • Configuration files of our production systems. Anyone interested in our setup can review our production configuration or run its own setup based on our configuration files. You may also check out our system architecture.
  • How tos to configure encrypted DNS on various devices. This allows people to use our secure DNS resolvers.

Also, checkout our website and the FAQ.

How to use our DNS resolvers

To use our DNS resolvers on your DoH or DoT capable client simply configure:

Protocol Address
DNS-over-HTTPS (DoH) https://dns.digitale-gesellschaft.ch/dns-query
DNS-over-TLS (DoT) dns.digitale-gesellschaft.ch if you need to specify also a Port use the DoT default Port 853

For specific configuration check out our How-Tos.

Note: We deliberately do not operate unencrypted DNS service over Port 53.

Contribution

Contributions to this project are very welcome. If you like to contribute, check-out CONTRIBUTION for more information.

Some ideas where help is appreciated:

  • Configuration how tos: Update existing guides, translate them in other languages and add new how tos.
  • Ansible config review: If you know Ansible well you may review our configuration and suggest improvements.
  • DNS config: If you know

Similar Services

You may also try the DNS resolvers of similar organisations and setups:

  • Applied Privacy operates public DNS resolvers in Austria.
  • Quad9 operates public DNS resolvers around the world.

License

This project is licensed under Creative Commons BY-SA