Skip to content
/ dns-thingy Public

A minimal work-in-progress content filter system based on DNS

1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

maximumstock/dns-thingy

BranchesTags

Repository files navigation

dns-thingy

Continuous Integration

A minimal work-in-progress content filter system based on DNS similar to AdguardHome.

This project serves the purpose to learn more about the Domain Name System.

This workspace project consists of the following subcrates in crates:

  • dns - a library crate for constructing and consuming DNS packets (currently only supports DNS over UDP)
  • dns-client - a minimal DNS client that wraps dns to test resolving A and CNAME records for a given domain name and optionally given upstream DNS server (default 1.1.1.1)
  • dns-block-tokio - an async stub resolver based on Tokio

How to run

You can either clone and cargo install -p dns-block-tokio and then run dns-block-tokio or use Docker (only linux/amd64 images are being built by CI at the moment) by pulling the image docker run -p 53000:53000 maximumstock2/dns-thingy:latest which runs dns-block-tokio inside the container on port 53000 and makes it available on your host machine on port 53000 as well. Optionally, use -p 53:53000 to map your local port 53 to be used, but that most likely requires root privileges.

At that point dns-block-tokio can answer DNS queries, ie. dig google.com @127.0.0.1 @53000.

TODO

  • optional caching
  • feat: add custom blocking rules
  • feat: cache records according to answer TTL
  • feat: implement more record types
  • api: request builder for DNS queries & responses
  • bench
    • every commit on master should trigger a benchmark suite that collects the typical benchmark data, posts the data to the repository/GH Pages and builds a website with the results in a graph

Request Flow

Syntax: https://mermaid.js.org/syntax/sequenceDiagram.html

sequenceDiagram
    participant user as User
    participant forwarder as dns-thingy
    participant relay as DNS Relay

    %% flow with filtering
    par flow with filtering
      user->>forwarder: dig A google.com
      activate forwarder
      forwarder->>forwarder: parse question, filter triggers
      forwarder->>forwarder: create NXDOMAIN answer with user's question ID
      forwarder->>user: return answer
      deactivate forwarder
    end

    %% flow without filtering
    par flow without filtering
      user->>forwarder: dig A google.de
      activate forwarder
      forwarder->>forwarder: parse question, filter does not trigger
      forwarder->>relay: forward original DNS question
      deactivate forwarder
      activate relay
      relay->>forwarder: DNS answer
      deactivate relay
      activate forwarder
      forwarder->>forwarder: parse answer, caching based on TTL
      forwarder->>user: return original DNS answer
      deactivate forwarder
    end
Loading

References

Some reading material that was helpful:

About

A minimal work-in-progress content filter system based on DNS

Topics

dns rust content filter

Resources

Readme
Activity

Stars

1 star

Watchers

4 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages