mirrors/dockerfiles_vimagick
2
0
Fork 0
mirror of https://github.com/vimagick/dockerfiles.git synced 2025-12-21 13:23:02 +01:00
Code Issues Projects Releases Wiki Activity

update

Browse Source
This commit is contained in:
kev
2015-05-30 22:22:28 +08:00
parent 6c99e1abca
commit df3647e380
3 changed files with 33 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
dnscrypt/README.md
View File

@@ -6,13 +6,17 @@ dnscrypt
- `dnscrypt-wrapper` - A server-side dnscrypt proxy. - `dnscrypt-wrapper` - A server-side dnscrypt proxy.
- `dnscrypt-proxy` - A protocol for securing communications between a client and a DNS resolver. - `dnscrypt-proxy` - A protocol for securing communications between a client and a DNS resolver.
## Fig ## Config
wrapper: wrapper:
image: vimagick/dnscrypt-wrapper image: vimagick/dnscrypt-wrapper
ports: ports:
- "443:443/udp" - "443:443/udp"
- "443:443/tcp" - "443:443/tcp"
environment:
- LISTEN_ADDR=0.0.0.0:443
- RESOLVER_ADDR=8.8.8.8:53
- PROVIDER_NAME=2.dnscrypt-cert.datageek.info
restart: always restart: always
proxy: proxy:
@@ -20,17 +24,31 @@ dnscrypt
ports: ports:
- "53:53/udp" - "53:53/udp"
- "53:53/tcp" - "53:53/tcp"
environment:
- LISTEN_ADDR=0.0.0.0:443
- RESOLVER_ADDR=1.2.3.4:443
- PROVIDER_NAME=2.dnscrypt-cert.datageek.info
- PROVIDER_KEY=4C29:9CEB:CF8D:4612:48A8:B2F2:3B6F:A046:EBF5:2F2B:6433:27C6:5F3A:88F5:495E:3075
restart: always restart: always
## Run > `RESOLVER_ADDR` is server public ip address.
fig up -d ## Server
## Test $ cd dnscrypt
$ fig up -d wrapper
$ docker exec -it dnscrypt_wrapper_1 cat provider_keypair.txt
Public key fingerprint: 4C29:9CEB:CF8D:4612:48A8:B2F2:3B6F:A046:EBF5:2F2B:6433:27C6:5F3A:88F5:495E:3075
# UDP ## Client
dig @127.0.0.1 www.google.com
# TCP $ cd dnscrypt
dig @127.0.0.1 www.youtube.com +tcp $ fig up -d proxy
$ dig @127.0.0.1 www.google.com
$ dig @127.0.0.1 www.youtube.com +tcp
## Note
You'd better to use `vimagick/dnscrypt-proxy` as backend of `dnsmasq` or `pdnsd` for better performance.
Please read [this](https://github.com/Cofyc/dnscrypt-wrapper) to re-generate keys!

8
dnscrypt/proxy/Dockerfile
View File

@@ -31,8 +31,8 @@ ENV PROVIDER_KEY B735:1140:206F:225D:3E2B:D822:D7FD:691E:A1C3:3CC8:D666:8D0C:BE0
EXPOSE 53/tcp 53/udp EXPOSE 53/tcp 53/udp
CMD dnscrypt-proxy --local-address $LISTEN_ADDR \ CMD dnscrypt-proxy --local-address=$LISTEN_ADDR \
--provider-name $PROVIDER_NAME \ --provider-name=$PROVIDER_NAME \
--provider-key $PROVIDER_KEY \ --provider-key=$PROVIDER_KEY \
--resolver-address $RESOLVER_ADDR --resolver-address=$RESOLVER_ADDR

5
dnscrypt/wrapper/Dockerfile
View File

@@ -56,8 +56,9 @@ EXPOSE 443/tcp 443/udp
CMD dnscrypt-wrapper --crypt-publickey-file=crypt_public.key \ CMD dnscrypt-wrapper --crypt-publickey-file=crypt_public.key \
--crypt-secretkey-file=crypt_secret.key \ --crypt-secretkey-file=crypt_secret.key \
--listen-address ${LISTEN_ADDR} \ --listen-address=${LISTEN_ADDR} \
--provider-cert-file=dnscrypt.cert \ --provider-cert-file=dnscrypt.cert \
--provider-name=${PROVIDER_NAME} \ --provider-name=${PROVIDER_NAME} \
--resolver-address ${RESOLVER_ADDR} --resolver-address=${RESOLVER_ADDR} \
--verbose