BIND and DNSCrypt on Win7

Comments

2 comments

  • Avatar
    rotblitz

    Here you go for latest versions: http://dnscrypt.org/

    And yes, you can use the dnscrypt-proxy also with an own DNS server like BIND.  Your BIND forwarding is then to the listener address of DNSCrypt, and DNSCrypt forwards to OpenDNS.  All of this is configurable.

  • Avatar
    hikari

    Cool it worked!

     

    I installed DNSCrypt on --local-address=127.0.0.1:40 and set forwarders { 127.0.0.1 port 40; }; on BIND.

     

    This way, BIND can only resolve a name by forwarding to 127.0.0.1:40, no way to leak, and it itself remains on port 53.

Please sign in to leave a comment.