[Dnsmasq-discuss] Feature: DNS over TLS support

Mathew Keith rommy at appus.org
Mon Jul 6 22:34:13 BST 2020


Hello,

I'd like to request support for DNS over TLS within dnsmasq. Information
can be found here:
https://dnsprivacy.org/wiki/display/DP - DNS Privacy project
https://tools.ietf.org/html/rfc7858 - Specification for DNS over Transport
Layer Security (TLS)

I checked if there was already such a request but I only found reference to
someone pointing dnsmasq to Stubby. While configuring dnsmasq to relay to a
dns server which supports dns over tls is certainly possible it would seem
to defeat the purpose of dnsmasq.

While implementing this it would be ideal to allow for a hostname to be
provided and validated against the certificate name or subject alternate
name provided by the forwarder.

Thank you in advance for your time and consideration!
-- 
Take care,
Matt
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20200706/bb71fb8d/attachment.html>


More information about the Dnsmasq-discuss mailing list