From 1e9bc6bed9b9ab33238f42706c06dc14d42394a9 Mon Sep 17 00:00:00 2001 From: Nick Peng Date: Sun, 26 Mar 2023 22:47:03 +0800 Subject: [PATCH] doc: update document --- docs/config/block-ipv6.md | 16 +++++++++++----- docs/config/server-config.md | 23 +++++++++++++++++++++++ docs/configuration.md | 6 +++--- en/docs/config/ad-block.md | 4 ++-- en/docs/config/block-ipv6.md | 16 +++++++++++----- en/docs/config/server-config.md | 23 +++++++++++++++++++++++ en/docs/configuration.md | 6 +++--- 7 files changed, 76 insertions(+), 18 deletions(-) diff --git a/docs/config/block-ipv6.md b/docs/config/block-ipv6.md index 8980b5b..8b363f8 100644 --- a/docs/config/block-ipv6.md +++ b/docs/config/block-ipv6.md @@ -19,15 +19,21 @@ hide: address /example.com/#6 ``` +1. 方法三:如需禁用特定查询端口的IPV6查询(比如第二DNS),可以配置如下 + + ```shell + bind :53 -force-aaaa-soa + ``` + ## 其他查询请求的禁用 -smartdns支持对其他查询请求的禁用,对应参数为force-qtype-SOA +1. smartdns支持对其他查询请求的禁用,对应参数为force-qtype-SOA -```shell -force-qtype-SOA 28 -``` + ```shell + force-qtype-SOA 28 + ``` -force-qtype-SOA参数后为DNS的类型。具体的类型,可以查询[IANA说明](https://www.iana.org/assignments/dns-parameters/dns-parameters.xhtml#dns-parameters-4) + force-qtype-SOA参数后为DNS的类型。具体的类型,可以查询[IANA说明](https://www.iana.org/assignments/dns-parameters/dns-parameters.xhtml#dns-parameters-4) ## 附加说明 diff --git a/docs/config/server-config.md b/docs/config/server-config.md index e20e46d..f154621 100644 --- a/docs/config/server-config.md +++ b/docs/config/server-config.md @@ -73,3 +73,26 @@ smartdns目前提供了UDP, TCP, DOT三种服务端模式。 ```shell tcp-idle-time 120 ``` + +## 第二DNS服务 + +bind-*参数除了支持基本的启用服务外,还支持更多的附加特性,可以作为特殊因为的第二DNS服务器使用。对应的可以启用的功能为: + +1. 配置样例: + + ```shell + bind :53 -no-rule-addr -no-speed-check -no-cache + ``` + +1. 参数介绍: + + |参数|功能| + |---|---| + |-no-rule-addr|跳过 address 规则| + |-no-rule-nameserver|跳过 Nameserver 规则| + |-no-rule-ipset|跳过 ipset 和 nftset 规则| + |-no-rule-soa|跳过 SOA(#) 规则| + |-no-dualstack-selection|停用双栈测速| + |-no-speed-check|停用测速| + |-no-cache|停止缓存| + |-force-aaaa-soa|禁用IPV6查询| diff --git a/docs/configuration.md b/docs/configuration.md index a717390..30a3dbf 100644 --- a/docs/configuration.md +++ b/docs/configuration.md @@ -13,9 +13,9 @@ hide: | 键名 | 功能说明 | 默认值 | 可用值/要求 | 举例 | | :--- | :--- | :--- | :--- | :--- | | server-name | DNS 服务器名称 | 操作系统主机名 / smartdns | 符合主机名规格的字符串 | server-name smartdns | -| bind | DNS 监听端口号 | [::]:53 | 可绑定多个端口。
IP:PORT@DEVICE: 服务器 IP:端口号@设备名
[-group]: 请求时使用的 DNS 服务器组
[-no-rule-addr]:跳过 address 规则
[-no-rule-nameserver]:跳过 Nameserver 规则
[-no-rule-ipset]:跳过 ipset 和 nftset 规则
[-no-rule-soa]:跳过 SOA(#) 规则
[-no-dualstack-selection]:停用双栈测速
[-no-speed-check]:停用测速
[-no-cache]:停止缓存 | bind :53@eth0 | -| bind-tcp | DNS TCP 监听端口号 | [::]:53 | 可绑定多个端口。
IP:PORT@DEVICE: 服务器 IP:端口号@设备名
[-group]: 请求时使用的 DNS 服务器组
[-no-rule-addr]:跳过 address 规则
[-no-rule-nameserver]:跳过 nameserver 规则
[-no-rule-ipset]:跳过 ipset 和 nftset 规则。
[-no-rule-soa]:跳过 SOA(#) 规则
[-no-dualstack-selection]:停用双栈测速
[-no-speed-check]:停用测速
[-no-cache]:停止缓存 | bind-tcp :53 | -| bind-tls | DNS Over TLS 监听端口号 | [::]:853 | 可绑定多个端口。
IP:PORT@DEVICE: 服务器 IP:端口号@设备名
[-group]: 请求时使用的 DNS 服务器组
[-no-rule-addr]:跳过 address 规则
[-no-rule-nameserver]:跳过 nameserver 规则
[-no-rule-ipset]:跳过 ipset 和 nftset 规则。
[-no-rule-soa]:跳过 SOA(#) 规则
[-no-dualstack-selection]:停用双栈测速
[-no-speed-check]:停用测速
[-no-cache]:停止缓存 | bind-tls :853 | +| bind | DNS 监听端口号 | [::]:53 | 可绑定多个端口。
IP:PORT@DEVICE: 服务器 IP:端口号@设备名
[-group]: 请求时使用的 DNS 服务器组
[-no-rule-addr]:跳过 address 规则
[-no-rule-nameserver]:跳过 Nameserver 规则
[-no-rule-ipset]:跳过 ipset 和 nftset 规则
[-no-rule-soa]:跳过 SOA(#) 规则
[-no-dualstack-selection]:停用双栈测速
[-no-speed-check]:停用测速
[-no-cache]:停止缓存
[-force-aaaa-soa]: 禁用IPV6查询 | bind :53@eth0 | +| bind-tcp | DNS TCP 监听端口号 | [::]:53 | 可绑定多个端口。
IP:PORT@DEVICE: 服务器 IP:端口号@设备名
[-group]: 请求时使用的 DNS 服务器组
[-no-rule-addr]:跳过 address 规则
[-no-rule-nameserver]:跳过 nameserver 规则
[-no-rule-ipset]:跳过 ipset 和 nftset 规则。
[-no-rule-soa]:跳过 SOA(#) 规则
[-no-dualstack-selection]:停用双栈测速
[-no-speed-check]:停用测速
[-no-cache]:停止缓存
[-force-aaaa-soa]: 禁用IPV6查询 | bind-tcp :53 | +| bind-tls | DNS Over TLS 监听端口号 | [::]:853 | 可绑定多个端口。
IP:PORT@DEVICE: 服务器 IP:端口号@设备名
[-group]: 请求时使用的 DNS 服务器组
[-no-rule-addr]:跳过 address 规则
[-no-rule-nameserver]:跳过 nameserver 规则
[-no-rule-ipset]:跳过 ipset 和 nftset 规则。
[-no-rule-soa]:跳过 SOA(#) 规则
[-no-dualstack-selection]:停用双栈测速
[-no-speed-check]:停用测速
[-no-cache]:停止缓存
[-force-aaaa-soa]: 禁用IPV6查询 | bind-tls :853 | | bind-cert-file | SSL证书文件路径 | smartdns-cert.pem | 合法路径字符串 | bind-cert-file cert.pem | | bind-cert-key-file | SSL证书KEY文件路径 | smartdns-key.pem | 合法路径字符串 | bind-cert-key-file key.pem | | bind-cert-key-pass | SSL证书KEY文件密码 | 无 | 字符串 | bind-cert-key-pass password | diff --git a/en/docs/config/ad-block.md b/en/docs/config/ad-block.md index 9dd8ba9..2779389 100644 --- a/en/docs/config/ad-block.md +++ b/en/docs/config/ad-block.md @@ -63,7 +63,7 @@ The community provides regularly updated ad-blocking list files for SmartDNS. Yo For non-SmartDNS data, simple shell commands can convert it. -### `hosts` Format +### hosts Format The following command converts the `/path/to/hosts/file` file (replace the path with your actual file) to the format supported by SmartDNS: @@ -71,7 +71,7 @@ The following command converts the `/path/to/hosts/file` file (replace the path cat /path/to/hosts/file | grep -v "^#" | awk '{print "address /"$2"/#"}' > anti-ad-smartdns.conf ``` -### `dnsmasq` Format +### dnsmasq Format The dnsmasq format is similar to SmartDNS, but not compatible. You can convert it using the following command: diff --git a/en/docs/config/block-ipv6.md b/en/docs/config/block-ipv6.md index 7748bcc..41cc5b0 100644 --- a/en/docs/config/block-ipv6.md +++ b/en/docs/config/block-ipv6.md @@ -19,15 +19,21 @@ Currently, IPV6 has entered thousands of households. However, in some cases, IPV address /example.com/#6 ``` +1. Method 3: If you need to disable IPV6 queries for a specific query port (such as the second DNS), you can configure it as follows: + + ```shell + bind :53 -force-aaaa-soa + ``` + ## Disable Other Query Requests -Smartdns supports disabling other query requests, and the corresponding parameter is `force-qtype-SOA`. +1. Smartdns supports disabling other query requests, and the corresponding parameter is `force-qtype-SOA`. -```shell -force-qtype-SOA 28 -``` + ```shell + force-qtype-SOA 28 + ``` -After force-qtype-SOA parameter is the type of DNS. The specific types can be queried from the IANA Explanation. + After force-qtype-SOA parameter is the type of DNS. The specific types can be queried from the IANA Explanation. ## Additional Notes diff --git a/en/docs/config/server-config.md b/en/docs/config/server-config.md index c03dbdb..cf98d2e 100644 --- a/en/docs/config/server-config.md +++ b/en/docs/config/server-config.md @@ -72,3 +72,26 @@ Currently, smartdns provides three server modes: UDP, TCP, and DOT. ```shell tcp-idle-time 120 ``` + +## Second DNS Server + +In addition to supporting basic service, the `bind-*` parameter also supports more additional features, which can be used as a special second DNS server for specific needs. The corresponding functions that can be enabled are: + +1. Configuration example: + + ```shell + bind :53 -no-rule-addr -no-speed-check -no-cache + ``` + +1. Parameter introduction: + + | Parameter | Function | + | --------- | ---------------------------------------- | + | `-no-rule-addr` | Skip address rules | + | `-no-rule-nameserver` | Skip Nameserver rules | + | `-no-rule-ipset` | Skip ipset and nftset rules | + | `-no-rule-soa` | Skip SOA(#) rules | + | `-no-dualstack-selection` | Disable dual-stack speed test | + | `-no-speed-check` | Disable speed test | + | `-no-cache` | Stop caching | + | `-force-aaaa-soa` | Disable IPV6 queries | diff --git a/en/docs/configuration.md b/en/docs/configuration.md index 073bff5..8d803ac 100644 --- a/en/docs/configuration.md +++ b/en/docs/configuration.md @@ -9,9 +9,9 @@ hide: |parameter|Parameter function|Default value|Value type|Example| |--|--|--|--|--| |server-name|DNS name|host name/smartdns|any string like hostname|server-name smartdns -|bind|DNS listening port number|[::]:53|Support binding multiple ports
`IP:PORT@DEVICE`: server IP, port number, and device.
`[-group]`: The DNS server group used when requesting.
`[-no-rule-addr]`: Skip the address rule.
`[-no-rule-nameserver]`: Skip the Nameserver rule.
`[-no-rule-ipset]`: Skip the Ipset or nftset rules.
`[-no-rule-soa]`: Skip address SOA(#) rules.
`[-no-dualstack-selection]`: Disable dualstack ip selection.
`[-no-speed-check]`: Disable speed measurement.
`[-no-cache]`: stop caching |bind :53@eth0 -|bind-tcp|TCP mode DNS listening port number|[::]:53|Support binding multiple ports
`IP:PORT@DEVICE`: server IP, port number and device.
`[-group]`: The DNS server group used when requesting.
`[-no-rule-addr]`: Skip the address rule.
`[-no-rule-nameserver]`: Skip the Nameserver rule.
`[-no-rule-ipset]`: Skip the ipset or nftset rules.
`[-no-rule-soa]`: Skip address SOA(#) rules.
`[-no-dualstack-selection]`: Disable dualstack ip selection.
`[-no-speed-check]`: Disable speed measurement.
`[-no-cache]`: stop caching |bind-tcp :53 -|bind-tls|DOT mode DNS listening port number|[::]:853|Support binding multiple ports
`IP:PORT@DEVICE`: server IP, port number and device.
`[-group]`: The DNS server group used when requesting.
`[-no-rule-addr]`: Skip the address rule.
`[-no-rule-nameserver]`: Skip the Nameserver rule.
`[-no-rule-ipset]`: Skip the ipset or nftset rules.
`[-no-rule-soa]`: Skip address SOA(#) rules.
`[-no-dualstack-selection]`: Disable dualstack ip selection.
`[-no-speed-check]`: Disable speed measurement.
`[-no-cache]`: stop caching |bind-tcp :853 +|bind|DNS listening port number|[::]:53|Support binding multiple ports
`IP:PORT@DEVICE`: server IP, port number, and device.
`[-group]`: The DNS server group used when requesting.
`[-no-rule-addr]`: Skip the address rule.
`[-no-rule-nameserver]`: Skip the Nameserver rule.
`[-no-rule-ipset]`: Skip the Ipset or nftset rules.
`[-no-rule-soa]`: Skip address SOA(#) rules.
`[-no-dualstack-selection]`: Disable dualstack ip selection.
`[-no-speed-check]`: Disable speed measurement.
`[-no-cache]`: stop caching
[-force-aaaa-soa]: force AAAA query return SOA |bind :53@eth0 +|bind-tcp|TCP mode DNS listening port number|[::]:53|Support binding multiple ports
`IP:PORT@DEVICE`: server IP, port number and device.
`[-group]`: The DNS server group used when requesting.
`[-no-rule-addr]`: Skip the address rule.
`[-no-rule-nameserver]`: Skip the Nameserver rule.
`[-no-rule-ipset]`: Skip the ipset or nftset rules.
`[-no-rule-soa]`: Skip address SOA(#) rules.
`[-no-dualstack-selection]`: Disable dualstack ip selection.
`[-no-speed-check]`: Disable speed measurement.
`[-no-cache]`: stop caching
[-force-aaaa-soa]: force AAAA query return SOA |bind-tcp :53 +|bind-tls|DOT mode DNS listening port number|[::]:853|Support binding multiple ports
`IP:PORT@DEVICE`: server IP, port number and device.
`[-group]`: The DNS server group used when requesting.
`[-no-rule-addr]`: Skip the address rule.
`[-no-rule-nameserver]`: Skip the Nameserver rule.
`[-no-rule-ipset]`: Skip the ipset or nftset rules.
`[-no-rule-soa]`: Skip address SOA(#) rules.
`[-no-dualstack-selection]`: Disable dualstack ip selection.
`[-no-speed-check]`: Disable speed measurement.
`[-no-cache]`: stop caching
[-force-aaaa-soa]: force AAAA query return SOA |bind-tcp :853 |bind-cert-file|SSL Certificate file path|smartdns-cert.pem|path| bind-cert-file cert.pem | |bind-cert-key-file|SSL Certificate key file path|none|smartdns-key.pem| bind-cert-key-file key.pem | |bind-cert-key-pass|SSL Certificate key file password|none|string| bind-cert-key-pass password |