2.7 KiB
2.7 KiB
DNSCrypt Proxy 2 for Android | privacy oriented
A flexible DNS proxy, with support for modern encrypted DNS protocols such as DNSCrypt v2 and DNS-over-HTTP/2.
Features
- arm, arm64, x86 and x86_64 are supported.
- ipv4 and ipv6 are supported.
- All binary files are downloaded from https://github.com/jedisct1/dnscrypt-proxy/releases
Differences between default DNSCrypt Proxy project
dnscrypt-proxy.toml
- ⛔️ Disable DoH
- ⛔️ Disable IPv6
- ⛔️
refusedresponse for blocked queries - ✅ Require DNSSEC
- ✅ Ephemeral keys (create a new, unique key for every single DNS query)
- ℹ️ Set DNS query max. response time from
2500to1500, in ms. - ℹ️ Use UncensoredDNS as fallback resolver (address used to initializing connection to the other resolvers)
- ℹ️ Use
dnscrypt.nl(NL),dnscrypt.uk(UK),dnscrypt.eu(DK/NL),dnswarden(DE),charis(DE) andsuami(FR)
Installation
- Download latest
.zipfile from here or from MY TELEGRAM CHANNEL and then flash it in Magisk Manager App or in Recovery. - Reboot.
- Open AFWall+ and set custom script:
ENTER SCRIPT:
iptables -t nat -A OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
iptables -t nat -A OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
SHUTDOWN SCRIPT:
iptables -t nat -D OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
iptables -t nat -D OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
Configuration (post-installing)
- You can edit
dnscrypt-proxy.tomlas you wish located on/sdcard/dnscrypt-proxy/dnscrypt-proxy.toml[or /data/media/0/dnscrypt-proxy/dnscrypt-proxy.toml] - For more detailed configuration please refer to official documentation
- FOR MORE SUPPORT ON A GOOD PRIVACY-ORIENTED SETUP, JOIN MY TELEGRAM CHAT
Changelog
v2.0.27
- updated binary & configuration files to 2.0.27 | jedisct1
- uploaded privacy config to 2.0.27 | quindecim
Credit
- DNSCrypt-Proxy2 upstream | jedisct1
- bluemeda for the original module
- All contributor