d3cim
/
dnscrypt-proxy-android
mirror of https://github.com/d3cim/dnscrypt-proxy-android.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Hardened dnscrypt-proxy module for Android.
258 Commits 1 Branch 15 Tags 353 MiB
Shell 100%
Go to file
quindecim cc075d34a0 Update diffs and format 2019-10-24 03:31:00 -04:00
META-INF/com/google/android magisk 18.1 2019-04-23 16:46:32 +07:00
binary Update to 2.0.28 2019-10-12 21:04:11 -04:00
common updated service.sh 2019-06-13 08:58:26 +00:00
config Removed digitale-gesellschaft DNS resolver 2019-10-02 05:04:35 -04:00
.gitattributes initial release 2018-02-27 21:42:14 +07:00
.gitignore add gitignore 2018-02-27 22:08:08 +07:00
README.md Update diffs and format 2019-10-24 03:31:00 -04:00
changelog.md Update to 2.0.28 2019-10-12 20:43:07 -04:00
install.sh Update to v2.0.29 2019-10-20 18:11:17 -04:00
module.prop Update to v2.0.29 2019-10-20 18:10:08 -04:00

README.md

DNSCrypt Proxy 2 for Android | privacy oriented

A flexible DNS proxy, with support for modern encrypted DNS protocols such as DNSCrypt v2 and DNS-over-HTTP/2.

Features

Differences between default DNSCrypt Proxy project

CONFIG. FILE: (dnscrypt-proxy.toml)

  • Required DNSSEC
  • Enabled dnscrypt_ephemeral_keys (create a new, unique key for every single DNS query)
  • Enabled anonymized_dns (each resolver has 2 relay)
  • Disabled DoH
  • Disabled IPv6
  • Setrefused as response to blocked queries
  • Set DNS query max. response time from 5000 to 1500, in ms.
  • Use UncensoredDNS as fallback resolver instead CloudFlare
  • Use dnscrypt.nl (NL), dnscrypt.uk (UK), dnscrypt.eu (DK/NL), dnswarden (DE), charis (DE), scaleway-fr (FR) and suami (FR)

Installation

  1. Download latest .zip file from here or from MY TELEGRAM CHANNEL and then flash it in Magisk Manager App or in Recovery.
  2. Reboot.
  3. Open AFWall+ and set custom script:

ENTER SCRIPT:

iptables -t nat -A OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
iptables -t nat -A OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53

SHUTDOWN SCRIPT:

iptables -t nat -D OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
iptables -t nat -D OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53

Configuration (post-installing)

  • You can edit dnscrypt-proxy.toml as you wish located on /sdcard/dnscrypt-proxy/dnscrypt-proxy.toml [or /data/media/0/dnscrypt-proxy/dnscrypt-proxy.toml]
  • For more detailed configuration please refer to official documentation
  • FOR MORE SUPPORT ON A GOOD PRIVACY-ORIENTED SETUP, JOIN MY TELEGRAM CHAT

Changelog

v2.0.28

  • updated binary files to v2.0.28 | jedisct1

Full changelog

Credit