dnscrypt-proxy-android/README.md

2.7 KiB
Raw Blame History

DNSCrypt Proxy 2 for Android | privacy oriented

A flexible DNS proxy, with support for modern encrypted DNS protocols such as DNSCrypt v2 and DNS-over-HTTP/2.

Features

Differences between default DNSCrypt Proxy project

CONFIG. FILE: (dnscrypt-proxy.toml)

  • DNSSEC required
  • Enabled dnscrypt_ephemeral_keys (create a new, unique key for every single DNS query)
  • Enabled anonymized_dns (each resolver has 2 relay)
  • Disabled DoH
  • Disabled IPv6
  • Setrefused as response to blocked queries
  • Set DNS query max. response time from 5000 to 1500, in ms.
  • Use UncensoredDNS as fallback resolver instead CloudFlare
  • Use dnscrypt.nl (NL), dnscrypt.uk (UK), dnscrypt.eu (DK/NL), dnswarden (DE), charis (DE), scaleway-fr (FR) and suami (FR)

Installation

  1. Download latest .zip file from here or from MY TELEGRAM CHANNEL and then flash it in Magisk Manager App or in Recovery.
  2. Reboot.
  3. Open AFWall+ and set custom script:

ENTER SCRIPT:

iptables -t nat -A OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
iptables -t nat -A OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53

SHUTDOWN SCRIPT:

iptables -t nat -D OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
iptables -t nat -D OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53

Configuration (post-installing)

  • You can edit dnscrypt-proxy.toml as you wish located on /sdcard/dnscrypt-proxy/dnscrypt-proxy.toml [or /data/media/0/dnscrypt-proxy/dnscrypt-proxy.toml]
  • For more detailed configuration please refer to official documentation
  • FOR MORE SUPPORT ON A GOOD PRIVACY-ORIENTED SETUP, JOIN MY TELEGRAM CHAT

Changelog

v2.0.28

  • updated binary files to v2.0.28 | jedisct1

Full changelog

Credit