OpenWrt Forum Archive

Topic: DNSCrypt setup — securing DNS communications

The content of this topic has been archived between 29 Mar 2018 and 5 May 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

Post #26
Black Roland
19 Jun 2012, 15:29
axishero wrote:
Black Roland wrote:

axishero, 0.9.3 version with standard init.d/dnscrypt-proxy script? I think 2053 port is already in use (# netstat  -a -n for check), or permissions denied.

I am using the init script from your #1 post.
Dnscrypt can't be up at boot.But it can be up by ssh into and '/etc/init.d/dnscrypt-proxy start' after boot.For this case,it's running on tplink wr1041n which has only one switch named eth0 divided into eth0.1 and eth0.2 as wan and lan.

Unfortunately, I don't know reason of this problem, but you can try to change LISTEN_ADDR from 127.0.0.1 to 0.0.0.0 .
Also you can try to change START from 50 to 95 in init-script:

# grep START /etc/init.d/dnscrypt-proxy
START=50
# /etc/init.d/dnscrypt-proxy disable
# vi /etc/init.d/dnscrypt-proxy
# grep START /etc/init.d/dnscrypt-proxy
START=95
#/etc/init.d/dnscrypt-proxy enable

Post #27
buffl
19 Jun 2012, 20:05
Black Roland wrote:

buffl, It works normal with error? O_o

buffl wrote:

[ERROR] Unable to bind: 127.0.0.1:2053 (TCP)

is included when you reboot on the 5s, and then everything.

Post #28
Black Roland
20 Jun 2012, 12:17

Updated to 0.10-1 (Changelog)
On ar71xx run:

opkg update
opkg upgrade dnscrypt-proxy

For other architectures source Makefile is available

Post #29
Black Roland
25 Jun 2012, 09:55

Updated to 0.10.1-1

Post #30
faithful
8 Jul 2012, 14:29

Hello, I've builded dnscrypt-proxy for the latest OpenWrt code (trunk/attitude adjustment) and it was a success! Thanks for the contribution. What about a commit in the OpenWrt pristine source tree?

Post #31
Black Roland
10 Jul 2012, 16:32
faithful wrote:

What about a commit in the OpenWrt pristine source tree?

I will add a ticket on https://dev.openwrt.org/ for next stable version of dnscrypt-proxy

Post #32
gxfclql
15 Jul 2012, 16:06

[ERROR] No useable certificates found
[INFO] Refetching server certificates
[INFO] Server certificate #1323392947 received
[INFO] This certificate has not been acble certificates found
[INFO] Refetching server certificates
[INFO] Server certificate #1323392947 received
[INFO] This certificate has not been activated yet
[ERROR] No useable certificates found


3.3.8 kernel

Post #33
Black Roland
15 Jul 2012, 16:19

gxfclql, Your Internet connection working fine? Try to ping 208.67.220.220 server.

Post #34
ryzhov_al
15 Jul 2012, 19:39
gxfclql wrote:

[INFO] This certificate has not been activated yet

Please, check system date/time.

(Last edited by ryzhov_al on 15 Jul 2012, 19:39)

Post #35
Black Roland
17 Jul 2012, 09:34

Updated to 0.11-2

Post #36
Black Roland
18 Jul 2012, 07:15

Updated to 0.12-1
http://fuuu.us/46.png

Post #37
ryzhov_al
18 Jul 2012, 08:00

1.0 is out! ^))
Just wait a few days before release will be polished.

(Last edited by ryzhov_al on 18 Jul 2012, 08:00)

Post #38
timo
22 Jul 2012, 15:21

Can I follow these instructions on Gargoyle?  Not sure if Gargoyle has opkg, can I manually copy the binary file in?

Post #39
Black Roland
23 Jul 2012, 14:19

Update to 1.0

Post #40
buffl
23 Jul 2012, 16:08

updated to 1.0

[INFO] Generating a new key pair
[ERROR] Unable to bind (UDP) [Address already in use]

where to dig?

Post #43
Black Roland
25 Jul 2012, 14:17

70d7a4f46, Just attached to ticket smile

Post #44
70d7a4f46
25 Jul 2012, 23:01

Great, thank you!

Post #45
Black Roland
1 Aug 2012, 05:58

New 1.0.1 version have changes only for Windows and Android (Changelog).