-
Notifications
You must be signed in to change notification settings - Fork 29
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enhancement picking fastest proxy in the list -not only closest #65
Comments
We'll try to do something, but just be aware that what everybody measures is the access time from your computer to the server. How long it takes the server to bring in the response varies widely from server to server. So, you can have a 50ms server access time, and the server will take 2 more seconds to bring in the response. In FDNS at startup we test the access time for two random servers and pick the fastest one. It usually stays under 80ms. Then, if you run "fdns --monitor", we keep a moving average of the last few responses, and this is usually under 1 second. You look on the first line in the monitor:
The 647.53 ms is your average number. 170 is how often we send a keepalive request to keep the TLS connection going. The fastest server ever is probably Cloudflare. They do it by synchronizing DNS caches between various geographical locations in their network. |
Can I run fdns inside firejail? And /etc/resolve.conf to namesever 127.0.0.1:with different port as standard port? |
https://github.com/netblue30/firejail/blob/master/etc/profile-a-l/fdns.profile If you use systemd, it is suggested to use the systemd service.
The format of For IPv4 IDC as you have a complete class A subnet. However for IPv6 you have only |
I cant run fdns without root user, because port-range is under 1024. How I can run fdns as different user than root? |
You can't. fdns requires root privileges in order to sandbox it's resolver processes. Lines 407 to 410 in dd69da4
So you need to become root first, see #51 and https://github.com/rusty-snake/fdns4users. |
could you remove this id 0 if and else? because dnscrypt-proxy runs well in firejail with non root user when your port range is above 1024. You can redirect port 53 to another port like i do with iptables This is my workaround to avoid root user with dnscrypt: could you remove this ID 0 if and else too? thanks and best regards |
Not in my case from Europe, for me is libredns fastest response lower responserate than Cloudflare doh. |
This is not dnscrypt-proxy.
I think we should add something like a
Removing the check that displays a error message does not make things work because
|
Dnscrypt do on every start response latancy check, and pick the fastest one in the serverlist - not closest one.
Could you bring this function inside fdns?
Thanks and
Best regards
The text was updated successfully, but these errors were encountered: