On 19.08.24 06:25, Corey Minyard wrote: > I have dnsmasq mostly working, but I'm having one big problem. It seems > that requests received from UDP are only forwarded to UDP, they cannot > be forwarded to TCP. I'm running DNS over TLS on the server, so I have > to be able to do TCP, but requests come in from clients on UDP and TCP. > What can I do about this?
DNS would communicate on port 53 UDP by default. It would only switch to port 53 TCP if messages would exceed a size threshold (512 bytes), and in some edge cases like zone transfers. DNS-over-TLS (DoT), on the other hand, would communicate via port 853 TCP. It's not entirely clear from your description, but if your goal would be to have dnsmasq forward DNS requests to a DoT server, then dnsmasq can't do that: It fully supports DNS (port 53 UDP/TCP), but does not support DoT (port 853 TCP) at all. You would need a DoT proxy between dnsmasq and your DoT server for that use case. Kind regards, Buck _______________________________________________ Dnsmasq-discuss mailing list Dnsmasq-discuss@lists.thekelleys.org.uk https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss
