Add support for IP Transparent? #3306
ZeroClover
started this conversation in
Ideas
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Some IoT or TV Boxes do not respect the DNS servers provided by DHCP. While it is possible to add NAT rules to the router firewall to redirect all port 53 traffic to AdGuard Home, the client IP in the DNS query log will be the router's IP address.
Unbound supports a technique called "ip transparent" to solve this problem. This allows the router to transparently provide client IPs to Unbound with certain iptables rules and iproute2 commands. This allows the original client IP of the request to be viewed in the DNS query log even if the DNS traffic is redirected through the router.
However, IP transparent seems to be implemented only on Linux and BSD systems, and the macOS and Windows kernels do not seem to support this feature. In addition, for AdGuard Home to handle IP transparent, AGH must also be run as privileged (root).
I am not sure if this is a good idea, so I would like AGH developers and others with experience in this area to check if this is possible.
Beta Was this translation helpful? Give feedback.
All reactions