Skip to content

Instantly share code, notes, and snippets.

@k3karthic

k3karthic/notes.md

Last active October 15, 2025 13:34
Show Gist options
  • Save k3karthic/6081c8fef7bf663fb019575bc886051b to your computer and use it in GitHub Desktop.
Save k3karthic/6081c8fef7bf663fb019575bc886051b to your computer and use it in GitHub Desktop.
Download ZIP
Fedora Silverblue - DNS
Raw
notes.md

References:

Step 1: Create the folder /etc/systemd/resolved.conf.d

Step 2: Create a file /etc/systemd/resolved.conf.d/dnssec.conf with the following content

[Resolve]
DNSSEC=true

Step 3: Create a file /etc/systemd/resolved.conf.d/dns_over_tls.conf with the following content

[Resolve]
DNS=1.1.1.1#cloudflare-dns.com 8.8.8.8#dns.google 9.9.9.9#dns.quad9.net
DNSOverTLS=yes
Domains=~.

Step 4: Create a file /etc/systemd/resolved.conf.d/mdns.conf with the following content

[Resolve]
MulticastDNS=resolve

Step 5: Reboot the systemd-resolved service.

Step 6: Verify using the resolvectl tool.

$ resolvectl query google.com
google.com: 2404:6800:4007:83f::200e           -- link: wlp3s0
            142.250.183.174                    -- link: wlp3s0

-- Information acquired via protocol DNS in 35.3ms.
-- Data is authenticated: no; Data was acquired via local or encrypted transport: yes
-- Data from: network
$ resolvectl query go.dnscheck.tools
go.dnscheck.tools: 116.203.95.251              -- link: wlp3s0
                   2a01:4f8:1c1e:84c3::1       -- link: wlp3s0
                   (test.dnscheck.tools)

-- Information acquired via protocol DNS in 900.2ms.
-- Data is authenticated: yes; Data was acquired via local or encrypted transport: yes
-- Data from: network
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment