Bug 12237

Summary:	Add a new CGI file to manage DNS servers
Product:	IPFire	Reporter:	Michael Tremer <michael.tremer>
Component:	---	Assignee:	Stefan Schantl <stefan.schantl>
Status:	CLOSED FIXED	QA Contact:
Severity:	- Unknown -
Priority:	- Unknown -	CC:	peter.mueller, stefan.schantl
Version:	2
Hardware:	unspecified
OS:	Unspecified
Bug Depends on:	12234, 12235, 12236
Bug Blocks:	12233, 12238, 12241

Description Michael Tremer 2019-11-12 13:20:22 UTC

This new CGI file needs to accommodate for the following things:

* Stores all DNS servers in a CSV file in /var/ipfire/dns/servers
* DNS servers must at least ask for the following options: IP address, enabled/disabled status, remark
* DNS servers can have the following other fields: common name (required for DNS over TLS)

DNS servers should be sorted by IP address. In the file, there needs to be a mark to add the ISP servers so those won't be editable by the user.

The script needs to have a section with checkboxes to enable/disable features:

* Use the ISP's DNS servers
* Choose to force TLS or TCP (probably best to implement as dropdown)
* Safe Search (disabled by default, see #12188)
* QNAME minimisation (standard mode by default, see #11950)

Open questions at this time:

* Do we need a port field for DoT or is it okay to assume that every server is on 853?

Comment 1 Stefan Schantl 2020-01-08 08:39:53 UTC

https://git.ipfire.org/?p=people/stevee/ipfire-2.x.git;a=commit;h=24d7c5ef6bea7b6521d309757d2fa0461935f89d

Comment 2 Peter Müller 2020-03-07 09:26:43 UTC

https://blog.ipfire.org/post/ipfire-2-25-core-update-141-release