Bug 12237

Summary: Add a new CGI file to manage DNS servers
Product: IPFire Reporter: Michael Tremer <michael.tremer>
Component: ---Assignee: Stefan Schantl <stefan.schantl>
Status: CLOSED FIXED QA Contact:
Severity: - Unknown -    
Priority: - Unknown - CC: peter.mueller, stefan.schantl
Version: 2   
Hardware: unspecified   
OS: Unspecified   
Bug Depends on: 12234, 12235, 12236    
Bug Blocks: 12233, 12238, 12241    

Description Michael Tremer 2019-11-12 13:20:22 UTC
This new CGI file needs to accommodate for the following things:

* Stores all DNS servers in a CSV file in /var/ipfire/dns/servers
* DNS servers must at least ask for the following options: IP address, enabled/disabled status, remark
* DNS servers can have the following other fields: common name (required for DNS over TLS)

DNS servers should be sorted by IP address. In the file, there needs to be a mark to add the ISP servers so those won't be editable by the user.

The script needs to have a section with checkboxes to enable/disable features:

* Use the ISP's DNS servers
* Choose to force TLS or TCP (probably best to implement as dropdown)
* Safe Search (disabled by default, see #12188)
* QNAME minimisation (standard mode by default, see #11950)

Open questions at this time:

* Do we need a port field for DoT or is it okay to assume that every server is on 853?