搭建一个不受污染的dns服务器

先源码搭建一个 shadowsocks ，使用ss-tunnel 命令用来直接转发dns请求

下载源码安装包 https://github.com/shadowsocks/shadowsocks-libev/releases 

tar -zxf shadowsocks-libev-2.5.6.tar.gz
 cd shadowsocks-libev-2.5.6
 yum install gcc autoconf libtool automake make zlib-devel openssl-devel asciidoc xmlto
  ./configure  && make && make install
  ./configure  && make && make install
  vim /etc/shadowsocks.json
{
"server":"47********95",
"server_port":1***8,
"local_address": "127.0.0.1",
"local_port":1080,
"password":"s**********c0M",
"timeout":600,
"method":"aes-256-cfb",
"fast_open": false,
"workers": 1
}
 

shadowsocks 服务器搭建过程 参考文章： http://www.cnblogs.com/weifeng1463/p/6759682.html

 

后台启动服务：

 

nohup /usr/local/bin/ss-tunnel -c /etc/shadowsocks.json -l 3210 -L 8.8.8.8:53 -u &

 

查看进程是否启用 ：

 

[root@weifeng05 ~]# ps aux|grep ss

root 18641 0.0 0.0 20956 1608 pts/0 S 06:06 0:00 /usr/local/bin/ss-tunnel -c /etc/shadowsocks.json -l 3210 -L 8.8.8.8:53 -u

配置 dnsmasq  做 dns server 

1,yum 安装

1	yum  install  dnsmasq -y

2,dnsmasq配置

[root@weifeng05 ~]# cat /etc/dnsmasq.conf |grep -v "^#"|grep -v "^$"
resolv-file=/etc/resolv.dnsmasq.conf
listen-address=127.0.0.1,192.168.18.226
cache-size=2048
log-async=5
bogus-nxdomain=223.5.5.5
log-queries
log-facility=/tmp/dnsmasq.log
log-dhcp
conf-dir=/etc/dnsmasq.d

[root@weifeng05 ~]# cat /etc/dnsmasq.conf |grep -v "^#"|grep -v "^$"
resolv-file=/etc/resolv.dnsmasq.conf
listen-address=127.0.0.1,192.168.18.226
cache-size=2048
log-async=5
bogus-nxdomain=223.5.5.5
log-queries
log-facility=/tmp/dnsmasq.log
log-dhcp
conf-dir=/etc/dnsmasq.d

启动dnsmasq 服务

systemctl start dnsmasq 

systemctl enable dnsmasq 

[root@weifeng05 ~]# ps aux|grep dnsmasq
nobody 18803 0.0 0.1 17912 3592 ? Ss 06:24 0:00 /usr/sbin/dnsmasq -k

查看解析的效果 

[root@master1 ~]# dig @192.168.18.226 www.youtube.com

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7 <<>> @192.168.18.226 www.youtube.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35734
;; flags: qr rd ra; QUERY: 1, ANSWER: 8, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www.youtube.com.        IN    A

;; ANSWER SECTION:
www.youtube.com.    21529    IN    CNAME    youtube-ui.l.google.com.
youtube-ui.l.google.com. 829    IN    CNAME    youtube-ui-china.l.google.com.
youtube-ui-china.l.google.com. 109 IN    A    74.125.23.102
youtube-ui-china.l.google.com. 109 IN    A    74.125.23.113
youtube-ui-china.l.google.com. 109 IN    A    74.125.23.100
youtube-ui-china.l.google.com. 109 IN    A    74.125.23.101
youtube-ui-china.l.google.com. 109 IN    A    74.125.23.139
youtube-ui-china.l.google.com. 109 IN    A    74.125.23.138

;; Query time: 1 msec
;; SERVER: 192.168.18.226#53(192.168.18.226)
;; WHEN: Fri May 18 21:40:34 EDT 2018
;; MSG SIZE  rcvd: 220