Why resolved: single lookup mechanism, cache, dynamic interface and server lists, split dns, dbus api.
How to configure resolved: search domains, routing domains.
State introspection: resolvectl dns, resolvectl domain, etc.
Integration of NetworkManager and resolved.
- VPN trusted more than local network
- company VPN that should only handle company traffic
My primary goal is to explain how domain routing works, i.e. how resolved decides which servers to query for a given name.
I don’t want to talk LLMNR, mDNS, DNSSEC, or DoT in the first article. Maybe that’d be a good subject for a second article.
DoT was described in Use DNS over TLS - Fedora Magazine.
This article was requested in https://meetbot.fedoraproject.org/teams/fesco/fesco.2020-09-30-14.00.html.