RFC 7858: kresd should be able to use TLS on outbound queries when configured in forwarding mode.

we currently allow policies like:policy:add(policy.all(policy.FORWARD('192.168.1.1')))

It would be great if we could do forwarding (stub-to-recursive) over TLS.

I propose something like policy:add(policy.all(policy.FORWARD('TLS:192.168.1.1'))), though i'm open to other suggestions for how this would be implemented.

Edited Oct 12, 2017 by Petr Špaček

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

Admin message

Admin message

RFC 7858: kresd should be able to use TLS on outbound queries when configured in forwarding mode.