gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
c4a2601c11
secubox-openwrt/docs/wiki/modules/DNS.md
CyberMind-FR 01246a693d docs: Add comprehensive wiki and module documentation 
Wiki structure:
- Home.md: Main navigation with module categories
- Installation.md: Getting started guide
- Quick-Start.md: First-time setup walkthrough
- Architecture.md: 4-layer architecture overview
- Modules.md: Complete catalog of 80+ modules

Module documentation (docs/wiki/modules/):
- Security.md: 15 security modules (CrowdSec, WAF, Guardians)
- Network.md: 12 network modules (HAProxy, Bandwidth, Traffic)
- Mesh.md: 7 VPN/mesh modules (WireGuard, P2P, MirrorNet)
- DNS.md: 6 DNS modules (DNS Master, Vortex, Meshname)
- Apps.md: 20 application modules (Jellyfin, Nextcloud, Matrix)
- System.md: 14 system modules (Config Vault, Reporter, RTTY)
- AI.md: 8 AI modules (Gateway, LocalAI, Threat Analyst)

Updated:
- SCREENSHOTS.md: Expanded to 111 modules with all categories
- README.md: Added wiki links and module index

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-03-26 12:35:31 +01:00

5.6 KiB
Raw Blame History

DNS Modules

SecuBox provides 6 DNS management and security modules.

Overview

Layer Components
Server DNS Master (BIND)
Security DNS Guard, Vortex DNS Firewall
Resolution Meshname DNS, AdGuard Home
External DNS Provider API

DNS Master

Package: secubox-app-dns-master + luci-app-dns-master

Primary DNS server (BIND).

DNS Master

Features

  • Zone management
  • Record editing
  • DNSSEC support
  • Secondary DNS
  • Zone transfers

Record Types

Type Description
A IPv4 address
AAAA IPv6 address
CNAME Alias
MX Mail exchange
TXT Text record
SRV Service locator

CLI

dnsctl status                 # Status
dnsctl zone list              # List zones
dnsctl zone add example.com   # Add zone
dnsctl record add A www 1.2.3.4 # Add record
dnsctl reload                 # Reload BIND

DNS Guard

Package: secubox-dns-guard + luci-app-dnsguard

AI-powered DNS anomaly detection.

DNS Guard

Features

  • Query analysis
  • Anomaly detection
  • DGA detection
  • Tunneling detection
  • Real-time alerts

Detection Types

Type Description
DGA Domain generation algorithm
Tunneling DNS data exfiltration
Fast-flux Rapidly changing IPs
Typosquatting Similar domain names
Suspicious High entropy domains

CLI

dnsguardctl status            # Status
dnsguardctl analyze           # Run analysis
dnsguardctl alerts            # View alerts
dnsguardctl whitelist add x   # Add to whitelist

Vortex DNS Firewall

Package: secubox-vortex-dns + luci-app-vortex-dns

Threat intelligence DNS firewall.

Vortex DNS

Features

  • Blocklist aggregation
  • Real-time blocking
  • Sinkhole server
  • Mesh threat sharing
  • Category filtering

Blocklist Sources

Source Categories
CrowdSec Threat intel
Pi-hole Ads, tracking
Steven Black Malware, phishing
Custom User-defined

CLI

vortexctl status              # Status
vortexctl update              # Update blocklists
vortexctl block add domain    # Block domain
vortexctl stats               # View statistics

Meshname DNS

Package: secubox-app-meshname-dns + luci-app-meshname-dns

Mesh DNS resolution (.ygg).

Meshname

Features

  • Yggdrasil DNS resolution
  • Mesh peer discovery
  • Gossip-based sync
  • Local caching
  • Fallback resolution

Resolution Flow

Query: mynode.ygg
  ↓
Local cache?
  ↓ No
Gossip lookup?
  ↓ No
Yggdrasil network?
  ↓
Response

CLI

meshnameectl status           # Status
meshnameectl lookup mynode    # Lookup name
meshnameectl register myname  # Register name
meshnameectl peers            # View peers

DNS Provider

Package: secubox-app-dns-provider + luci-app-dns-provider

External DNS provider API integration.

DNS Provider

Supported Providers

Provider Features
OVH Zone management, API v1
Gandi LiveDNS API
Cloudflare Zone API
Custom RFC 2136 dynamic DNS

Features

  • Automatic record updates
  • ACME DNS-01 challenges
  • Wildcard certificates
  • Subdomain management

CLI

dnsctl provider status        # Status
dnsctl provider list          # List providers
dnsctl provider add ovh       # Configure OVH
dnsctl add A subdomain 1.2.3.4 # Add record

AdGuard Home

Package: secubox-app-adguardhome

Ad blocking DNS server.

AdGuard

Features

  • Ad blocking
  • Tracking protection
  • Parental controls
  • Per-client settings
  • Query log

Filter Lists

List Description
AdGuard Default filter
EasyList Ad blocking
Malware Security
Social Social tracking

Configuration

Configure DNS Master

# Add zone
dnsctl zone add example.com

# Add records
dnsctl record add example.com A www 192.168.1.10
dnsctl record add example.com MX mail 10
dnsctl record add example.com TXT @ "v=spf1 mx -all"

# Enable DNSSEC
dnsctl dnssec enable example.com

Configure Vortex DNS

# Enable firewall
uci set vortex-dns.main.enabled='1'
uci set vortex-dns.main.sinkhole='192.168.255.1'
uci commit vortex-dns

# Add blocklists
vortexctl source add https://example.com/blocklist.txt
vortexctl update

Configure DNS Provider (OVH)

# Setup OVH API
dnsctl provider add ovh \
  --app-key="xxx" \
  --app-secret="xxx" \
  --consumer-key="xxx"

# Add record
dnsctl add A subdomain.example.com 1.2.3.4

DNS Resolution Flow

Client Query
    ↓
┌─────────────┐
│  dnsmasq    │ ←── Local cache
└──────┬──────┘
       ↓
┌─────────────┐
│ DNS Guard   │ ←── Anomaly detection
└──────┬──────┘
       ↓
┌─────────────┐
│ Vortex DNS  │ ←── Blocklist check
└──────┬──────┘
       ↓
┌─────────────┐
│ DNS Master  │ ←── Local zones
└──────┬──────┘
       ↓
   Upstream DNS

See also:

SecuBox v1.0.0