Dns

How to Install Overture on VYOS 1.2.1 release

How to install overture on Vyos 1.2

I need to build a dns forwarding server to anti dns cache pollution.overture is a good choice for me. it writen in go with good performance. Here we go!

Download ovrture

you can check overture version from here

  • Login vyos .
  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121

sudo su 
overture_version=v1.6.1
sudo mkdir -p  /tmp/overture-linux-amd64
cd /tmp
sudo curl -fsSLO --compressed "https://github.com/shawn1m/overture/releases/download/$overture_version/overture-linux-amd64.zip"
sudo unzip /tmp/overture-linux-amd64.zip -d /tmp/overture-linux-amd64
cd /tmp/overture-linux-amd64

sudo curl -fsSLO https://raw.githubusercontent.com/17mon/china_ip_list/master/china_ip_list.txt

sudo curl -fsSLO https://raw.githubusercontent.com/gfwlist/gfwlist/master/gfwlist.txt

curl https://raw.githubusercontent.com/gfwlist/gfwlist/master/gfwlist.txt | base64 -d | sort -u | sed '/^$\|@@/d'| sed 's#!.\+##; s#|##g; s#@##g; s#http:\/\/##; s#https:\/\/##;' | sed '/\*/d; /apple\.com/d; /sina\.cn/d; /sina\.com\.cn/d; /baidu\.com/d; /qq\.com/d' | sed '/^[0-9]\+\.[0-9]\+\.[0-9]\+\.[0-9]\+$/d' | grep '^[0-9a-zA-Z\.-]\+$' | grep '\.' | sed 's#^\.\+##' | sort -u > /tmp/temp_gfwlist.txt

curl https://raw.githubusercontent.com/hq450/fancyss/master/rules/gfwlist.conf | sed 's/ipset=\/\.//g; s/\/gfwlist//g; /^server/d' > /tmp/temp_koolshare.txt
cat /tmp/temp_gfwlist.txt /tmp/temp_koolshare.txt | sort -u > gfw_all_domain.txt

#Download china domain list from https://github.com/felixonmars/dnsmasq-china-list
curl -fsSLO --compressed https://raw.githubusercontent.com/felixonmars/dnsmasq-china-list/master/accelerated-domains.china.conf

#Downlaod apple china domain list
curl -fsSLO --compressed https://raw.githubusercontent.com/felixonmars/dnsmasq-china-list/master/apple.china.conf

#Download google china domain list
curl -fsSLO --compressed https://raw.githubusercontent.com/felixonmars/dnsmasq-china-list/master/google.china.conf

#Download cdn in china list
curl -fsSLO --compressed https://raw.githubusercontent.com/felixonmars/dnsmasq-china-list/master/cdn-testlist.txt


#
cat accelerated-domains.china.conf  cdn-testlist.txt google.china.conf apple.china.conf | sort -u >> china_domain.txt


# Strip useless characters in the configure file.
sed -i 's/server=\///g' china_domain.txt
sed -i 's/\/114.114.114.114//g' china_domain.txt




sudo mv config.json config.json.origin

sudo bash -c 'cat > /etc/overture/config.json' <<EOF
{
  "BindAddress": "127.0.1.1:53",
  "PrimaryDNS": [
    {
      "Name": "DNSPod",
      "Address": "119.29.29.29:53",
      "Protocol": "udp",
      "SOCKS5Address": "",
      "Timeout": 15,
      "EDNSClientSubnet": {
        "Policy": "disable",
        "ExternalIP": "",
        "NoCookie": true
      }
    }
  ],
  "AlternativeDNS": [
    {
      "Name": "OpenDNS",
      "Address": "208.67.222.222:53",
      "Protocol": "udp",
      "SOCKS5Address": "",
      "Timeout": 60,
      "EDNSClientSubnet": {
        "Policy": "disable",
        "ExternalIP": "",
        "NoCookie": true
      }
    }
  ],
  "OnlyPrimaryDNS": false,
  "IPv6UseAlternativeDNS": false,
  "WhenPrimaryDnsAnswerNoneUse": "AlternativeDNS",
  "IPNetworkFile": {
      "Primary": "/etc/overture/china_ip_list.txt"
   },
  "DomainFile": {
    "Primary": "/etc/overture/china_domain.txt",
    "Alternative": "/etc/overture/gfw_all_domain.txt",
    "PrimaryMatcher":  "suffix-tree",
    "AlternativeMatcher": "final"
  },
  "MinimumTTL": 60,
  "CacheSize" : 2000,
  "RejectQType": [255]
}
EOF

sudo cp -af ./overture-linux-amd64 /usr/local/bin/overture
sudo chown root:root /usr/local/bin/overture
sudo chmod +x /usr/local/bin/overture

sudo rsync -r --delete --exclude="overture-linux-amd64" --exclude="domain_sample" --exclude="ip_network_sample" --exclude="install.sh"  ./ /etc/overture

sudo bash -c 'cat > /lib/systemd/system/overture.service' << EOF
[Unit]
Description=overture service

[Service]
ExecStart=/usr/local/bin/overture -c /etc/overture/config.json -l /etc/overture/overture.log
Restart=on-failure
RestartSec=42s

[Install]
WantedBy=multi-user.target
EOF




sudo systemctl daemon-reload


sudo rm -rf /tmp/overture-linux-amd64
sudo rm -rf /tmp/overture-linux-amd64.zip
sudo systemctl enable overture
sudo systemctl restart overture

Reference

Overture Vyos
Licensed under CC BY-NC-SA 4.0
Last updated on Sep 19, 2024 09:13 UTC
© 2018 - 2024 Steve's Blog
Built with Hugo
Theme Stack designed by Jimmy