|Eliezer Croitoru 60bf43b703 Fixed the README.md config example.||7 months ago|
|.travis.yml||8 months ago|
|LICENSE||2 years ago|
|README.md||7 months ago|
|activation.go||1 year ago|
|api.go||7 months ago|
|cache.go||7 months ago|
|cache_test.go||9 months ago|
|config.go||7 months ago|
|drbl.go||7 months ago|
|grimd.service||7 months ago|
|grimd_test.go||2 years ago|
|handler.go||7 months ago|
|logger.go||2 years ago|
|main.go||7 months ago|
|peersfile.yaml||7 months ago|
|redis-log.go||7 months ago|
|resolver.go||2 years ago|
|server.go||2 years ago|
|updater.go||7 months ago|
:zap: Fast dns proxy that can run anywhere, built to black-hole internet advertisements and malware servers.
go get github.com/looterz/grimd
grimd.toml is not found, it will be generated for you, below is the default configuration.
# version this config was generated from version = "1.0.8" # list of sources to pull blocklists from, stores them in ./sources useblocklist = 0 sources = [ "http://mirror1.malwaredomains.com/files/justdomains", "https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts", "http://sysctl.org/cameleon/hosts", "https://zeustracker.abuse.ch/blocklist.php?download=domainblocklist", "https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt", "https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt", "http://hosts-file.net/ad_servers.txt", "https://raw.githubusercontent.com/quidsup/notrack/master/trackers.txt", "http://moodle.ngtech.co.il/ngtech-ads-hosts-only.txt" ] # list of locations to recursively read blocklists from (warning, every file found is assumed to be a hosts-file or domain list) sourcedirs = [ "/var/grim/sources" ] # location of the log file log = "/var/log/grimd.log" # what kind of information should be logged, 0 = errors and important operations, 1 = dns queries, 2 = debug loglevel = 0 # address to bind to for the DNS server bind = ":53" # address to bind to for the API server api = "127.0.0.1:28080" # ipv4 address to forward blocked queries to nullroute = "184.108.40.206" # ipv6 address to forward blocked queries to nullroutev6 = "2a01:6500:1:1000::114:100" # nameservers to forward queries to nameservers = ["220.127.116.11:53", "18.104.22.168:53"] # concurrency interval for lookups in miliseconds interval = 200 # query timeout for dns lookups in seconds timeout = 5 # disable dns caching disablecache = 1 # disable dns queries cache disablequestioncache = 1 # cache entry lifespan in seconds expire = 600 # cache capacity, 0 for infinite maxcount = 0 # question cache capacity, 0 for infinite but not recommended (this is used for storing logs) questioncachecap = 5000 # manual blocklist entries blocklist =  # manual whitelist entries whitelist = [ "ngtech.co.il", "www.ngtech.co.il" ] # When this string is queried, toggle grimd on and off togglename = "" # If not zero, the delay in seconds before grimd automaticall reactivates after # having been turned off. reactivationdelay = 300 # Drbl related settings usedrbl = 1 drblpeersfilename = "/etc/drblpeers.yaml" drblblockweight = 128 drbltimeout = 30 drbldebug = 0 # Log domains to redis DB logdomainstoredis = 0 redisaddress = "127.0.0.1" redisport = "6379" redisdb = 0
Requires golang 1.7 or higher, you build grimd like any other golang application, for example to build for linux x64
env GOOS=linux GOARCH=amd64 go build -v github.com/looterz/grimd
A restful json api is exposed by default on the local interface, allowing you to build web applications that visualize requests, blocks and the cache. reaper is the default grimd web frontend.
Incoming requests spawn a goroutine and are served concurrently, and the block cache resides in-memory to allow for rapid lookups, while answered queries are cached allowing grimd to serve thousands of queries at once while maintaining a memory footprint of under 15mb for 100,000 blocked domains!
You can find examples of different daemon scripts for grimd on the wiki.