Skip to content
English - United States
  • There are no suggestions because the search field is empty.

Configuring Linux Mint to use Lumiun DNS via DoT

This configuration will cause Linux Mint to forward DNS requests to Lumiun DNS, using the secure DoT (DNS-over-TLS) protocol. The configuration is done through the Unbound software.

In this article, we will cover configuration on Linux Ubuntu. If you use Linux Ubuntu, see this other article.

Step-by-step

  1. Open a Terminal (local or ssh).

  2. Copy and paste the parameters below - Change abcd1234 to your site ID, and also change dns_server_1, dns_server_2, dns6_server_1, and dns6_server2 to your site's respective DNS servers. All of these are listed on the sites page.

    sudo apt update ; sudo apt -y install unbound curl

    sudo bash -c "curl -o /etc/unbound/cacert.pem https://curl.se/ca/cacert.pem"

    sudo bash -c "cat << EOF > /etc/unbound/unbound.conf.d/lumiundns.conf
    server:
    interface: 127.0.0.5
    tls-cert-bundle: /etc/unbound/cacert.pem
    forward-zone:
    name: '.'
    forward-tls-upstream: yes
    forward-addr: dns_server_1#abcd1234.dot.ldns.io
    forward-addr: dns_server_2#abcd1234.dot.ldns.io
    forward-addr: dns6_server_1#abcd1234.dot.ldns.io
    forward-addr: dns6_server_2#abcd1234.dot.ldns.io
    EOF"

    sudo systemctl restart unbound

    sudo systemctl stop systemd-resolved
    sudo systemctl disable systemd-resolved
    sudo rm /etc/resolv.conf
    sudo bash -c "echo nameserver 127.0.0.5 > /etc/resolv.conf"

    nslookup www.google.com
  3. Execute.

That's it! You can now view reports on your Lumiun DNS dashboard and also define policy rules.