Skip to main content

How can we help you?

Search

help Knowledge Base
forum Community
checklist Release Notes
event Events

Install DNS Relay using Azure Cloud Image

Minetta Gould Community Team DNSFilter Staff
  • Edited

Follow this post to install the DNSFilter Relay via Azure Portal. These instructions will also get you started with the Azure CLI tools or any other Azure-capable API. 

Consult Microsoft's documentation for additional Azure support.  

Prerequisites for setup

  • Recommended specs: 64-bit 2-core CPU; 2GB of RAM
  • Open these ports at the NSG level:
    • Port 53: Used for DNS (Domain Name System) traffic
    • Port 853: Used for DNS over TLS (DoT) traffic
    • Port 443: Used for HTTPS (Hypertext Transfer Protocol Secure) traffic
  • Create a Site in the DNSFilter dashboard to associate the Relay with. Copy the Site Secret Key from the Relay Install tab to complete the installation

Setup the Relay

  1. Download the Image: Azure Cloud 22.04, 2.07 GB (zip)
  2. Upload the VHD file to the Azure Portal
    ✍️ Make sure the Blob Type is set to Blob Page
  3. Create an Image. Browse Storage blobs to select the VHD file
  4. Once the Image creation is complete, navigate to the Images panel and confirm the Image is there:
    1. Select See all Images
    2. Select My Images

Use this Image to deploy the Relay Virtual Machines (VMs) in Azure.

  1. Log in to the VM
    Login Credentials:
    Username: dnsfilter
    Password: ChangeMeNow!
  2. Update the default password using this command: 
    passwd
  3. Use our in-app config tool to edit the relay.conf file or manually edit the relay.conf file using this command: 
    sudo nano /etc/relay/relay.conf
    1. Edit these fields (crtl+o):
      1. Name. Must match the Site name set in the DNSFilter dashboard
      2. Site Secret Key. Copied from the dashboard
    2. Save these changes (return/enter) and exit the file (crtl+x)
  4. Confirm network settings are configured to run with the Relay:  
    sudo nano /etc/netplan/00-installer-config.yaml
    1. Choose how the network should obtain an IP:
      1. Use DHCP (default). This setting will work as long as the network firewall has a permanent DHCP lease for the MAC of the Virtual NIC of the container
      2. Assign a Static IP. Update the .yaml values:
        1. Add # before dhcp4: true
        2. Remove # before these lines:
          addresses
          gateway4
          nameservers
                addresses
          dhcp4
        3. Update addresses to reflect the Static IP e.g. 192.168.1.15/24 becomes 172.16.0.44/24
        4. Update gateway4 to the appropriate network gateway IP e.g. 192.168.1.1 becomes 172.16.0.1
      3. Save the file
    2. Run this command to enable the changes:
      sudo netplan apply
  5. Run these commands: 
    sudo systemctl enable docker.service
    sudo systemctl start docker.service
  6. Restart the VM 
  7. Run the ifconfig command to make sure it is picking up the correct IP
  8. Test the connection. Troubleshoot any errors as needed
  9. Start the docker relay with this command:
    sudo docker start relay1 relay2
  10. Confirm the status of the relays using this command: 
    sudo docker ps

The setup is now complete and the Relay will begin filtering DNS traffic. 

0

Comments

0 comments

Please sign in to leave a comment.

New post

Featured posts