Private DNS Server
A secure, self-hosted DNS server using Technitium, providing encrypted DNS resolution via DoH and DoT protocols for privacy-conscious users and unrestricted access.
Problem_Statement
Public DNS providers are often monitored, log user activity, or enforce content filtering (e.g., Komdigi's Internet Positif), which compromises privacy and freedom online.
Approach_&_Solution
Deployed Technitium DNS directly on a VPS with manual configuration of DNS over HTTPS (DoH) and DNS over TLS (DoT). Integrated valid SSL certificates and configured Nginx as a secure reverse proxy to serve encrypted DNS requests under a custom domain.
Key_Features
- Full support for DNS over HTTPS (DoH) and DNS over TLS (DoT)
- Custom domain endpoint with valid SSL (Let's Encrypt)
- Strict firewall policies and access control
- Bypasses Indonesian content filtering (e.g., Reddit, blocked sites)
Challenges
- Ensuring proper SSL certificate setup
- Securing DNS endpoints through reverse proxy rules
- Maintaining stable uptime and fast resolution without relying on Docker
Reflection_&_Learnings
“This project sharpened my practical understanding of DNS privacy, secure server architecture, and content-neutral internet access through encrypted protocols and VPS-level DNS provisioning.”