進行部署#
mkdir -p ~/app/adguard && cd ~/app/adguard && nano docker-compose.yml
sudo docker-compose up -d # 面板端口 3000
# /opt/adguardhome/letsencrypt/live/npm-1/fullchain.pem
# /opt/adguardhome/letsencrypt/live/npm-1/privkey.pem
sed -i 's/allow_unencrypted_doh: false/allow_unencrypted_doh: true/' ./conf/AdGuardHome.yaml && sudo docker-compose restart
version: '3.3'
services:
adguard:
restart: unless-stopped
volumes:
- './work:/opt/adguardhome/work'
- './conf:/opt/adguardhome/conf'
- '/root/base/NGPM/letsencrypt:/opt/adguardhome/letsencrypt'
- '/etc/localtime:/etc/localtime:ro'
image: adguard/adguardhome:latest
networks:
default:
external: true
name: ngpm
DNS 設置#
- 導航欄 - 設置 - DNS 設置
- DNS 服務配置中啟用 DNSSEC
DoH 設置#
- 導航欄 - 設置 - DNS 設置
- 加密中啟用加密
- 證書可以設置為 npm 自動申請的證書
- 反代
/dns-query,token保密不要洩露 token後面沒有/,dns-query後面有/- 在 chrome 的設置 - 隱私和安全 - 安全 - DNS 中填入
https://my.com/token - 回到儀表盤,看看有沒有記錄到 DNS 查詢