Trusted Recursive Resolver: Difference between revisions

Trusted Recursive Resolver (view source)

Revision as of 09:20, 12 September 2019

575 bytes added , 12 September 2019

Update pref definitions

Valentin.gosu

Confirmed users

89

edits

@@ Line 9: / Line 9: @@
 === network.trr.mode ===
-set which resolver mode you want.
+The resolver mode. You should not change the mode manually, instead use the UI in the Network Settings section of about:preferences
-- Off (default). use standard native resolving only (don't use TRR at all)
+* 0 - Off (default). use standard native resolving only (don't use TRR at all)
+* 1 - Reserved (used to be Race mode)
-- Reserved (used to be Race mode)
+* 2 - First. Use TRR first, and only if the name resolve fails use the native resolver as a fallback.
+* 3 - Only. Only use TRR. Never use the native (This mode also requires the bootstrapAddress pref to be set)
-- First. Use TRR first, and only if the name resolve fails use the native resolver as a fallback.
+* 4 - Reserved (used to be Shadow mode)
+* 5 - Off by choice. This is the same as 0 but marks it as done by choice and not done by default.
-- Only. Only use TRR. Never use the native (after the initial setup).
-- Reserved (used to be Shadow mode)
-- Off by choice. This is the same as 0 but marks it as done by choice and not done by default.
 === network.trr.uri ===
@@ Line 28: / Line 23: @@
 Publicly announced servers include:
-- https://mozilla.cloudflare-dns.com/dns-query
+* https://mozilla.cloudflare-dns.com/dns-query
-- https://dns.google/dns-query
+* https://dns.google/dns-query
 For more servers, see this unofficial list of DoH servers: https://github.com/curl/curl/wiki/DNS-over-HTTPS.
@@ Line 39: / Line 34: @@
 === network.trr.wait-for-portal ===
-(default: true) set this boolean to **true** to tell Firefox to wait for the captive portal detection before TRR is used. (on Android, this will default to **false** since the captive portal handling is done outside of Firefox, by the OS itself.)
+(default: false) set this boolean to **true** to tell Firefox to wait for the captive portal detection before TRR is used. (on Android, this will default to **false** since the captive portal handling is done outside of Firefox, by the OS itself.)
 === network.trr.allow-rfc1918 ===
@@ Line 56: / Line 51: @@
 (default: none) by setting this field to the IP address of the host name used in "network.trr.uri", you can bypass using the system native resolver for it.
+Use this to get the IPs of the cloudflare server: https://dns.google/query?name=mozilla.cloudflare-dns.com
 === network.trr.blacklist-duration ===
@@ Line 70: / Line 66: @@
 (default: false) For each normal name resolution, Firefox issues one HTTP request for A entries and another for AAAA entries. The responses come back separately and can come in any order. If the A records arrive first, Firefox will—as an optimization— continue and use them without waiting for the second response. If the AAAA records arrive first, Firefox will only continue and use them immediately if this option is set to **true**.
+=== network.trr.skip-AAAA-when-not-supported ===
+(default: true) If Firefox detects that your system does not have IPv6 connectivity, it will not request IPv6 addresses from the DoH server.
 === network.trr.max-fails ===
@@ Line 81: / Line 81: @@
 === network.trr.excluded-domains ===
-(default: `localhost,local`) Comma separated list of domain names to be resolved using the native resolver instead of TRR.
+(default: `localhost,local`) Comma separated list of domain names to be resolved using the native resolver instead of TRR. The host of the captive portal detection is also added to the internal exclusion list, in order to be able to detect local captive portals.
 == Dynamic Blacklist ==