[dns-operations] DNS-over-TLS/DNS-over-QUIC interoperability testing?

[Jerry Lundström]

Hi all,

On 6/9/22 15:10, Jerry Lundström wrote:
> 
> I'm looking for resolvers that can talk DoT/DoQ with authorities using 
> probing or other ways that is not fixed/forwarding configuration.

If anyone want to test DoT/DoQ from resolvers -> authority then you 
could use cmdns-cli and the new checks I just added (see latest 
development update for more info [1]).  Use `-res` to specify the 
resolver to use.

$ go install github.com/DNS-OARC/cmdns-cli at v1.0.0
$ cmdns-cli -checks trans_dot,trans_doq -done | \
   grep -e prepare -e complete
connecting to wss://cmdns.dev.dns-oarc.net:443/ws/
{"send":{"prepare":{"done":false,"total":0,"checks":["trans_dot","trans_doq"]}}}
{"prepare":{"done":false,"total":4}}
{"prepare":{"done":true,"total":0,"id":"27seipp4qt35b57v94r8lg0p60","name":"DoT","desc":"Check 
if resolver uses DNS-over-TLS","cat":"transport","score":50}}
{"prepare":{"done":true,"total":0,"id":"f8gkld0kt16ndcprg0mikthavs","name":"DoQ","desc":"Check 
if resolver uses DNS-over-QUIC","cat":"transport","score":50}}
{"prepare":{"done":true,"total":0}}
{"prepare":{"done":true,"total":0}}
{"complete":{"id":"f8gkld0kt16ndcprg0mikthavs","succ":false,"msg":"Queries 
total:20 over-DoQ:0"}}
{"complete":{"id":"27seipp4qt35b57v94r8lg0p60","succ":false,"msg":"Queries 
total:20 over-DoT:0"}}


PS, as you can see I did this without something that talked DoT/DoQ :)

Cheers,
Jerry

[1] <https://dnsoarc.medium.com/development-update-2206-868628a987a5>