mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-27 18:18:55 +00:00

Files

Thomas Eizinger 3273abf64b fix(connlib): use TCP as well to pick fastest nameserver (#8372 )

UDP is an unreliable transport and thus it can happen that a UDP DNS
query gets lost in transit. Our current algorithm for picking a
nameserver of all provided ones only uses UDP DNS and thus, we may run
into a scenario where we falsely claim to not have nameservers simply
because the UDP request or response got lost in transit.

To mitigate this, we also perform a TCP DNS query to every nameserver.
TCP is reliable and will perform retransmissions in case of packet loss.

---------

Signed-off-by: Thomas Eizinger <thomas@eizinger.io>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

2025-03-06 02:41:25 +00:00

clients

feat(connlib): allow and route packets to Gateway TUN IPs (#8294 )

2025-03-03 03:20:06 +00:00

l4-tcp-dns-server

feat(gateway): forward queries to local nameserver (#8350 )

2025-03-05 20:23:01 +00:00

l4-udp-dns-server

feat(gateway): run a DNS resolver on $tun_ip:53535 (#8285 )

2025-03-03 12:26:32 +00:00

model

test(connlib): assert resource status as part of tunnel_test (#7772 )

2025-01-21 04:35:22 +00:00

snownet

fix(snownet): servers should not initiate WireGuard sessions (#8169 )

2025-02-18 08:25:45 +00:00

tunnel

fix(connlib): use TCP as well to pick fastest nameserver (#8372 )

2025-03-06 02:41:25 +00:00

.gitignore

android: update connlib dependency and integration (#1752 )

2023-07-17 18:50:39 +00:00

README.md

chore(docs): Remove outdated rust/connlib/README.md info (#3099 )

2024-01-03 18:10:52 +00:00

README.md

Connlib

Firezone's connectivity library shared by all clients.

Building Connlib

You shouldn't need to build connlib directly; it's typically built as a dependency of one of the other Firezone components. See READMEs in those directories for relevant instructions.