Working on sending down the dns

Former-commit-id: 1a8385c457
2026-03-01 08:16:56 +00:00 · 2025-11-23 15:57:35 -05:00
parent b38357875e
commit 6c7ee31330
6 changed files with 143 additions and 88 deletions
--- a/olm/olm.go
+++ b/olm/olm.go
@@ -47,6 +47,8 @@ type TunnelConfig struct {
 	// Network settings
 	MTU           int
 	DNS           string
+	DNSProxyIP    string
+	UpstreamDNS   []string
 	InterfaceName string

 	// Advanced
@@ -124,6 +126,8 @@ func Init(ctx context.Context, config GlobalConfig) {
 				UserToken:     req.UserToken,
 				MTU:           req.MTU,
 				DNS:           req.DNS,
+				DNSProxyIP:    req.DNSProxyIP,
+				UpstreamDNS:   req.UpstreamDNS,
 				InterfaceName: req.InterfaceName,
 				Holepunch:     req.Holepunch,
 				TlsClientCert: req.TlsClientCert,
@@ -157,6 +161,11 @@ func Init(ctx context.Context, config GlobalConfig) {
 			if req.DNS == "" {
 				tunnelConfig.DNS = "9.9.9.9"
 			}
+			// DNSProxyIP has no default - it must be provided if DNS proxy is desired
+			// UpstreamDNS defaults to 8.8.8.8 if not provided
+			if len(req.UpstreamDNS) == 0 {
+				tunnelConfig.UpstreamDNS = []string{"8.8.8.8"}
+			}
 			if req.InterfaceName == "" {
 				tunnelConfig.InterfaceName = "olm"
 			}
@@ -473,25 +482,26 @@ func StartTunnel(config TunnelConfig) {
 			logger.Error("Failed to bring up WireGuard device: %v", err)
 		}

-		// Create and start DNS proxy
-		dnsProxy, err = dns.NewDNSProxy(tdev, config.MTU)
-		if err != nil {
-			logger.Error("Failed to create DNS proxy: %v", err)
-		}
-		if err := dnsProxy.Start(middleDev); err != nil {
-			logger.Error("Failed to start DNS proxy: %v", err)
-		}
-		ip := net.ParseIP("192.168.1.100")
-		if dnsProxy.AddDNSRecord("example.com", ip); err != nil {
-			logger.Error("Failed to add DNS record: %v", err)
+		if config.DNSProxyIP != "" {
+			// Create and start DNS proxy
+			dnsProxy, err = dns.NewDNSProxy(tdev, middleDev, config.MTU, config.DNSProxyIP, config.UpstreamDNS)
+			if err != nil {
+				logger.Error("Failed to create DNS proxy: %v", err)
+			}
+
+			if err := dnsProxy.Start(); err != nil {
+				logger.Error("Failed to start DNS proxy: %v", err)
+			}
 		}

 		if err = ConfigureInterface(interfaceName, wgData, config.MTU); err != nil {
 			logger.Error("Failed to configure interface: %v", err)
 		}

-		if addRoutes([]string{"10.30.30.30/32"}, interfaceName); err != nil {
-			logger.Error("Failed to add route for DNS server: %v", err)
+		if config.DNSProxyIP != "" {
+			if addRoutes([]string{config.DNSProxyIP + "/32"}, interfaceName); err != nil {
+				logger.Error("Failed to add route for DNS server: %v", err)
+			}
 		}

 		// TODO: seperate adding the callback to this so we can init it above with the interface
@@ -661,22 +671,12 @@ func StartTunnel(config TunnelConfig) {
 			return
 		}

-		var addData AddPeerData
-		if err := json.Unmarshal(jsonData, &addData); err != nil {
+		var siteConfig SiteConfig
+		if err := json.Unmarshal(jsonData, &siteConfig); err != nil {
 			logger.Error("Error unmarshaling add data: %v", err)
 			return
 		}

-		// Convert to SiteConfig
-		siteConfig := SiteConfig{
-			SiteId:        addData.SiteId,
-			Endpoint:      addData.Endpoint,
-			PublicKey:     addData.PublicKey,
-			ServerIP:      addData.ServerIP,
-			ServerPort:    addData.ServerPort,
-			RemoteSubnets: addData.RemoteSubnets,
-		}
-
 		// Add the peer to WireGuard
 		if dev == nil {
 			logger.Error("WireGuard device not initialized")
@@ -699,7 +699,7 @@ func StartTunnel(config TunnelConfig) {
 		}

 		// Add successful
-		logger.Info("Successfully added peer for site %d", addData.SiteId)
+		logger.Info("Successfully added peer for site %d", siteConfig.SiteId)

 		// Update WgData with the new peer
 		wgData.Sites = append(wgData.Sites, siteConfig)
@@ -1076,7 +1076,7 @@ func Close() {

 	// Stop DNS proxy
 	if dnsProxy != nil {
-		dnsProxy.Stop(middleDev)
+		dnsProxy.Stop()
 		dnsProxy = nil
 	}

--- a/olm/types.go
+++ b/olm/types.go
@@ -1,17 +1,9 @@
 package olm

 type WgData struct {
-	Sites    []SiteConfig `json:"sites"`
-	TunnelIP string       `json:"tunnelIP"`
-}
-
-type SiteConfig struct {
-	SiteId        int      `json:"siteId"`
-	Endpoint      string   `json:"endpoint"`
-	PublicKey     string   `json:"publicKey"`
-	ServerIP      string   `json:"serverIP"`
-	ServerPort    uint16   `json:"serverPort"`
-	RemoteSubnets []string `json:"remoteSubnets,omitempty"` // optional, array of subnets that this site can access
+	Sites         []SiteConfig `json:"sites"`
+	TunnelIP      string       `json:"tunnelIP"`
+	UtilitySubnet string       `json:"utilitySubnet"` // this is for things like the DNS server, and alias addresses
 }

 type HolePunchMessage struct {
@@ -40,23 +32,19 @@ type PeerAction struct {
 }

 // UpdatePeerData represents the data needed to update a peer
-type UpdatePeerData struct {
+type SiteConfig struct {
 	SiteId        int      `json:"siteId"`
 	Endpoint      string   `json:"endpoint,omitempty"`
 	PublicKey     string   `json:"publicKey,omitempty"`
 	ServerIP      string   `json:"serverIP,omitempty"`
 	ServerPort    uint16   `json:"serverPort,omitempty"`
 	RemoteSubnets []string `json:"remoteSubnets,omitempty"` // optional, array of subnets that this site can access
+	Aliases       []Alias  `json:"aliases,omitempty"`       // optional, array of alias configurations
 }

-// AddPeerData represents the data needed to add a peer
-type AddPeerData struct {
-	SiteId        int      `json:"siteId"`
-	Endpoint      string   `json:"endpoint"`
-	PublicKey     string   `json:"publicKey"`
-	ServerIP      string   `json:"serverIP"`
-	ServerPort    uint16   `json:"serverPort"`
-	RemoteSubnets []string `json:"remoteSubnets,omitempty"` // optional, array of subnets that this site can access
+type Alias struct {
+	Alias        string `json:"alias"`        // the alias name
+	AliasAddress string `json:"aliasAddress"` // the alias IP address
 }

 // RemovePeerData represents the data needed to remove a peer