/interface veth
add address=10.0.0.20/24 gateway=10.0.0.1 name=veth-dnsdist
/interface bridge port
add bridge=br-lan interface=veth-dnsdist
/file
add name="/dnsdist-conf/dnsdist.conf" contents=""
:delay 2s;
/file
set "/dnsdist-conf/dnsdist.conf" contents="setLocal('0.0.0.0:53')\n\nnewServer({address='1.1.1.1:443', tls='openssl', subjectName='1.1.1.1', dohPath='/dns-query', validateCertificates=true, pool='doh-parallel-pool'})\nnewServer({address='8.8.8.8:443', tls='openssl', subjectName='8.8.8.8', dohPath='/dns-query', validateCertificates=true, pool='doh-parallel-pool'})\nnewServer({address='9.9.9.9:443', tls='openssl', subjectName='9.9.9.9', dohPath='/dns-query', validateCertificates=true, pool='doh-parallel-pool'})\n\nnewServer({address='1.1.1.1:853', tls='openssl', subjectName='1.1.1.1', validateCertificates=true, pool='dot-parallel-pool'})\nnewServer({address='8.8.8.8:853', tls='openssl', subjectName='8.8.8.8', validateCertificates=true, pool='dot-parallel-pool'})\nnewServer({address='9.9.9.9:853', tls='openssl', subjectName='9.9.9.9', validateCertificates=true, pool='dot-parallel-pool'})\n\nsetServerPolicy(firstAvailable)\n\naddAction(AllRule(), PoolAction('dot-parallel-pool'))\n"
/container/mounts
add list=dnsdist-conf src="/dnsdist-conf/dnsdist.conf" dst="/etc/dnsdist/dnsdist.conf"
/container
add name=dnsdist \
interface=veth-dnsdist \
remote-image="registry-1.docker.io/powerdns/dnsdist-19:latest" \
mountlists=dnsdist-conf \
root-dir="/dnsdist-root" \
use=0 \
start-on-boot=yes \
logging=yes
