[dnsdist] How to pass source IP to the next DNS (Adguard Home)

Alexis Berthillier alexis at berthillier.net
Mon Nov 17 16:08:45 UTC 2025 

Michel, 
my complaint was not about dnsdist, it does what it is supposed to do  in an easy way, documentation could be a bit better with more configuration examples, but my main complaint was more about the adguard, pi-hole of the workd whiich do not implement the right standards to make it easy for th eusers.
Alexis

> On Nov 16, 2025, at 11:40 PM, Michel Otte <michel at cybox.nl> wrote:
> 
> Hi Alexis,
> 
> I'm not sure if your comment concerns the dnsdist side or Adguard Home side, but dnsdist is not targeted specifically to home use. That does not mean it cannot be used in such a scenario. Having said that, from the dnsdist perspective it is only a matter of one extra configuration parameter. I'm not sure how that translates to "quite some work", but maybe dnsdist is not the right tool for your job then.
> 
> With kind regards,
> Michel Otte
> 
>> Thank you Michel
>> Indeed it works but this is quite some work when it could be so easy...
>> I guess the only guys doing a good job here are the Technitium guys
>> 
>>> On Nov 12, 2025, at 11:49 PM, Michel Otte <michel at cybox.nl <mailto:michel at cybox.nl>> wrote:
>>> 
>>> 
>>> Hi Alexis,
>>> 
>>> dnsdist supports both the PROXY protocol via `useProxyProtocol` parameter and the X-Forwarded-For, X-Forwarded-Port and X-Forwarded-Proto headers via the `addXForwardedHeaders` parameter, both of which you can enable via newServer: [1].
>>> 
>>> AdGuard currently does not support the PROXY protocol: [2], [3]. But according to this issue it does support the X-Forwarded-For header. The latter obviously only works if the connection to the backend is made via HTTP(S), so you should be using a DoH backend connection to AdGuard Home to make it work.
>>> 
>>> [1]: https://www.dnsdist.org/reference/config.html#newServer
>>> [2]: https://github.com/AdguardTeam/AdGuardHome/issues/5694
>>> [3]: https://github.com/AdguardTeam/AdGuardHome/issues/2798
>>> 
>>> With kind regards,
>>> Michel Otte
>>> 
>>>> My setup is a dnsdist server load balancing traffic to two adguard home, the last issue I face is that right now the dnstdist does not pass through  the source IP which I’d like to see on Adguard for filtering.
>>>> Is there an easy way to do that?
>>>> Does someone have a simlar setup that works?
>>>> Thank you
>>>> Alexis
>>>> _______________________________________________
>>>> dnsdist mailing list
>>>> dnsdist at mailman.powerdns.com <mailto:dnsdist at mailman.powerdns.com>
>>>> https://mailman.powerdns.com/mailman/listinfo/dnsdist
>> _______________________________________________
>> dnsdist mailing list
>> dnsdist at mailman.powerdns.com <mailto:dnsdist at mailman.powerdns.com>
>> https://mailman.powerdns.com/mailman/listinfo/dnsdist

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/dnsdist/attachments/20251117/33357780/attachment.htm>

More information about the dnsdist mailing list