This is the hickory-dns Docker image

• ascii-art
• blocklist
• dnssec-ring
• h3-ring
• https-ring
• quic-ring
• resolver
• recursor
• rustls-platform-verifier
• sqlite
• webpki-roots

The container has some more files copied from the Debian (trixie) package dns-root-data.

See: https://www.iana.org/domains/root/files

• /usr/share/dns/root.ds The DNS DS record for DNSSEC validation of the root . (https://data.iana.org/root-anchors/root-anchors.xml).
• /usr/share/dns/root.hints The hints to the DNS root servers (https://www.internic.net/domain/named.root).
• /usr/share/dns/root.key The DNS DNSKEY record for DNSSEC validation of the root . (https://data.iana.org/root-anchors/root-anchors.xml).

File compose.yml:

services: dns-server: image: docker.io/hickorydns/hickory-dns:latest volumes: - ./config/dns/named.toml:/etc/named.toml:ro - ./config/dns/ipv6_block.zone:/var/named/ipv6_block.zone:ro ports: - "53:53/tcp" - "53:53/udp"

You can find two tested examples in this repository:

• named-forwarding.toml
• named-recursive.toml

You can add the argument FEATURES= to define the list of enabled features

• Edit and run

  IMAGE_TAG="yourUsername/hickory-dns:custom-version" \ VERSION="0.20.x-dev" \ SOURCE_FILE="https://github.com/hickory-dns/hickory-dns/archive/refs/heads/stop-returning-ns-on-auth-response.tar.gz" \ SOURCE_SHA256="$(curl -Ls "${SOURCE_FILE}" -o - | sha256sum | cut -d ' ' -f 1)" \ make build-alpine

To use wget, replace curl -Ls "${SOURCE_FILE}" -o - by wget "${SOURCE_FILE}" -O -

IMAGE_TAG="yourUsername/hickory-dns:custom-version" make push