Let's get “the usual” out of the way: we’ve made some security updates, as we always do, and even managed to make do without any bug fixes this time, for better or for worse. But let’s focus on the main course: new option to enable and disable DNS rewrite rules 🚦
This was one of the earlier feature requests, and we are happy to finally deliver. You can enable and disable DNS rewrite rules all at once or do so on an individual rewrite basis — both by editing YAML files or via UI.
Acknowledgments
A special thanks to our community moderators team and to everyone who filed and inspected issues, added translations, and helped us test this release!
Full changelog
See also the v0.107.68 GitHub milestone.
Security
- Go version has been updated to prevent the possibility of exploiting the Go vulnerabilities fixed in 1.25.3.
Added
- New DNS rewrite settings endpoints
GET /control/rewrite/settingsandPUT /control/rewrite/settings/update(#1765). Seeopenapi/openapi.yamlfor details. - New fields
"groups"and"group_id"added to the HTTP API (GET /control/blocked_services/all). Seeopenapi/openapi.yamlfor the full description.
Changed
POST /control/rewrite/addandPUT /control/rewrite/updatenow accept the optional field "enabled" (#1765). Seeopenapi/openapi.yamlfor details.
Configuration changes
In this release, the schema version has changed from 30 to 31.
-
Added a new boolean field
filtering.rewrites_enabledto globally enable/disable DNS rewrites. -
Added a new boolean field
enabledfor each entry infiltering.rewritesto toggle individual rewrites.# BEFORE: 'filtering': 'rewrites': - 'domain': test.example 'answer': 192.0.2.0 # … # AFTER: 'filtering': 'rewrites_enabled': true 'rewrites': - 'domain': test.example 'answer': 192.0.2.0 'enabled': true # …
To roll back this change, set
schema_versionback to30.