blocky_user: blocky
blocky_group: blocky
blocky_dir: /opt/blocky
blocky_conf_dir: /etc/blocky
blocky_conf_file: "{{ blocky_conf_dir }}/blocky.yml"

blocky_tls_ecc384_cert: "{{ blocky_conf_dir }}/ecc384.crt"
blocky_tls_ecc384_key: "{{ blocky_conf_dir }}/ecc384.key"

blocky_port: 9000
blocky_enable_dot: yes

blocky_default_groups:
  - selector: default
    groups:
      - all

blocky_default_config:
  port: 53
  bootstrapDns: 1.1.1.1
  logLevel: warn
  logTimestamp: no
  upstreamTimeout: 4s

  httpPort: "127.0.0.1:{{ blocky_port }}"

  prometheus:
    enable: "{{ host_metrics }}"

  caching:
    maxTime: 8h
    maxItemsCount: 15000
    prefetchMaxItemsCount: 1000

  upstream:
    default:
      - tcp-tls:anycast.censurfridns.dk:853
      - tcp-tls:dns.quad9.net:853
      - tcp-tls:one.one.one.one:853
      - tcp-tls:dns.digitale-gesellschaft.ch:853

  blocking:
    blackLists:
      all:
        - https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
        - https://block.energized.pro/extensions/regional/formats/hosts
        - https://block.energized.pro/bluGo/formats/hosts
    whiteLists:
      all:
        - https://raw.githubusercontent.com/anudeepND/whitelist/master/domains/whitelist.txt
    refreshPeriod: 8h
    blockTTL: 5m