thanks for go into some testing rounds in here :-).
If you copy and paste the installer code block from the starting site and execute it, the script name should not even be seen or recognized, but i can also rename (may in one of the next updates)...
I wanted to leave it completely to the user which one to use. Even some of them sometimes do not work (DNSsec is off or they are simply not available). Also if more people go through the configuration process potential bugs can better be found. Nevertheless, you can find the complete config in the start topic under "Current /var/ipfire/dns/tlsconfig: " to simply copy and paste it into /var/ipfire/dns/tlsconfig.
Did that now --> viewtopic.php?f=50&t=21954 good that you mentioned it.
This topic is now a kind of big meanwhile and some more development has been mad as time goes by so may you have overseen it.
Have added two scripts whereby
1) the first one gives you the raw kdig output for all active connections --> https://gitlab.com/ummeegge/dot-for-ipf ... est_tls.sh
2) the second one interprets and colorize the kdig output for better overview --> https://gitlab.com/ummeegge/dot-for-ipf ... nection.sh
but there is meanwhile a third possibility which delivers the current DoT state via index.cgi -->
whereby red means not working - orange means no DNSsec - and green means all is good.
This version is currently highly experimental and not available in this topic here.
Some infos for you.
Best and again thanks for testing.