Cloudflare DNS over TLS/HTTPS

General questions.
Post Reply
ipfireuser5150
Posts: 32
Joined: May 18th, 2019, 5:28 pm

Cloudflare DNS over TLS/HTTPS

Post by ipfireuser5150 » July 13th, 2019, 11:44 am

Firefox now has a checkbox to enable DNS over HTTPS. I did some testing with Cloudflare set as my DNS servers in IPFire in Network->Assign DNS-Server. IPFire reports DNSSEC Validating. However, when I go to https://1.1.1.1/help to test DNS over HTTPS, it says I am not using either DOH or DOT. But if I enable DNS over HTTPS checkbox in Firefox, it now says that I am using DOH.

Is there a way other than Firefox's checkbox to alllow ipfire to force DOT and/or DOH on the network?

Hellfire
Posts: 695
Joined: November 8th, 2015, 8:54 am

Re: Cloudflare DNS over TLS/HTTPS

Post by Hellfire » July 14th, 2019, 12:50 pm

Don't know exactly how this website is checking for DoH/DoT, however, I guess this is browser only and presumbly your browser/PC is connected to IPFires DNS. Hence I guess this website cannot check for 1.1.1.1 as it will only see IPFires IP-Adress as DNS server.

I maybe wrong, though.
Image

ipfireuser5150
Posts: 32
Joined: May 18th, 2019, 5:28 pm

Re: Cloudflare DNS over TLS/HTTPS

Post by ipfireuser5150 » July 14th, 2019, 3:51 pm

Yes, my PC and browser are behind ipfire and ipfire is using Cloudflare DNS in Network->Assign DNS-Server.

I wonder if I set Cloudflare DNS in ipfire's setup via ssh if that would make any difference. Currently it is blank and pulling my ISP's DNS addresses.

edit: no dice. Even if I set 1.1.1.1 and 1.0.0.1 in ssh setup, it still uses my ISP's DNS unless I set it in Assign DNS-Server.

Post Reply