Menu
What's new
By:
Filters Better Search

dot

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. C

    DoT on ASUS RT AX55 fails...

    Noob here. Trying to get DoT to work. Here are my setups in the router (pointing only at quad9), and yet according to leak test, I am still visible and logged. Thoughts?
  2. R

    DNS Privacy Protocol wont enable

    Hi guys, I tried to set up "DNS Privacy Protocol" but it won't stay on when I hit the apply button. I have disabled "DNS Director", to test but not working either (even though it says on the wiki that "DNSDirector still works as before...") RT-AX86U Firmware:3004.388.4 AdGuard Version...
  3. R

    Multiple DNS over TLS (DoT) per device or network?

    I currently have a DoT server configured on my RT-AC68U (Merlin) router's WAN, and all clients on my network are using it without any issues. However, I now need certain clients to use a different DoT server. As configuring DoT directly on these devices is not possible, I need help setting up a...
    • RT-N66U
    • Thread
    • dns over https dns over tls dnscrypt doh dot stubby unbound
    • Replies: 29
    • Forum: Asuswrt-Merlin
  4. J

    “new” (2 months old) Quad9 DNS protocol test

  5. hifiwifi

    WAN DNS (DNS Server vs DoT)

    Looking at the WAN page, I understand I can assign the DNS instead of just getting it from my ISP. My question is how does this work with selecting "DNS-Over-TLS" under "DNS Privacy Protocol"? It would seem that these settings would compete with each other? Thanks.
  6. wordlesswind

    DNS over TLS & EDNS Client Subnet

    Hello, I note that Asuswrt-Merlin has disabled ECS. https://www.snbforums.com/threads/beta-asuswrt-merlin-384-11-beta-is-now-available.56325/page-32#post-487021 But is this disabled by setting the subnet to 0.0.0.0/0? Because I have experienced problems with the use of. dig...
  7. S

    DoT servers Surfnet/Sinodun IPv4&IPv6 (port 443) were disabled

    DNS-over-TLS servers Surfnet/Sinodun 1 and Surfnet/Sinodun 2 IPv4&IPv6 (port 443) were disabled, should we replace them with something similar DoT with port 443? Right now only Neutopia works there.
  8. gspannu

    Unbound Making Unbound into a DoT/DoH (rather than plain dns) for clients

    Could anyone please assist in modifying the unbound.conf file to enable DoT/DoH for downstream clients? I am guessing, the lines I need to add are something like the following: interface: 127.0.0.1@853 tls-service-key: "path/to/privatekeyfile.key" tls-service-pem: "path/to/publiccertfile.pem"...
  9. Bieniu

    [Fork] [Asuswrt-Merlin 374 LTS] How to use custom DoT servers

    I have AC-66U with 374.43_52E7j9527 and I want it to use my NextDNS DoT server. How can I add custom DoT server like this xxxxx.dns.nextdns.io?
  10. iJorgen

    Is there a way to set DNS-server priority in Dnsmasq when using DoT?!

    I have setup the two NextDNS servers under WAN with DNS-over-TLS. If looking at "/etc/resolv.conf" it now points to localhost with the entry "nameserver 127.0.0.1". All good so far and it seems to be using Round Robin. I then tried adding these two lines in "dnsmasq.postconf" and with the...
  11. wordlesswind

    Solved [Question] About DoT ECS

    Hello guys, I encountered a problem. I configured DoT on my RT-AC86U using dot.pub. When I used dig '@RT-AC86U' +dnssec o-o.myaddr.google.com TXT to query ECS information, I found that the ECS address was incorrectly configured as a /0 address. This is wrong and will be considered 0.0.0.0/0...
  12. P

    DoH / DoT support?

    Sorry if it has been asked but I am lately not up to date with Asus firmware features. Is there a native DoH / DoT support on ASUSWRT official firmware or flashing Merlin is required?
  13. I

    RT-AX58U DNS-over-TLS (DoT) issue with Guest Networks

    I ran into an issue with the RT-AX58U (ASUSWRT 3.0.0.4.386_45898, No AiMesh) router using DNS-over-TLS (DoT Strick or Opportunistic) running over any Guest Network (Guest 2 is set to ap_isolate=0). I am using Google TV and Sony Bravia TV devices. When starting a video from Hulu or HBOMax, the...
  14. G

    Help with DNS encryption configuration

    Hello, I'm trying to set up the DNS encryption on my RT-AX86U using Cloudflare. However, I just can't get 1.1.1.1/help to recognize that I'm connected to 1.1.1.1 or that I'm using either DoT or DoH (DoH when active in Mozilla). I also want my browser to always use Cloudflare's DoH, meaning it...
  15. N

    Why Router manufacturers do not implement DoH/DoT in firmware?

    I understand I can use merlin firmware for DoH/DoT, but just out of curiosity. It'll be a really nice security feature, which they can brag about. Its not like that they'll have to implement it from scratch, clients already exist. All they need to do is make sure it works with their firmware.
  16. N

    What's the point of DoH/DoT

    I've been running Pihole with cloudflare doh proxy for sometime now. While it works ok, I've been considering ditching it for Asus-merlin built in dot with nextdns. But does DoH/DoT makes any difference. My ISP can still see the IPs i am communicating with and can do reverse dns lookup to see...
  17. wordlesswind

    DoT usage problem

    Hello guys, I encountered a problem when using DoT: I cannot use a DoT, but the others are working fine. I have no problems when using kdig to test, but I cannot use it in R7000 (Firmware 384.19 by Xwrt-Vortex, CEF 1.3.0.7). I don't know how to test in Router, can someone help me? I know I...
  18. C

    dnsmasq --all-servers

    I want my router (ac68u 384_19) to query all dns and use the first one. DNSmasq allows this behaviour however I cannot find a way to do this. I tried fiddling with the dnsmasq.conf file but no luck. I use DoH proxy (https://openwrt.org/docs/guide-user/services/dns/doh_dnsmasq_https-dns-proxy) on...
  19. J

    DNS over TLS don't appear to be working?

    RT-AC86U w/ 384.15, RT-AC68U aimesh node 384.15, diversion, uidivstats, Skynet, scribe, uiscribe, conmon, spdMerlin, scmerlin, nsrum I am hoping someone will take a look at my settings screenshot and tell me what I need to change. I am a little confused about some of the posts that I've been...
  20. dave14305

    Comcast/Xfinity Encrypted DNS

    For those of us subscribing to Comcast Xfinity internet service, I came to learn today of their encrypted DNS initiatives. Namely, they are beta testing DoH and DoT resolvers. DoH: https://doh.xfinity.com/dns-query DoT: dot.xfinity.com Ref...
Top