Questions about the interaction of DNS filtering under AI Protection and custom DNS settings under LAN : DHCP.
Where is the best place to set a network wide DNS setting if I am using an outside DNS service? In the DHCP settings or the AIProtection DNS Filter page? Both seem to allow for it. If I set in both which take precidence?
Also, if I want to set a service that allows DNSSEC, how does this work with a AIProtection settings? Does it try to enforce DNSSEC even if I have a custom DNS specified for a particular device in DNS Filter?
Finally, the Advertise Router's IP in addition to user specified DNS - what does this mean in practical terms? If the end user device is using dns settings rotation and goes to the router for DNS as opposed to the custom settings - what DNS service will end up being used? The router DNS received from upstream or the custom settings I have specified.
Thanks!
Where is the best place to set a network wide DNS setting if I am using an outside DNS service? In the DHCP settings or the AIProtection DNS Filter page? Both seem to allow for it. If I set in both which take precidence?
Also, if I want to set a service that allows DNSSEC, how does this work with a AIProtection settings? Does it try to enforce DNSSEC even if I have a custom DNS specified for a particular device in DNS Filter?
Finally, the Advertise Router's IP in addition to user specified DNS - what does this mean in practical terms? If the end user device is using dns settings rotation and goes to the router for DNS as opposed to the custom settings - what DNS service will end up being used? The router DNS received from upstream or the custom settings I have specified.
Thanks!