Menu
What's new
By:
Filters Better Search

Using dnssec with DNS over TLS?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

R

Red Dragon

New Around Here
I've setup "DNS over TLS" with Quad9 on my AX58 router. Should I also enable dnssec? Also should I change the "DNS over TLS" Profile to Strict?
 
Yes, set it to Strict.

No, do not enable DNSSEC at the router level. You want Quad 9 to incur the overhead of DNSSEC between them and the DNS servers. The results can come back through a bit set in a non-DNSSEC response. Validate that this is working by visiting DNSSEC test site http://dnssec.vs.uni-due.de/
 
Your call to enable DNSSEC. The way it is set up in the Merlin firmware uses dnamasq to validate the source. Stubby could also be used but has no GUI setup to do that. DNSSEC is an added security measure.
And the validation sites for DNSSEC may not give true results.
Quad9 is good for DoT and DNSSEC.
 
bbunge said:
Your call to enable DNSSEC. The way it is set up in the Merlin firmware uses dnamasq to validate the source. Stubby could also be used but has no GUI setup to do that. DNSSEC is an added security measure.
And the validation sites for DNSSEC may not give true results.
Quad9 is good for DoT and DNSSEC.
Click to expand...
+1, Quad9 is good for DoT and DNSSEC. working well here.
 
You must log in or register to reply here.

Similar threads

R
Would any of this make my browsing more secure? (WAN DNS settings)
2
Replies
20
Views
1K
aru
aru
V
DNS server vs DNS-over TLS server list
Replies
3
Views
455
Tech9
Tech9
D
Solved Windows 11 updates won't download attempted disabling router settings.
Replies
18
Views
1K
DJones
D
D
WAN DNS Setting: Using different DoT servers
Replies
19
Views
1K
drinkingbird
drinkingbird
X
DNS Director - question
Replies
6
Views
623
Xboxsx4life
X
Similar threads
Thread starter Title Forum Replies Date
T Using DOT DNS breaks ECS Asuswrt-Merlin 9
K Using Asus XT8 with DS-Lite internet provider Asuswrt-Merlin 0
U multiple entries using ‘arp-scan’ but not reflected in ‘arp’ command Asuswrt-Merlin 3
F cru not using sytem date Asuswrt-Merlin 10
GShlomi Using Dual-WAN failover but using the passive with a rule Asuswrt-Merlin 0
J Correctly using VPN Director? Asuswrt-Merlin 2
F NordVPN with Asus 88XU Pro UDP connection bandwidth limit when using Geforce now Asuswrt-Merlin 0
D Guest network with intranet access v. using the main network Asuswrt-Merlin 4
R DNS filtering when using cloudflare DNS? Asuswrt-Merlin 4
P Creating a VPN network using VPS and RT-AX68U Asuswrt-Merlin 24

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 914 (members: 20, guests: 894)
Top