I had used DoT previously on my Netgear router with a modified stock firmware with Stubby built-in. (Voxel firmware).
However, I have Kong's DD-WRT builds on my Netgear R7800 now, and would like to use DNS over TLS with Google DNS.
I've read online about Stubby, Unbound and DNSMasq. Some say Unbound is required, some say it isn't. I also read that Stubby dies immediately after being launched.
How would I go about getting DNS over TLS enabled on my router, and is there any chance of native support being added to DD-WRT in the future?
Thanks _________________ Active devices:
Netgear R7800 - Stock v1.0.2.68
Linksys EA8500 - OpenWRT 19.07.1
ASUS RP-AC68U - 3.0.0.4.382.40019
Thanks, I did come across that yesterday before posting the thread, but I got nowhere using the instructions of that thread.
Eventually I did get stubby and getdns installed, and sort of working, but I may have screwed up the configuration with DNSMasq since nothing worked after that.
Will try again on Sunday when everyone is sleeping in so nobody in the house is affected by it. _________________ Active devices:
Netgear R7800 - Stock v1.0.2.68
Linksys EA8500 - OpenWRT 19.07.1
ASUS RP-AC68U - 3.0.0.4.382.40019
Joined: 16 Nov 2015 Posts: 6446 Location: UK, London, just across the river..
Posted: Fri Jan 11, 2019 7:39 Post subject:
all 1.1.1.1 and 9.9.9.9 support both DoH and DoTls...
only 8.8.8.8 was late... if you want to use it on browser level for PC better use FFox as DoH is emended
on the browser level...i dearly hope it will be implemented on router level soon..but in general
not even one of the commercial browsers uses plain text
for DNS lookups anymore min is TLS handshake... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Joined: 16 Nov 2015 Posts: 6446 Location: UK, London, just across the river..
Posted: Wed Sep 11, 2019 9:54 Post subject:
nope DNS over Tls is not supported by default...
you'd need to use either "Stubby (getdns), or Unbound"
than you need a USB port on your router and install Entware
DNScrypt is doing DoH and DNScrypt...also via Entware..
package manager...for more details about those check my sig
those 2 links there... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913