@nixCraft I want to at home for sure, unfortunately the Ubiquiti EdgeRouter doesn’t support it out of the box without all sorts of hacks and it’s not getting any new feature updates anymore… For work we tend to run our own recursive resolver so it’s not (yet) an option.
@stephengentle Get a Raspberry PI or another low-cost computer. Install the dnscrypt-proxy/stubby and configre the DHCP server to use that as a DNS server. problem solved.
@nixCraft@stephengentle That's exactly what I did (also installed pi-hole, so pi-hole is the DNS server pushed through DHCP, and it uses the dnscrypt-proxy as upstream, that then uses DNS-over-? I don't remember what kind of encrypted protocol is used 🫣)
DNS over TLS is way too slow and DNS over HTTPS is also slow and it requires a Web Server running, way too many layers for a simple secure DNS server. Thanks TCP.
EDIT: Oh, and if you have slow internet, it will be way worse because the latency is increased like x10 more lol
If you want to use DoQ (which is the most appropriate one IMO because it uses UDP and response time is very close to just using Normal DNS without encryption) use https://github.com/AdguardTeam/dnsproxy , it's very simple, there is also RouteDNS but it's way to advanced and more appropriate for servers because of it's extended configuration.
Add comment