Comments

6 comments

  • Avatar
    Firewalla

    This definitely will be an issue to network layer control, especially a problem for classification.   Blocking this should not be too hard, and we also likely to add an additional service to divert DNS to over HTTPS (after classification is done)

    1
    Comment actions Permalink
  • Avatar
    Wacey

    Any updates on what currently happens with DoH traffic? What features do we lose?

    I found a couple articles about DNS over HTTPS through pi-hole and I see it's possible to install pi-hole on the Firewalla but haven't looked at the downsides of this.

    https://docs.pi-hole.net/guides/dns-over-https/

    https://visibilityspots.org/dockerized-cloudflared-pi-hole.html

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    We should be able to make DNS over HTTPS available for sure.  So you should have it natively.   Will do a facebook poll and see if people care about it. 

    1
    Comment actions Permalink
  • Avatar
    Firewalla

    BTW, we did a poll on Facebook, so very likely we will be integrating DNS over HTTPS on firewalla very soon.  Thank you for bring up the feature

    0
    Comment actions Permalink
  • Avatar
    Jonathan Worrel

    Can you also consider integrating DNS over TLS on Firewalla as well? I would prefer that protocol instead. Thank you!

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    There are three of them, DNSCrypt, DNS Over TLS, DNS over HTTPS.   And who we pick ... not sure yet :)

    0
    Comment actions Permalink

Please sign in to leave a comment.

Powered by Zendesk