DNS over HTTPS

Follow

Jim Regler

• September 11, 2019 13:46

With this coming rapidly what's the plan for blocking this traffic?

0

• 

  Firewalla

  • September 11, 2019 15:53

  This definitely will be an issue to network layer control, especially a problem for classification.   Blocking this should not be too hard, and we also likely to add an additional service to divert DNS to over HTTPS (after classification is done)

  1

  Comment actions Permalink
• 

  Wacey

  • November 13, 2019 16:20

  Any updates on what currently happens with DoH traffic? What features do we lose?

  I found a couple articles about DNS over HTTPS through pi-hole and I see it's possible to install pi-hole on the Firewalla but haven't looked at the downsides of this.

  https://docs.pi-hole.net/guides/dns-over-https/

  https://visibilityspots.org/dockerized-cloudflared-pi-hole.html

  0

  Comment actions Permalink
• 

  Firewalla

  • November 13, 2019 18:56

  We should be able to make DNS over HTTPS available for sure.  So you should have it natively.   Will do a facebook poll and see if people care about it. 

  1

  Comment actions Permalink
• 

  Firewalla

  • November 15, 2019 00:32

  BTW, we did a poll on Facebook, so very likely we will be integrating DNS over HTTPS on firewalla very soon.  Thank you for bring up the feature

  0

  Comment actions Permalink
• 

  Jonathan Worrel

  • November 16, 2019 05:51

  Can you also consider integrating DNS over TLS on Firewalla as well? I would prefer that protocol instead. Thank you!

  0

  Comment actions Permalink
• 

  Firewalla

  • November 16, 2019 06:07

  There are three of them, DNSCrypt, DNS Over TLS, DNS over HTTPS.   And who we pick ... not sure yet :)

  0

  Comment actions Permalink

Please sign in to leave a comment.