I want pihole to talk encrypted to the upstream dns server. I don't actually car... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		unsnap_biceps 5 months ago \| parent \| context \| favorite \| on: Pi-hole v6 I want pihole to talk encrypted to the upstream dns server. I don't actually care if my devices talk encrypted to pihole. I just don't want to leak dns requests to my isp. If there's a way to do this without DoH or DoT, I'd happily learn more about it.

bjoli 5 months ago [–]

DoT has a standard port, meaning blocking (conforming) requests simple. DoH uses 443.

Nothing says clients need to confirm to the port requirements, but most companies will be lazy and assume 853 will work.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact