DoH and DoT: Difference between revisions

DoH and DoT (view source)

Revision as of 13:48, 4 May 2020

919 bytes added , 4 May 2020

m

→‎Using DOH with curl

AA-Andrew

autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators

12,270

edits

Revision as of 02:59, 30 September 2019 (view source) CecilWard (talk \| contribs) m (→‎Testing if it’s working: Typo) Tags: Mobile edit Mobile web edit ← Older edit		Revision as of 13:48, 4 May 2020 (view source) AA-Andrew (talk \| contribs) m (→‎Using DOH with curl) Newer edit →
(4 intermediate revisions by 2 users not shown)
==Chrome== DoH is expected to be a feature in Chrome version 78 or 79. https://blog.chromium.org/2019/09/experimenting-with-same-provider-dns.html ==Android (DoT)== #Search for “DNS” in settings search bar #Go to PrivateDNS setting screen #Tap ~~'Private~~‘Private DNS provider ~~hostname',~~hostname’ and ~~Set~~set: dns.aa.net.uk #Click Save ==Stubby== [https://dnsprivacy.org/wiki/display/DP/DNS+Privacy+Daemon+-+Stubby Stubby] is an application acts as a local DNS resolver on port 53 but does its lookups over TLS (DoT) which means it can act as a DNS proxy for your whole machine. Adding our servers should be enough: - address_data: 2001:8b0::2022 tls_auth_name: "dns.aa.net.uk" - address_data: 2001:8b0::2023 tls_auth_name: "dns.aa.net.uk" - address_data: 217.169.20.22 tls_auth_name: "dns.aa.net.uk" - address_data: 217.169.20.23 tls_auth_name: "dns.aa.net.uk" And once running, test with dig +short @::1 encrypted-dns-tester.aa.net.uk 81.187.39.93 If encrypted-dns-tester.aa.net.uk resolves to 81.187.30.81 then it wasn't using our DoT servers. ==Using DOH with curl== curl --doh-url https://dns.aa.net.uk/dns-query https://www.aa.net.uk or curl --doh-url https://dns.aa.net.uk/dns-query https://encrypted-dns-tester.aa.net.uk This will download the www.aa.net.uk webpage and would have used the DOH server to resolve the DNS.