DOH goes over port 443 using https, impossible to block (unless you want to blacklist all possible URLs that might serve DNS) so cannot be redirected at network level, like with classic DNS, and uses SSL encryption so cannot be “sniffed”.
While it seems good for your privacy, it’s a dream for Google and such, where PiHoles and such DNS blockers will be useless…
Shimitar@downonthestreet.eu 1 month ago
DOH goes over port 443 using https, impossible to block (unless you want to blacklist all possible URLs that might serve DNS) so cannot be redirected at network level, like with classic DNS, and uses SSL encryption so cannot be “sniffed”.
While it seems good for your privacy, it’s a dream for Google and such, where PiHoles and such DNS blockers will be useless…
Zwuzelmaus@feddit.org 1 month ago
No.
My question is: How can I avoid that my android devices bypass my DNS?
Shimitar@downonthestreet.eu 1 month ago
Set a custom private DNS with your dns