DNS over HTTPS. It allows encrypted DNS lookup with a URL, which allows for url-based customizations not possible with traditional DNS lookups (e.g. the server could have /ads or /trackers endpoints so you can choose what to block).
DNS Over TLS (DoT) is similar, but it doesn’t use URLs, just IP addresses like generic DNS. Both are encrypted.
If Pi-Hole starts supporting DoH out-of-the-box, I’ll happily switch from AdguardHome.
https://docs.pi-hole.net/guides/dns/cloudflared/
Is this not that, or is Cloudflare on the naughty list these days?
No native support for DoH in Pi-Hole yet. Additional setup is required to enable it on Pi-Hole[1].
[1] https://docs.pi-hole.net/guides/dns/cloudflared/
I use it in this configuration.
It works well except, if you lose connection temporarily the cloudflared stops responding until some, long (60s or so) timeout period.
A minor annoyance, I usually just manuirestart the service… but I cannot find the setting that is causing this.
What is DoH?
DNS over HTTPS. It allows encrypted DNS lookup with a URL, which allows for url-based customizations not possible with traditional DNS lookups (e.g. the server could have /ads or /trackers endpoints so you can choose what to block).
DNS Over TLS (DoT) is similar, but it doesn’t use URLs, just IP addresses like generic DNS. Both are encrypted.
DNS Over Https
Not to be confused with
DNS Over TLS
It’s just a way of keeping your ISP from reading your DNS requests.
Not just reading. A while back, some ISPs moved towards replacing DNS queries to known DNS servers with their own replies.
Yeah, I still want to be over ISPs replacing DNS failures with their own search engines been happening for decades