DNS Proxy...
Can we get a run down on how dns proxy works?
Do we have to set the VLAN DNS settings to AUTO?
Thanks,
KG!
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Yes. Auto in lan/vlan config.
Point DNS Proxy to 1.1.1.1 DoT or DoH and test it with opening https://1.1.1.1/help on the client.
It will clearly tell you if you're connected via DoT or DoH to 1.1.1.1 using router's DNS Proxy.
- Copy Link
- Report Inappropriate Content
If you have the local DNS Server, you can choose Manual to type in your DNS Server.
Take a look:
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Hello @KimcheeGUN ,
This new DNS Proxy feature is used to encrypt DNS messages.
Actually it is very clear in the "Help" Tab, please refer to this:
If you have any other questions on this feature, please feel free to reply here with more details.
- Copy Link
- Report Inappropriate Content
thanks for the reply!
I actually got it entered and enabled. How do I point the clients to it? Set the dns servers on auto in vlan/lan configs?
- Copy Link
- Report Inappropriate Content
Yes. Auto in lan/vlan config.
Point DNS Proxy to 1.1.1.1 DoT or DoH and test it with opening https://1.1.1.1/help on the client.
It will clearly tell you if you're connected via DoT or DoH to 1.1.1.1 using router's DNS Proxy.
- Copy Link
- Report Inappropriate Content
To link the DNS proxxy with the LAN DHCP DNS setting is a bad idea. For example you have a domain in your local network with a domaincontroller which also have a internal DNS server. The clients need to point to the internal DNS. The internal DNS need to point to the gateway which forward the reguests via encrypted dns. Would make more sense to link it with wan settings and also optimize the ergonomics of the cloud frontend. Not clear how to handle this setting even with help text. And a button for testing would be nice. An option in the advanced section would fit perfect.
- Copy Link
- Report Inappropriate Content
@Hank21 I have the newest 5.12.x Omada Controller software (OC200) but I don't see this option. Is this because I have ER605v1?
- Copy Link
- Report Inappropriate Content
You need a router firmware update that supports this... Do you self a favor, return the V1, and get a ER605 V2
- Copy Link
- Report Inappropriate Content
Information
Helpful: 1
Views: 3733
Replies: 8
Voters 0
No one has voted for it yet.