Home

Forums

Stories

Knowledge Base

Business Community > All Threads > Force DoH for all client

< All Threads

Force DoH for all client

damianstelmach

Sunday - last edited Yesterday

Posts: 9

Helpful: 1

Solutions: 0

Stories: 0

Registered: 2024-01-13

Force DoH for all client

Sunday - last edited Yesterday

Model: ER706W

Hardware Version: V1

Firmware Version: 1.1.2 Build 20240726 Rel.77184(4555)

I wanted to force in router-level DOH support for the entire local network, but unfortunately without success. Previous actions:

1. Launching the DoH service on a router with two addresses (cloudflare and Quad4).

2. Unsuccessful blocking of port 53 on the router. Adding a BLOCK rule on port 53 for all directions and all IPs does not work.

Thank you for your help.

1 Accepted Solution

Clive_A

Yesterday - last edited Yesterday

Posts: 6462

Helpful: 3262

Solutions: 1533

Stories: 0

Registered: 2023-06-09

Re:Force DoH for all client-Solution

Yesterday - last edited Yesterday

Hi @damianstelmach

Thanks for posting in our business forum.

damianstelmach wrote

I wanted to force in router-level DOH support for the entire local network, but unfortunately without success. Previous actions:

1. Launching the DoH service on a router with two addresses (cloudflare and Quad4).

2. Unsuccessful blocking of port 53 on the router. Adding a BLOCK rule on port 53 for all directions and all IPs does not work.

Thank you for your help.

You cannot force DoH. DoH is an individual feature on each device that requires you to manually config on every single device.

The router can query the upstream DoH server but it does not DoH in the LAN. The LAN is still using UDP 53, plain text.

If you want DoH and secure DNS in LAN, configure each one of them manually with a DoH and that bypasses the router.

No such router can force DoH on its clients.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update! ☛Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.

Recommended Solution

1 Reply

Clive_A

Yesterday - last edited Yesterday

Posts: 6462

Helpful: 3262

Solutions: 1533

Stories: 0

Registered: 2023-06-09

Re:Force DoH for all client-Solution

Yesterday - last edited Yesterday

Hi @damianstelmach

Thanks for posting in our business forum.

damianstelmach wrote

I wanted to force in router-level DOH support for the entire local network, but unfortunately without success. Previous actions:

1. Launching the DoH service on a router with two addresses (cloudflare and Quad4).

2. Unsuccessful blocking of port 53 on the router. Adding a BLOCK rule on port 53 for all directions and all IPs does not work.

Thank you for your help.

You cannot force DoH. DoH is an individual feature on each device that requires you to manually config on every single device.

The router can query the upstream DoH server but it does not DoH in the LAN. The LAN is still using UDP 53, plain text.

If you want DoH and secure DNS in LAN, configure each one of them manually with a DoH and that bypasses the router.

No such router can force DoH on its clients.

Information

Helpful: 0

Replies: 1

Force DoH for all client

Force DoH for all client

Information

Voters 0

Tags