Hello. All the tutorials on using dns over https with pihole fail on my standard install. I'm thinking that they are written for < version 5. Would anyone know if version 5 could have issues with the standard tutorials on implementing dns over https on pihole, or alternatively, are there any tutorials on using dns over https with Version 5 anywhere?
Thanks, that's good to know. Any known issues with Firefox vs other browsers when setting up DNS over https in pihole? I know that firefox has the ability to do do DNS over Https but I'm running into difficulties such that deactivating DoH in Firefox and using the DNS over HTTPS settings as provided by cloudflared going to 1.1.1.1 never shows DoH working.
Interesting. Can you elaborate on why encrypted DNS doesn't improve privacy? I guess you mean that somewhere, somehow along the digital request there is a record of the requested domain and that's the "gotcha!.
You encrypt your DNS traffic. Hidden from ISP. After you obtain the IP, you immediately ask your ISP to fetch that IP, in clear text. They can figure out where you are browsing with not much effort. Meantime, your upstream DNS provider has your complete DNS history,to do with it what they please.
A better privacy solution, in my opinion, is running your own recursive resolver and eliminating the third party DNS service entirely. You are in control of your own resolver, no filtering, no redirecting, and you keep your history local.
when using unbound on raspberry pi ONLY the custom 1 box should be checked?
When I do that and then visit dnsleaktest.com my dns server(s) are listed as spectrum, which I thought this was supposed to bypass. . .
If I ALSO click cloudflare on the pihole dns settings page then I'll see cloudflare as my dns servers at dnsleaktest.com.
Is that normal behavior? Sounds like the querries are going to either my isp provider if nothing is checked and if I check an option then the dns querries are going there, which defeats the purpose of having unbound locally, no?
Correction: with unbound running and only the custom box checked I get NO response from dnsleaktest.com I guess it can't find my raspberry pi.
However, as I'm also on a wide area network using a mesh network, when I connect to that network and only the custom box is checked, I will see the dns servers that the wide area mesh network uses.
FYI: I did a rebuild of the raspberry pi 3 b+ with a new install of pihole about 3 hours ago. Installed unbound. everything was working normally. Now, for no reason at all, ads are showing up again on sites where the pihole was succesfully blocking.