Hacker News new | ask | show | jobs
by zeroflow 1476 days ago
There is a workaround by enabling NAT and forcing all traffic to piHole / pfblockerNG

https://docs.netgate.com/pfsense/en/latest/recipes/dns-redir...
1 comments
rsync 1476 days ago
How does this help with DoH?

If the dns request is over 443 and the DoH server is the same host as the served resource, what can be done ?

link
jamiek88 1476 days ago
Could you MITM and inspect for dns request packets?
link
rsync 1476 days ago
Yes - I postulated this elsewhere in this thread.

The next step in the arms race would then be to implement DoHoH.

Sigh.

link