|
|
|
|
|
|
by TheHappyOddish
1254 days ago
|
|
|
What if they use a lesser known DOH server, or run their own in EC2? My setup is similar (hairpin NAT for DNS to rewrite UDP 53 to my own server, seperate VLAN), but I also have squid set up (whitelist only) with TLS bumping, and have installed my root CA on the TV. The ipset method is good thinking, but you're playing cat and mouse. |
|
|