Hacker News new | ask | show | jobs
by xaduha 1130 days ago
> I am the network admin here. Please follow my rules.

In an organisation - sure. But sometimes countries act like a giant man-in-the-middle redirecting/blocking forbidden sites e.g. Russia. Most popular DNS servers like 1.1.1.1 and 8.8.8.8 are forced to comply.
1 comments
egberts1 1130 days ago
That's what DoT is for, not DoH.

(Looking at you, Great Firewall.)

link
xaduha 1130 days ago
Neither will work by themselves as far as censorship goes because it's not just DNS, but either can solve some minor geofencing annoyances like Qt blocking access to https://download.qt.io or Spotify pointing their podcast CDN to 127.0.0.1 when using major DNS providers.
link
egberts1 1129 days ago
Yea, geofencing on IP or by AS are often done.

Least you can get the DNS resolver working.

link