Need clarification on PiHole for DNS Over TLS
by tuxthegreat from LinuxQuestions.org on (#55EWE)
I have a guide on how to configure Pi Hole for DNS Over TLS. There is a config file which I am having trouble understanding, maybe you guys can help. Here is the config file
Code:## DNS Over TLS, Simple ENCRYPTED recursive caching DNS, TCP port 853
## unbound.conf -- original at https://calomel.org/unbound\_dns.html
## tweaks by bartonbytes.com
server:
access-control: 127.0.0.0/8 allow
cache-max-ttl: 14400
cache-min-ttl: 600
do-tcp: yes
hide-identity: yes
hide-version: yes
interface: 127.0.0.1
minimal-responses: yes
prefetch: yes
qname-minimisation: yes
rrset-roundrobin: yes
ssl-upstream: yes
use-caps-for-id: yes
verbosity: 1
port: 5533
#
forward-zone:
name: "."
forward-addr: 9.9.9.9@853 # quad9.net primary
forward-addr: 1.1.1.1@853 # cloudflare primary
forward-addr: 149.112.112.112@853 # quad9.net secondary
forward-addr: 1.0.0.1@853 # cloudflare secondary
It states that you can use cloudflare for upstream dns servers, how do I cofigure the conf file to make use of cloudflare and not quad9.net. What exactly would I have to input into the conf file. Here is the guide I am talking about https://bartonbytes.com/posts/config...-dns-over-tls/ The statement *The config file includes the Quad9 and Cloudflare upstream DNS servers, which you can change or add to if necessary.*confuses me, change them where? In the web UI or in the conf file ?
Code:## DNS Over TLS, Simple ENCRYPTED recursive caching DNS, TCP port 853
## unbound.conf -- original at https://calomel.org/unbound\_dns.html
## tweaks by bartonbytes.com
server:
access-control: 127.0.0.0/8 allow
cache-max-ttl: 14400
cache-min-ttl: 600
do-tcp: yes
hide-identity: yes
hide-version: yes
interface: 127.0.0.1
minimal-responses: yes
prefetch: yes
qname-minimisation: yes
rrset-roundrobin: yes
ssl-upstream: yes
use-caps-for-id: yes
verbosity: 1
port: 5533
#
forward-zone:
name: "."
forward-addr: 9.9.9.9@853 # quad9.net primary
forward-addr: 1.1.1.1@853 # cloudflare primary
forward-addr: 149.112.112.112@853 # quad9.net secondary
forward-addr: 1.0.0.1@853 # cloudflare secondary
It states that you can use cloudflare for upstream dns servers, how do I cofigure the conf file to make use of cloudflare and not quad9.net. What exactly would I have to input into the conf file. Here is the guide I am talking about https://bartonbytes.com/posts/config...-dns-over-tls/ The statement *The config file includes the Quad9 and Cloudflare upstream DNS servers, which you can change or add to if necessary.*confuses me, change them where? In the web UI or in the conf file ?