is it possible to setup DoH in netbird?
i host my own adguard instance which i only want to accessable though https. so is it possible to force clients to use a https dns server? cant set it in the interface.
3 Replies
I mean you could just set the DNS to use port 443? Force DoH that way?
The thing is that DoH is DNS over HTTPS, this also means it uses the TCP protocol https.
Netbird (and/or the computers we use) use UDP for requests
So while yes, you can set it to 443. It would need a UDP response for DNS. And not HTTPS
Aka, different protocol & different system all together.
Also, the point of DoH/DoT is to encrypt the DNS request packets, but if they are going through netbird, then they are already encrypted
Circling back, you should set up a forwarder server that you can use for your DNS queries (like technitium or similar), then do DoT/DoH from there to your adguard instance.
Then i think you would have encryption all the way(Netbird to encrypt from Devices -> DNS Server, then DoH from Technitium -> Adguard instance