logoalt Hacker News

gruezlast Sunday at 1:19 AM2 repliesview on HN

>ODoH support (upstream or as an endpoint directly)

Is there client support without installing third party apps? Such apps usually use a VPN connection to operate, which means you can't use another VPN at the same time as oDOH, which is a major disadvantage.


Replies

jeroenhdlast Monday at 8:27 AM

dnscrypt supports ODoH so any device capable of running that will do. Other than that, you'll need individual app support (like browsers for instance).

If you want support on mobile devices without VPN-like apps, I think the best way to set it up would be to run something like a PiHole or equivalent, configure dnscrypt as your upstream, and then set up DoH/DoT from your phone to your DNS server. Mobile phones can do DoT/DoH natively already, but I don't think any commercial mobile OS has extended support to ODoH.

In theory you may be able to run dnscrypt in the background and point your DNS resolver to that, but I doubt it'll work reliably.

stop50last Sunday at 12:12 PM

Firefox has it builtin, some sub resolvers too, Android has it under Private internet since android 9, that tries DoT and DoH.