SnitchDNS icon indicating copy to clipboard operation
SnitchDNS copied to clipboard
verified publisher icon ctxis

DNS over HTTPS

Open sadreck opened this issue 4 years ago • 5 comments

Not sure if this is actually needed, but it'd be a good feature to add.

sadreck avatar Mar 11 '21 20:03 sadreck

Definitely would be great for showing DNS tunneling over DNS over HTTPS

johnneerdael avatar Jun 24 '21 15:06 johnneerdael

This can be achieved even easier by allowing custom ports in the DNS forwarding section. image Eg. I could just forward to my local cloudflared instance on port 5053 which does the DOH.

rwjack avatar Feb 25 '22 16:02 rwjack

I don't believe that can be done because the Python library I'm using (Twisted Matrix) doesn't support DNS over HTTPS and will assume that it's forwarding the query to a standard DNS server.

Unless you mean that the service running on the target port does the conversion from DNS to DoH?

sadreck avatar Feb 25 '22 16:02 sadreck

Unless you mean that the service running on the target port does the conversion from DNS to DoH?

That is exactly what I mean. Twisted should just be able to forward a plain DNS request to a specified IP:PORT mapping, instead of just an IP mapping.

This is the image I wanted to paste in my upper comment: image

rwjack avatar Feb 25 '22 17:02 rwjack

I've implemented support for IP:Port, but I'll keep this ticket open for when I have time to implement actual DoH

sadreck avatar Feb 25 '22 18:02 sadreck