PFsense DNS over TLS



  • Re: Setup DNS over TLS on pfSense 2.4.4 p2 - Guide

    Just wanted to point out that this old post worked perfectly for me on 2.4.5-RELEASE-p1 and say TY to the author of said post.

    It took about 5 minutes to configure/test this configuration.

    Cheers All



  • It should be noted that an additional field has been added to the System > General page for the DNS servers since that topic was created, explicitly for the purpose of DNS over TLS. The hostname field is where you enter the hostname of the DNS server(s) that will be returned as part of the TLS encryption. Without that field, pfSense is just assuming that whoever is responding to your DoT requests is in fact the server it should be talking to, without any validation being performed.

    For Quad9, you will want to use this for the hostname: dns.quad9.net


Log in to reply