PFsense DNS over TLS
Just wanted to point out that this old post worked perfectly for me on 2.4.5-RELEASE-p1 and say TY to the author of said post.
It took about 5 minutes to configure/test this configuration.
virgiliomi last edited by virgiliomi
It should be noted that an additional field has been added to the System > General page for the DNS servers since that topic was created, explicitly for the purpose of DNS over TLS. The hostname field is where you enter the hostname of the DNS server(s) that will be returned as part of the TLS encryption. Without that field, pfSense is just assuming that whoever is responding to your DoT requests is in fact the server it should be talking to, without any validation being performed.
For Quad9, you will want to use this for the hostname: dns.quad9.net