DNS over TLS over a PPPOE connection(Steve Modem/Virgin)

pytra

New here. Cant seem to get DOT to work. Got a steve Modem which i have set manual DNS towards Quad9's, everything else turned off including wifi.

Mini pc running FreeBSD/pfsense, connected over a PPPOE connection to the modem(pf/WAN to Steve/LAN)

• All DNS records on General Setup are Changed

• System Information panel Displays: 127.0.0.1, 9.9.9.9, 149.112.112.112, 2620:fe::fe, 2620:fe::9

• DNS lookup for 127.0.0.1 renders above name servers

• States Summary:
  - (By Source IP -> fe80::2e0:66ff:feeb:35c0, WAN interfaceIP, 192.168.1.135, 192.168.2.10)
  - (By Destination -> ff02::1, 13.225.63.50, ISPIP, (Gateway-WAN_PPPOEIP*), 149.112.112.112, 192.168.2.1)

• States display a mixture of WAN*IP interacting with publicip WAN:PORT (192.168.2.10:58866) -> PUBIP:27020 and other interacting with 9.9.9.9 or secondary 149.112.112.112 but both with this FIN_WAIT_2:FIN_WAIT_2 state. Most other publicip dealing have established status

• DNS Resolver: Enabled, Responding to SSL/TLS, Forwarding Mode enabled, Use of SSL/TLS for outgoing queries. With status rendering 2620:fe::9@853, 149.112.112.112@853 for Cache speed and stats

Whether through pfsense or the Cloudlfare check both yield failed results. End of the road with steve bs.. its a ADSL 2 micro ethernet cables i believe, what would be a gd solution? And would it be possible to enforce DOT through firewall as well? any help would be greatly appreciated