Is it possible to run DNS requestets through DoT and not DoH
I'm using a router based firewall to block some websites and for parental control. When I have Firefox Private Network active the firewall becomes useless and all DNS requests go through not matter what I have configured at the firewall level. I assume this is because Firefox uses DoH when Firefox Private Network is active. And therefore my firewall can't distinguish what is HTTPS traffic and what are DNS requests over DoT. Everything works again when I change the about:config network.trr settings back from DoH to DoT. But as soon as I activate Firefox Private Network the settings are automatically reversed back to DoH. Is there a way to use DoT instead of DoH with Firefox Private Network? It should be possible since the DNS requests are handled externally by Cloudflare and not necessarily send as a DoH request.
All Replies (4)
i cannot access all https.
Hi Wedgewood,
Unfortunately, there is not a way to reconfigure FPN to force DoT instead of DoH at this time. I'm still looking into other workarounds for you, but have you considered using a Proxy Firewall to have both privacy protection and the ability to restrict access/block sites?
kurth said
i cannot access all https.
Could you please elaborate more on the issue you're running into?
Ballison said
Hi Wedgewood, Unfortunately, there is not a way to reconfigure FPN to force DoT instead of DoH at this time. I'm still looking into other workarounds for you, but have you considered using a Proxy Firewall to have both privacy protection and the ability to restrict access/block sites?
Well that would be an option, but there are many drawbacks for a proxy firewall. It creates a bottleneck which slows down traffic and it limits network protocols support.