• How do I configure DNS over HTTPS (DoH)?

    Home » Forums » AskWoody support » Questions: Browsers and desktop software » Questions: Browsers and desktop software – other » How do I configure DNS over HTTPS (DoH)?

    Author
    Topic
    anonymous
    Guest
    April 14, 2020 at 12:26 pm #2241045

    I know that I can enable DoH in Firefox using Cloudflare or NextDNS. There is an option to use a custom server, which I’d like to do.

    I currently use Quad9 as my dns, I set that as my dns in my router. Can you configure DoH in the router or is just at the browser level? How do I set Quad9 as my custom DoH in Firefox? I entered the Quad9 DoH url in the custom box, then checked the Cloudfare Browser Checker @ https://www.cloudflare.com/ssl/encrypted-sni/ . The results showed that I wasn’t using DoH. But if I changed from custom to Cloudfare, it came back I was using DoH.

    Not sure if that is just some hanky panky on Cloudfare’s part to convince you to use their service or if I am doing something wrong in entering the info to use Quad9. Any help in configuring Quad9 for DoH either at the router level (preferred) or in Firefox will be greatly appreciated.

    Reply | Quote
    Viewing 7 reply threads
    Author
    Replies
    • Alex5723
      AskWoody Plus
      April 14, 2020 at 12:44 pm #2241140
      anonymous wrote:

      Not sure if that is just some hanky panky on Cloudfare’s part to convince you to use their service or if I am doing something wrong

      You can’t change DoH DNS servers. It is predefined by Firefox.

      https://support.mozilla.org/en-US/kb/firefox-dns-over-https

      Reply | Quote
    • anonymous
      Guest
      April 14, 2020 at 1:21 pm #2241227

      If you can’t change it, why is there a custom option? I know Cloudfare is the preferred and default option in Firefox, but you can use a custom DoH DNS provider if you choose. I think this a recent option due to complaints and concerns users had about being tied to Cloudflare.

      Reply | Quote
    • Paul T
      AskWoody MVP
      April 15, 2020 at 2:03 am #2241770
      anonymous wrote:

      DoH at the router level

      If you can load OpenWRT you can do it.
      https://openwrt.org/docs/guide-user/services/dns/doh_dnsmasq_https-dns-proxy

      cheers, Paul

      Reply | Quote
    • Alex5723
      AskWoody Plus
      April 15, 2020 at 2:13 am #2241772
      anonymous wrote:

      If you can’t change it, why is there a custom option? I know Cloudfare is the preferred and default option in Firefox, but you can use a custom DoH DNS provider if you choose. I think this a recent option due to complaints and concerns users had about being tied to Cloudflare.

      Custom is for future DNS resolvers :

      “What resolver will Firefox be using?
      Our initial launch, which is only in the US, designates Cloudflare as the default resolver. Users may alternately select from a list of additional providers in our Trusted Recursive Resolver program, which requires compliance with our policy requirements regarding user privacy and security. Over time, we expect to add more providers to our Trusted Recursive Resolver program. Additionally, our vision is for DoH to be universally adopted and supported by all DNS resolvers.”

      The following providers have contractually agreed to abide by these policy requirements

      Cloudflare https://mozilla.cloudflare-dns.com/dns-query
      NextDNS https://dns.nextdns.io

      Reply | Quote
    • anonymous
      Guest
      April 15, 2020 at 11:40 am #2241957

      Unfortunately my router doesn’t support OpenWRT.

      You can add a custom DoH provider in Firefox, Cloudfare and NextDNS are the only “built-in” providers, and FF may add others in the future. I’ve seen instructions online that says you select the Custom option and in the Custom field you add the url of the DoH provider of your choice.

      I did add the url for Quad9 DoH, but I don’t know if it is working. Using the Cloudfare check tool, it just keeps saying it can’t verify if I’m using a DoH. However if I switch to the Cloudfare DoH, then it says I am using DoH. Cloudfare doesn’t have a sterling reputation, so forgive me for wondering if the site check won’t confirm you are using DoH unless you are indeed using their service. It doesn’t say I’m NOT using DoH, just that it can’t verify whether I am or not.

      It looks like using it in the router is out unless you flash 3rd party firmware or get a new router, so enabling it in the browser will have to do for now. I am just trying to figure out if it is indeed working or not.

      And please share any other DNS and DoH that you use that you find to be fast, secure and reliable, outside of Google and Cloudfare. I have had good performance from Quad9, and want to use their DoH, if I can figure out how to get it working properly.

      Reply | Quote
      • NetDef
        AskWoody_MVP
        April 15, 2020 at 12:27 pm #2242003

        Cloudflare can only check your DoH status for their service, because if you use their tool while using another service it literally cannot “see” that DNS request.  (Remember the DNS request happens before you get to a site.)

        Quad 9 announced a test page for their service back in . . . July 2019?  So far it has not come online.

        ~ Group "Weekend" ~

        1 user thanked author for this post.
        b
        Reply | Quote
    • Alex5723
      AskWoody Plus
      April 15, 2020 at 12:54 pm #2242015
      anonymous wrote:

      I did add the url for Quad9 DoH, but I don’t know if it is working.

      Did you read Firefox post stated above ? You can’t add any other DNS, so Quad9 doesn’t work.

      Reply | Quote
    • anonymous
      Guest
      April 15, 2020 at 3:24 pm #2242104

      Thanks NetDef, that makes sense.

      Yes Alex I read the post. However I read it to mean that only Cloudflare and NextDNS have met the requirements FF set in order to be a trusted resolver. There is the option to use a custom resolver in FF, one that doesn’t meet or hasn’t obtained their seal of approval, or more likely, paid up to be listed.

      You can use a different DoH. You can use another resolver if you have the url to type or paste in the custom box. It may not work properly, although I don’t see why it wouldn’t, but you definitely can add a custom resolver in the current FF 75.0.

      Reply | Quote
    • anonymous
      Guest
      April 15, 2020 at 3:49 pm #2242114

      Thanks b, that was what I’ve been trying to say, but you made it a lot easier with the links you posted!

      Now whether or not any of those custom options works properly is the question.

      Reply | Quote
    Viewing 7 reply threads
    Reply To: How do I configure DNS over HTTPS (DoH)?

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    March 2025
    S M T W T F S
     1
    2345678
    9101112131415
    16171819202122
    23242526272829
    3031  

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.