IT notes

DoH Firefox

Open firefox and type: about:config Search for: network.trr.uri Probably you already have: If not add it or use something like: Then enable network.trr.mode by setting it to 2 Set network.trr.mode to 2 make DNS Over HTTPS the browser’s first choice but use regular DNS as a fallback (0 is “off by default”, 1 lets Firefox pick whichever is faster, 3 for TRR only mode, 5 to explicitly turn it off).


Unbound using DNS over TCP: server: private-domain: "" forward-zone: name: "." forward-ssl-upstream: yes forward-addr: [email protected] forward-addr: [email protected] forward-addr: [email protected] forward-addr: [email protected] forward-addr: 2606:4700:4700::[email protected] forward-addr: 2606:4700:4700::[email protected] forward-addr: 2620:fe::[email protected]; forward-addr: 2620:fe::[email protected]; To test do: # unbound-control -c /var/unbound/unbound.conf lookup . It should return something like: The following name servers are used for lookup of . forwarding request: Delegation with 0 names, of which 0 can be examined to query further addresses.


dnsmasq forwarding zones If you are using dnsmasq and need to forward a DNS zone to a specific DNS server, add this to your /etc/dnsmasq.conf server=/test/ server=/sopas/ If you don’t have the file /etc/dnsmasq.conf check for directory /etc/dnsmasq.d and there create a file named /etc/dnsmasq.d/my-zones with the content of your zones That means that requests made do *.test will be forwarded to for *.sopas to and so on