OpenSource Ghost
Limp Gawd
- Joined
- Feb 14, 2022
- Messages
- 220
Assume environment where all LAN/WLAN clients connect to local DNS server using plaintext UDP port 53, the local DNS server runs Pi-Hole that creates secure DoT and DoH connections to public resolvers such as Cloudflare.
If malicious traffic intercept happens on LAN/WLAN (not WAN), then would is it more secure for clients to directly connect to DoT and DoH DNS resolvers (bypassing local DNS server) ?
If malicious traffic intercept happens on LAN/WLAN (not WAN), then would is it more secure for clients to directly connect to DoT and DoH DNS resolvers (bypassing local DNS server) ?
Last edited: