Inquiry re: DNS over HTTPS

John W. Blue john.blue at rrcic.com
Mon Nov 4 18:53:26 UTC 2019


Additionally, Tony Finch back on July 11th of this year suggested:

To give DoH access to clients you need a proxy such as dnsdist or doh101.

https://dotat.at/cgi/git/doh101.git
https://dnsprivacy.org/wiki/display/DP/Using+dnsdist+for+DoT+and+DoH

John

From: bind-users [mailto:bind-users-bounces at lists.isc.org] On Behalf Of Victoria Risk
Sent: Monday, November 04, 2019 12:45 PM
To: LeBlanc, Daniel James; ML BIND Users (bind-users at lists.isc.org)
Subject: Re: Inquiry re: DNS over HTTPS


On Nov 4, 2019, at 10:38 AM, LeBlanc, Daniel James <daniel.leblanc at bellaliant.ca<mailto:daniel.leblanc at bellaliant.ca>> wrote:

Hello All.

I am interested in whether ISC BIND intends to directly support DNS over HTTPS in the near future, or whether it is expected that users will create an environment to accept the HTTPS request and convert it into a DNS query.

Daniel,

We do plan to develop support for both DoH and DoT (DNS over TLS) natively in BIND. Both will appear in development releases in 2020. We have a kb article that explains one way to do DoT today with stunnel https://kb.isc.org/docs/aa-01386.

Vicky Risk
Product Manager

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20191104/75ef2cb8/attachment.htm>


More information about the bind-users mailing list