Page 2 of 4 FirstFirst 1234 LastLast
Results 11 to 20 of 31
  1. #11
    Master Untangler
    Join Date
    May 2008
    Posts
    879

    Default

    Quote Originally Posted by rnatalli View Post
    Does Untangle support DNS over TLS? If so, using public server would be fine.


    Sent from my iPhone using Tapatalk
    You can vote for that here. https://untanglengfirewall.featureup...5/dns-over-tls

  2. #12
    Master Untangler
    Join Date
    Jun 2015
    Posts
    142

    Default How to force all DNS lookups thru Tunnel VPN?

    How does DNS over TLS work? Do all public DNS servers support this protocol (Google, Cloudflare, OpenDNs, etc.)? Do I understand correctly that with TLS all DNS queries are encrypted from ISP?

    EDIT: just read about it here. Canít wait for UT to add this capability.

    https://developers.cloudflare.com/1.1.1.1/dns-over-tls/

    Sent from my iPhone using Tapatalk

  3. #13
    Master Untangler
    Join Date
    May 2008
    Posts
    879

    Default

    In the mean time you can do it with pi-hole.

  4. #14
    Master Untangler
    Join Date
    Jun 2015
    Posts
    142

    Default

    Quote Originally Posted by donhwyo View Post
    In the mean time you can do it with pi-hole.
    Thank you. Ordered my first Raspberry Pi 3b+ today. Canít wait to set this up.


    Sent from my iPhone using Tapatalk

  5. #15
    Untanglit
    Join Date
    Dec 2018
    Posts
    17

    Default

    Will try one more thing. I would think adding redirect-gateway to the openvpn config would force all traffic including dns requests through the tunnel.


    Sent from my iPhone using Tapatalk

  6. #16
    Master Untangler
    Join Date
    Jun 2015
    Posts
    142

    Default

    Are there any guides on how to use pi-hole together with Untangle?

    Not issues setting up pi-hole, but once done what next? Canít find any site guides for this.


    Sent from my iPhone using Tapatalk

  7. #17
    Master Untangler
    Join Date
    May 2008
    Posts
    879

    Default

    Just setup your pi-hole with a static ip. Then point your devices it. Either static or as a setting under dhcp.

    For dns over https search google or your favorite engine. Hopefully that will will be built in soon.
    miles267 likes this.

  8. #18
    Master Untangler
    Join Date
    Jun 2015
    Posts
    142

    Default

    Quote Originally Posted by donhwyo View Post
    Just setup your pi-hole with a static ip. Then point your devices it. Either static or as a setting under dhcp.

    For dns over https search google or your favorite engine. Hopefully that will will be built in soon.
    Thanks donhwyo. Would I point my Untangle to the static IP address of the pi-hole as its primary DNS server? Then, since all my network clients use Untangle for their DNS server, their traffic will already be routed thru DNS over HTTPS?


    Sent from my iPhone using Tapatalk

  9. #19
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    23,043

    Default

    Quote Originally Posted by miles267 View Post
    Thanks donhwyo. Would I point my Untangle to the static IP address of the pi-hole as its primary DNS server? Then, since all my network clients use Untangle for their DNS server, their traffic will already be routed thru DNS over HTTPS?


    Sent from my iPhone using Tapatalk
    No, your clients will be using DNS over UDP like everything else. Untangle will simply be using PiHole as its resolver, and once the requests makes it to the PiHole IF it's configured properly, it'll wander out from there over TCP, and be encrypted.

    Personally I don't see any value in reducing the last mile problem to the gap between my router and my client. Why even have the router involved? Untangle is doing DHCP is it not? Just configure it to hand out the IP of the pihole to your DHCP clients. Configure Untangle to use your ISP DNS as normal. Then your system won't be chasing its tail when something goes wrong. Doing what you're describing creates a circular dependency problem. Those things make my head hurt.
    miles267 likes this.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  10. #20
    Master Untangler
    Join Date
    May 2008
    Posts
    879

    Default

    You can see the pi-holes log at your_pihole/admin/taillog.php
    Last edited by donhwyo; 02-10-2019 at 10:16 AM.

Page 2 of 4 FirstFirst 1234 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2