• acockworkorange@mander.xyz
        link
        fedilink
        arrow-up
        4
        ·
        edit-2
        10 months ago

        Wait, are you saying there’s a way to tell Firefox to use a different DNS server than what’s specified in the interface configuration?

        BTW, thank you for the explanation, makes sense now!

        • blackstrat@lemmy.fwgx.uk
          link
          fedilink
          arrow-up
          5
          ·
          10 months ago

          Exactly that. And it looks just like any other web traffic.

          Quite a few things will use their own DNS servers, not the one specified by the system or handed out over DHCP. I know many apps on the fire stick and Roku devices do this. So you have to intercept their traffic and redirect it to control it. If their using DoH then you can’t do that and your pihole is useless against them.

          Best you can do is maintain a list of well known DoH servers and block them outright. But that’s a constantly moving losing battle.

          • acockworkorange@mander.xyz
            link
            fedilink
            arrow-up
            2
            ·
            10 months ago

            Right, it just downed on me that DNS is nothing more than another application layer in the OSI model. Thanks again!