Actions
Feature #14395
open
Provide ability to turn of classic/unencrypted DNS (and use only DoT and/or DoH)
Status:
New
Priority:
Normal
Assignee:
-
Category:
DNS Resolver
Target version:
-
Start date:
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Default
Description
As of now (2023), I'd wager few local networks could manage without classic/unencrypted DNS (on UDP port 53). But the day will eventually come when local network operators could operate with only DoT and/or DoH.
Before we can get to an encrypted-only DNS world, we'll need to do testing in lab environments with DoT/DoH enabled, but plain DNS disabled. This is not possible with pfsense 23.01.
Please add a switch, behind an 'advanced' shield if necessary, to disable plain DNS while leaving DoT/DoH running.
No data to display
Actions