There is a workaround by enabling NAT and forcing all traffic to piHole / pfbloc... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		zeroflow on May 29, 2022 \| parent \| context \| favorite \| on: Setting up a Pi Hole made my home network faster There is a workaround by enabling NAT and forcing all traffic to piHole / pfblockerNG https://docs.netgate.com/pfsense/en/latest/recipes/dns-redir...

rsync on May 29, 2022 [–]

How does this help with DoH?

If the dns request is over 443 and the DoH server is the same host as the served resource, what can be done ?

jamiek88 on May 29, 2022 | [–]

Could you MITM and inspect for dns request packets?

rsync on May 29, 2022 | | [–]

Yes - I postulated this elsewhere in this thread.

The next step in the arms race would then be to implement DoHoH.

Sigh.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact