@AdventuringAardvark@lemmy.one to Selfhosted@lemmy.worldEnglish • 2 years agoI finally figured out how to virtualize my OPNsense firewall. Suck it, Roku.lemmy.oneimagemessage-square29arrow-up1174file-text
arrow-up1174imageI finally figured out how to virtualize my OPNsense firewall. Suck it, Roku.lemmy.one@AdventuringAardvark@lemmy.one to Selfhosted@lemmy.worldEnglish • 2 years agomessage-square29file-text
minus-square@randombullet@feddit.delinkfedilinkEnglish11•2 years agoI do a DNS redirect on my Mikrotik router. It’s going to suck when DoH and DoT becomes more prevalent.
minus-squarePossibly linuxlinkfedilinkEnglish10•2 years agoI think the solution is to avoid tech that you don’t control. Its a hard pill to swallow for some but at the end of the day there are tons of ways a device could bypass networking restrictions
minus-square@blackstrat@lemmy.fwgx.uklinkfedilinkEnglish2•2 years agoBest you can do is maintain a list of public DoH IPs and block them. Redirect all port 53 traffic to your own DNS server.
I do a DNS redirect on my Mikrotik router.
It’s going to suck when DoH and DoT becomes more prevalent.
I think the solution is to avoid tech that you don’t control. Its a hard pill to swallow for some but at the end of the day there are tons of ways a device could bypass networking restrictions
Best you can do is maintain a list of public DoH IPs and block them. Redirect all port 53 traffic to your own DNS server.