@AdventuringAardvark to Selfhosted@lemmy.worldEnglish • 8 months agoI finally figured out how to virtualize my OPNsense firewall. Suck it, Roku.imagemessage-square40arrow-up1236file-text
arrow-up1236imageI finally figured out how to virtualize my OPNsense firewall. Suck it, Roku.@AdventuringAardvark to Selfhosted@lemmy.worldEnglish • 8 months agomessage-square40file-text
minus-square@randombullet@feddit.delinkfedilinkEnglish12•8 months agoI do a DNS redirect on my Mikrotik router. It’s going to suck when DoH and DoT becomes more prevalent.
minus-squarePossibly linuxlinkfedilinkEnglish10•8 months agoI think the solution is to avoid tech that you don’t control. Its a hard pill to swallow for some but at the end of the day there are tons of ways a device could bypass networking restrictions
minus-square@blackstrat@lemmy.fwgx.uklinkfedilinkEnglish2•8 months agoBest you can do is maintain a list of public DoH IPs and block them. Redirect all port 53 traffic to your own DNS server.
I do a DNS redirect on my Mikrotik router.
It’s going to suck when DoH and DoT becomes more prevalent.
I think the solution is to avoid tech that you don’t control. Its a hard pill to swallow for some but at the end of the day there are tons of ways a device could bypass networking restrictions
Best you can do is maintain a list of public DoH IPs and block them. Redirect all port 53 traffic to your own DNS server.