Private DNS on Samsung devices
-
I try to use "private DNS" option in my phone's settings, but it often does not work, and therefore privacy cannot be protected all the time. Sometimes I just cannot even ping other servers by IP (like 1.1.1.1) because of it. My question is: WHY this function requires hostname (so you need to query some other plain text DNS before reaching encrypted DNS)? Also if I understand well, it uses DNS over TLS, but I'm curious why not DNS over HTTPS (which seems like a reliable solution since I have it configured in my browser and there is never a problem with it...also it uses IP address instead of hostname). Why no one is seeing this problem and no one wants to address it? I tried downloading Quad9 app, but it does not work either (I guess some IPS is filtering TLS requests in my network, but again why DOH is not used then?).
-
I try to use "private DNS" option in my phone's settings, but it often does not work, and therefore privacy cannot be protected all the time. Sometimes I just cannot even ping other servers by IP (like 1.1.1.1) because of it. My question is: WHY this function requires hostname (so you need to query some other plain text DNS before reaching encrypted DNS)? Also if I understand well, it uses DNS over TLS, but I'm curious why not DNS over HTTPS (which seems like a reliable solution since I have it configured in my browser and there is never a problem with it...also it uses IP address instead of hostname). Why no one is seeing this problem and no one wants to address it? I tried downloading Quad9 app, but it does not work either (I guess some IPS is filtering TLS requests in my network, but again why DOH is not used then?).
I use DNS over TLS on my POCO device and it works as expected. What do you mean about "it uses ip adress instead of hostname" ?
Here is my setup :
If you still have a problem, try "invizible pro" app. You can setup dnscrypt instead of DOT.
-
I try to use "private DNS" option in my phone's settings, but it often does not work, and therefore privacy cannot be protected all the time. Sometimes I just cannot even ping other servers by IP (like 1.1.1.1) because of it. My question is: WHY this function requires hostname (so you need to query some other plain text DNS before reaching encrypted DNS)? Also if I understand well, it uses DNS over TLS, but I'm curious why not DNS over HTTPS (which seems like a reliable solution since I have it configured in my browser and there is never a problem with it...also it uses IP address instead of hostname). Why no one is seeing this problem and no one wants to address it? I tried downloading Quad9 app, but it does not work either (I guess some IPS is filtering TLS requests in my network, but again why DOH is not used then?).
you understandably sound confused
I try to use "private DNS" option in my phone's settings, but it often does not work, and therefore privacy cannot be protected all the time.
when you have private DNS enabled, you have no connection if it fails. Is it in "auto" or is there a fallback option?
Sometimes I just cannot even ping other servers by IP (like 1.1.1.1) because of it. My question is: WHY this function requires hostname (so you need to query some other plain text DNS before reaching encrypted DNS)?
Also if I understand well, it uses DNS over TLS, but I'm curious why not DNS over HTTPS (which seems like a reliable solution since I have it configured in my browser and there is never a problem with it...also it uses IP address instead of hostname).
you shouldn't use both, iirc. Your browser is bypassing your "DNS over TLS" in this case
Why no one is seeing this problem and no one wants to address it?
because there is no problem?
I tried downloading Quad9 app, but it does not work either (I guess some IPS is filtering TLS requests in my network, but again why DOH is not used then?).
quad9 app works as a vpn. What do you mean by "it does not work either"?
-
I try to use "private DNS" option in my phone's settings, but it often does not work, and therefore privacy cannot be protected all the time. Sometimes I just cannot even ping other servers by IP (like 1.1.1.1) because of it. My question is: WHY this function requires hostname (so you need to query some other plain text DNS before reaching encrypted DNS)? Also if I understand well, it uses DNS over TLS, but I'm curious why not DNS over HTTPS (which seems like a reliable solution since I have it configured in my browser and there is never a problem with it...also it uses IP address instead of hostname). Why no one is seeing this problem and no one wants to address it? I tried downloading Quad9 app, but it does not work either (I guess some IPS is filtering TLS requests in my network, but again why DOH is not used then?).
WHY this function requires hostname
Because it uses DoT and not DoH.
I also had issues like this, so I just sidestepped it and setup AdGuard Home. When away from the house I use RethinkDNS.
-
System shared this topic on
