Home

Forums

Stories

Knowledge Base

Business Community > Gateways > Force DoH for all client

< Gateways

Force DoH for all client

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Force DoH for all client

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

damianstelmach

2025-02-02 12:06:06 - last edited 2025-02-06 02:41:50

Posts: 9

Helpful: 1

Solutions: 0

Stories: 0

Registered: 2024-01-13

Force DoH for all client

2025-02-02 12:06:06 - last edited 2025-02-06 02:41:50

Model: ER706W

Hardware Version: V1

Firmware Version: 1.1.2 Build 20240726 Rel.77184(4555)

I wanted to force in router-level DOH support for the entire local network, but unfortunately without success. Previous actions:

1. Launching the DoH service on a router with two addresses (cloudflare and Quad4).

2. Unsuccessful blocking of port 53 on the router. Adding a BLOCK rule on port 53 for all directions and all IPs does not work.

Thank you for your help.

1 Accepted Solution

Clive_A

2025-02-06 02:41:44 - last edited 2025-02-06 02:41:50

Posts: 8362

Helpful: 4288

Solutions: 2178

Stories: 0

Registered: 2023-06-09

Re:Force DoH for all client-Solution

2025-02-06 02:41:44 - last edited 2025-02-06 02:41:50

Hi @damianstelmach

Thanks for posting in our business forum.

damianstelmach wrote

I wanted to force in router-level DOH support for the entire local network, but unfortunately without success. Previous actions:

1. Launching the DoH service on a router with two addresses (cloudflare and Quad4).

2. Unsuccessful blocking of port 53 on the router. Adding a BLOCK rule on port 53 for all directions and all IPs does not work.

Thank you for your help.

You cannot force DoH. DoH is an individual feature on each device that requires you to manually config on every single device.

The router can query the upstream DoH server but it does not DoH in the LAN. The LAN is still using UDP 53, plain text.

If you want DoH and secure DNS in LAN, configure each one of them manually with a DoH and that bypasses the router.

No such router can force DoH on its clients.

Recommended Solution

1 Reply

Clive_A

2025-02-06 02:41:44 - last edited 2025-02-06 02:41:50

Posts: 8362

Helpful: 4288

Solutions: 2178

Stories: 0

Registered: 2023-06-09

Re:Force DoH for all client-Solution

2025-02-06 02:41:44 - last edited 2025-02-06 02:41:50

Hi @damianstelmach

Thanks for posting in our business forum.

damianstelmach wrote

I wanted to force in router-level DOH support for the entire local network, but unfortunately without success. Previous actions:

1. Launching the DoH service on a router with two addresses (cloudflare and Quad4).

2. Unsuccessful blocking of port 53 on the router. Adding a BLOCK rule on port 53 for all directions and all IPs does not work.

Thank you for your help.

You cannot force DoH. DoH is an individual feature on each device that requires you to manually config on every single device.

The router can query the upstream DoH server but it does not DoH in the LAN. The LAN is still using UDP 53, plain text.

If you want DoH and secure DNS in LAN, configure each one of them manually with a DoH and that bypasses the router.

No such router can force DoH on its clients.

Force DoH for all client

Force DoH for all client

Information

Voters 0

Tags