DNS Filtering parameters w/ DoT ?

[Lynx]

That's not possible. DNSFilter works by hijacking a DNS connection and redirecting it to a different server. DoT is specifically designed to avoid that kind of hijacking, by using TLS. Redirecting DNS queries from a regular DNS to a TLS-based server would fail to connect.

What happens if under Open VPN Client the accept DNS configuration: exclusive is set, but under WAN DoT is set. If under LAN -> DNS Filter the Global option 'Router' is set, how will the DNS queries get processed? Will they use DoT set in WAN or the pushed DNS from OpenVPN?

Would there be a way to make Global: 'Router' (DoT set in WAN) and then have specific filter clients use the pushed DNS from OpenVPN?

For context, at the moment I have accept DNS: exclusive set in VPN Client and also Force Internet traffic through tunnel: Yes (which I like because it makes everything in router go via VPN), and then have set up under LAN -> DNS Filter the Global option to: CleanBrowsing Family, and have made exceptions for my televisions to use 'No Filter' so that they take on the pushed OpenVPN DNS, which allows Amazon Prime to work via NordVPN (I don't understand why, but it just does).

This setup is probably fine because that means all DNS goes via VPN tunnel anyway, but I just wondered if there would be a way to make my Global/Default option use DoT as well, i.e. not just CleanBrowsing Family but the same using DoT.

So in my case I think having Global use DoT via 'router' and then filter clients use the pushed NordVPN DNS would also work. But that pushed DNS is not known in advance.