Jack Yaz
Part of the Furniture
Dnscrypt runs fine on my 86U.You are correct. I spaced out on that. Not enough coffee! A few people also reported issues with DNSCrypt not working on the 86U.
Dnscrypt runs fine on my 86U.You are correct. I spaced out on that. Not enough coffee! A few people also reported issues with DNSCrypt not working on the 86U.
Same here, Dnscrypt is working like a charm with 384.7_2 firmwareDnscrypt runs fine on my 86U.
Any thoughts how to pick the best/closest servers via manual DNScrypt setup (from the AMTM menu)? Looking at the list of servers, I am not always able to tell that some of them are in US or not. Or, do you think the “automatic” server setup would be better?
DNSSec and DNSCrypt are both complementary, they are not competitive. They both address different security aspects.
I do not recommend any protocol over the other, It is a bit up to the user on what DNS servers they want to use(How close they are and protocols they support and trust)I probably won't be that popular here on this thread...
DNSCrypt is non-standard - what I find odd is that after 10 plus years, why haven't they approached the IETF? If not as a RFC submission, at least as an Internet Draft.
It does beg the question - They have not done this...
Why is this important?
Interoperability across different platforms, both on the client and server sides.
DNS over TLS (and it's cousin DNS over HTTPS) pretty much do the same thing in a cleaner and more elegant manner...
Both DoH and DoT are standards-based...
DoH - https://datatracker.ietf.org/doc/html/rfc8484
DoT - https://datatracker.ietf.org/doc/html/rfc7858
DNSSEC is still out there, and adoption is picking up across the 'net
From what i know dnscrypt is available on most platforms and have a lot of servers to choose from, Quad9 Cleanbrowsing Cisco(OpenDNS) and many vpn providers support it.All the solutions above offer the same practical security level. Compatibility with existing tools and infrastructure is what makes an actual difference
Think the developer of dnscrypt-proxy has talked more then a few times about making the dnscrypt protocol a IETF standard (It takes a lot of time and cost money, would require a team of people helping out and funding)
If this could become an RFC:As a former member of IETF, it takes no "money" or "Funding" to get something through the process. It takes one person to write an Internet Draft, convince a working group to add it to the agenda, and convince others to review and contribute.
I am surprised someone did not cry foul over this one...If this could become an RFC:
RFC 1149: Standard for the transmission of IP datagrams on avian carriers
This memo describes an experimental method for the encapsulation of IP datagrams in avian carriers. This specification is primarily useful in Metropolitan Area Networks. This is an experimental, not recommended standard.datatracker.ietf.org
Then there is no excuse beside not wanting to...
Foul or fowl?I am surprised someone did not cry foul over this one...
<sigh>
Yes.Foul or fowl?
Thread starter | Title | Forum | Replies | Date |
---|---|---|---|---|
B | (solved) Dnscrypt blocked-names.txt automatically deleted upon modification | Asuswrt-Merlin | 4 | |
L | is enabling firewall necessary (same for upnp) when on a provider with cgnat? | Asuswrt-Merlin | 5 |
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!