DNS over HTTPS (DoH) is a protocol that encrypts traffic in the DNS (Domain Name System) system.
Here, the DNS queries are routed via an HTTPS session (Hypertext Transfer Protocol Secure).
DoH increases the protection of privacy on the Internet, since DNS queries carried out using this protocol can no longer be freely viewed.
The data transmitted via DoH is additionally secured with HTTPS.
The protocol ensures that the data sent and received during a request is minimized as much as possible.
We currently work on a direct implementation for DoH support on our devices.
This guide describes how you can currently influence DoH via App Patrol.
1. On the webinterface navigate to
Configuration > Security Service > App Patrol
and click on Add
2. In the search bar under the option Query Application search for DNS, the results appear below the option Query Result.
Do not forget to add a name for the rule at the top of the page.
Select the dns-over-https object and click on Add To My Application
3. Select the new App Patrol rule and click on Edit.
Under My Application Rule you can adjust the action of the entry.
Here you can choose whether the service should be allowed or blocked by the firewall.
4. To activate the rule, it must be assigned to a firewall rule.
You will be automatically notified of this by the device.
Just be aware to use or create a rule from direction LAN to WAN.