App Patrol - DNS over HTTPS blocking

DNS over HTTPS (DoH) is a protocol that encrypts traffic in the DNS (Domain Name System) system.

Here, the DNS queries are routed via an HTTPS session (Hypertext Transfer Protocol Secure).

DoH increases the protection of privacy on the Internet, since DNS queries carried out using this protocol can no longer be freely viewed.

The data transmitted via DoH is additionally secured with HTTPS.

The protocol ensures that the data sent and received during a request is minimized as much as possible.

 

We currently work on a direct implementation for DoH support on our devices.

This guide describes how you can currently influence DoH via App Patrol.

 

 

1. On the webinterface navigate to

Configuration > Security Service > App Patrol

and click on Add

Screenshot_2022-02-16_132622.png

 

 

2. In the search bar under the option Query Application search for DNS, the results appear below the option Query Result.

Do not forget to add a name for the rule at the top of the page.

Screenshot_2022-02-16_132703.png

Select the dns-over-https object and click on Add To My Application

 

 

3. Select the new App Patrol rule and click on Edit.

Screenshot_2022-02-21_105329.png

Under My Application Rule you can adjust the action of the entry.

Here you can choose whether the service should be allowed or blocked by the firewall.

 

 

4. To activate the rule, it must be assigned to a firewall rule.
You will be automatically notified of this by the device.

Screenshot_2022-02-16_132733.png

Just be aware to use or create a rule from direction LAN to WAN.

Screenshot_2022-02-16_132829.png

 

 

 

Articles in this section

Was this article helpful?
1 out of 1 found this helpful
Share