New
#10
I tried setting this up again. This time I set the IPv4 and IPv6 in the Wi-Fi properties. They were already set in in the router. Firefox and Edge both fail the Encrypted SNI.
Encrypted SNI works in Nightly only I think? Cloudflare is set in the Modem, so never touch network adapter in device manager. Plus not using wifi, disabled in the BIOS. Easier when dual boot with Linux.
Not using old Edge and waiting for the new one.
FF Nightly v78.0a1
Enabling Encrypted SNI
about:config
When DoH is OFF, SNI is not working. They don't interfere with each other (DoH and reg tweak).Code:security.enterprise_roots.enabled > true network.trr.mode > 2 network.security.esni.enabled > enabled network.trr.uri > https://mozilla.cloudflare-dns.com/dns-query DNS-over-HTTPS enabled,no proxy.
@brummyfan, your set up doesn't seem to work in the first screenshot. Secure DNS must be green, same for TLS 1.3. The last needs some additional tweaks (screenshot result in post #13).
Standard FF supports it as well (I'm on the 76.0.1 at the moment) but I think one needs to tweak configuration settings. Details how to configure any of it are here:
Cloudflare ESNI Checker | Cloudflare
Click applicable 'Learn more...' and take it from there.
[from here: Encrypt it or lose it: how encrypted SNI works
Type about:config in the address bar
Accept
Find network.security.esni.enabled and set it to true].
Does anyone know if this new feature can work with OpenDNS, because in the first page of this thread MS only mentioned: Google, Cloudflare, and Quad9 as the three main DNS servers that can work with DoH?
I don't see why not? Surely it should be possible to specify custom DNS server in there - in the same way as in FF?
How to enable DNS-over-HTTPS (DoH) in Firefox | ZDNet
DNS over HTTPS . curl/curl Wiki . GitHub
The reason I am asking is because I already have OpenDNS for preferred and Alternate DNS servers for TCP/IPv4 in my router's security settings and I don't intend to change that. I have even enabled DoH in ChrEdge browser which is my default for now. All that in a non-Insider build. Currently, I am on 1909 (18363.836) and the worst that can happen is that DoH feature won't work in my case, but so far I have not incurred any issue.
Another thing, in a recent article I just read it was mentioned that OpenDNS can also be used.
How to Enable or Disable DNS over HTTPS (DoH) in Microsoft Edge
How to Enable DNS Over HTTPS on Microsoft Edge
- - - Updated - - -
@Shawn,
As usual, thx for the second link regarding the same topic. The one I gave was only to show where I saw that one can also use OpenDNS.
Last edited by IronZorg89; 17 May 2020 at 13:13.