NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
While it's great that we can designate our own DNS servers on the routers, instead of just using the ones provided by our ISPs, it would be even better if you could integrate DNS-over-TLS and/or DNS-...
Agreed, this would be an excellent step forward.
DNS can be UDP or TCP. For scalability reasons, UDP is almost always used; however, that the requests are unsecured allows any intermediate party, including the ISP to log the request and respond itself, possibly with incorrect information. This last is often used to block traffic to sites that are deemed unworthy.
Suggest the options should be:
• Unsecured, UDP
• Unsecured, TCP
• DNS over TLS, UDP
• DNS over TLS, TCP
• DNS over HTTP (note)
Future versions of HTTP will apparently abandon TCP for scalabilty, so the last option likely doesn’t need any suboption.