NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
While it's great that we can designate our own DNS servers on the routers, instead of just using the ones provided by our ISPs, it would be even better if you could integrate DNS-over-TLS and/or DNS-over-HTTPS into the firmware. This would allow us to query DNS servers (e.g., Cloudflare's 1.1.1.1 or Google's 8.8.8.8) without our ISPs being able to monitor our requests, giving us confidentiality from our ISPs and anyone along the path between our LAN and the DNS server; without our requests being able to be changed, ensuring integrity in the replies; and without having to run a separate service or piece of hardware on our networks for this purpose, increasing availability, at least from a certain perspective, as not everyone has the resources or ability to run their own local DNS server capable of using one of these two standards.
33 Comments
Agreed, please add this to Orbi AXE11000 and AXE10000.
"DNS-over-TLS and/or DNS-over-HTTPS" - Most of that is handle by browsers or features with in browsers. Also can use custom DNS servcies and there IP addresses with in the router configuration. Nothing would need to be added here.
Most likely something NG may not want to get involved with.
That’s a very naïve and honest way to look at it, privacy wise. I do not trust ISP that will sell you data. The purpose of encrypted DNS is to block your ISP from viewing your queries, and ensuring your data is not intercepted. The profitable information is in the metadata. DNS is transmitted in plaintext or cleartext, by default. Even if I choose a a different DNS provider it is still transmitted through their infrastructure and can be seen by ISP unless it’s encrypted. The most important thing to me is make it an opt in feature, let me choose if I want to use it.
