HI There FWIW, please allow me to share a pointer to the Open Source MacOSX/Windows tool DOX  that allows to to send queries via Classic DNS, DoT and DoH.
To check for encrypted DNS in form of DNS-over-TLS from a command line, you might want to use kdig from the knot-dnsutils package , it defaults to port 853 in case of +tls being set. kdig can of course also check for Classic DNS. kdig a example.com +tls @220.127.116.11 I trust that you are likely aware of the classic dig. BR, Normen  https://github.com/wttw/dox/releases/tag/v0.1.4 <https://github.com/wttw/dox/releases/tag/v0.1.4>  https://pkgs.org/download/knot-dnsutils <https://pkgs.org/download/knot-dnsutils> > On 13. Sep 2019, at 15:45, B. Cook <bc...@poughkeepsieschools.org> wrote: > > I can't find the actual documentation at the moment.. > > iirc dnsmasq port designation is # not @ > > and I think it needs a port, not an interface.. > > server=18.104.22.168#53 > > but Cloudflare doesn't do unencrypted DNS.. > > quad9 does.. > > server=22.214.171.124#53 > > Not sure if the @ is something new.. > > -- > > This message may contain confidential information and is intended only for > the individual(s) named. If you are not an intended recipient you are not > authorized to disseminate, distribute or copy this e-mail. Please notify > the sender immediately if you have received this e-mail by mistake and > delete this e-mail from your system. > > _______________________________________________ > Dnsmasq-discuss mailing list > Dnsmasqemail@example.com > http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
_______________________________________________ Dnsmasq-discuss mailing list Dnsmasqfirstname.lastname@example.org http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss