"I'd go for a local unbound or local unwind instance, listening for queries on localhost, configured to use a forwarder as appropriate, plus the bypass rule suggested in faq17."
Right. Thanks again, Dale On 11/18/19, Dale C. <[email protected]> wrote: > Stuart, > > Hmmm, thanks for taking the time to write. I'll consider these things. > > My server has a static IP, and I'd also like to start looking at DNS > over TLS. My client has a dynamic (shared even - cellular gateway) IP > address. > > There are some implications there I'll also need to consider. Routing > DNS through to the server which can do DoT would be difficult without > accepting DNS config from the responder, no? > > Thank you, > > Dale >
