Hi Tiru
> On 26 Sep 2020, at 09:39, tirumal reddy <[email protected]> wrote:
>
> In the home network use case, if the CPE does not support an encrypted DNS
> forwarder, endpoint will discover and use the ISP encrypted DNS recursive
> server. The CPE will no longer be able to enforce MUD rules. For instance,
> Firefox can discover and use Comcast Encrypted DNS recursive server, see
> https://tools.ietf.org/id/draft-rescorla-doh-cdisco-00.html
> <https://tools.ietf.org/id/draft-rescorla-doh-cdisco-00.html>.
Not necessarily. That is a matter of signaling between the CPE and the ISP.
Eliot
_______________________________________________
OPSAWG mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/opsawg
