Community discussions

MikroTik App
 
User avatar
Techsystem
Member
Member
Topic Author
Posts: 337
Joined: Tue Dec 21, 2021 5:12 am

question about Encrypting DNS request using my mikrotik

Sat Dec 03, 2022 8:44 am

Hello my friends..!
so please if anyone of you who see the last video by Normis that talking about Encrpting DNS request.
https://www.youtube.com/watch?v=w4erB0VzyIE
so my question is not all people have digital certificate so in this case how can i get this PEM cert..? is there is another way..?
 
User avatar
jvanhambelgium
Forum Veteran
Forum Veteran
Posts: 985
Joined: Thu Jul 14, 2016 9:29 pm
Location: Belgium

Re: question about Encrypting DNS request using my mikrotik

Sat Dec 03, 2022 9:42 am

The goal of the video was to make your Mikrotik a (secure) DNS "client" , so you see the certificate actions are on Mikrotik itself.
All your clients on the LAN continue to keep using traditional DNS and must use the Mikrotik as their DNS.
Upon receiving the regular DNS-traffic from your clients, the Mikrotik will go out to the DNS-provider (encrypted) to perform the request any device on the LAN has made.

"all people" do not need any certificates here! Only the Mikrotik interfaces securely with the upstream DNS-provider.
 
User avatar
Techsystem
Member
Member
Topic Author
Posts: 337
Joined: Tue Dec 21, 2021 5:12 am

Re: question about Encrypting DNS request using my mikrotik

Sat Dec 03, 2022 12:41 pm

ok i agree. but i couldnt open the dns.nextdns.io could you ..?
when i try to connect to it, it give me the not secure connection message like this ..
can you try with your browser..!
You do not have the required permissions to view the files attached to this post.
Last edited by BartoszP on Sat Dec 03, 2022 9:23 pm, edited 1 time in total.
Reason: removed excessive quotting of preceding post; be wise, quote smart.
 
User avatar
jvanhambelgium
Forum Veteran
Forum Veteran
Posts: 985
Joined: Thu Jul 14, 2016 9:29 pm
Location: Belgium

Re: question about Encrypting DNS request using my mikrotik

Sat Dec 03, 2022 1:43 pm

I do not use any DoT/DoH functionality.
Reading the forums I think fore sure there are bugs depending on the release you run.

But anyway, If I go to dns.nextdns.io with my Chrome on Ubuntu all seems fine. No warnings. Certificate is valid.
Screenshot from 2022-12-03 12-42-23.png
You do not have the required permissions to view the files attached to this post.
 
User avatar
Techsystem
Member
Member
Topic Author
Posts: 337
Joined: Tue Dec 21, 2021 5:12 am

Re: question about Encrypting DNS request using my mikrotik  [SOLVED]

Sat Dec 03, 2022 8:12 pm

Hello Mr.jvanhambelhium..! so it work well after i enable the DOH option in my firefox browser.
thanks..
Last edited by BartoszP on Sat Dec 03, 2022 9:23 pm, edited 1 time in total.
Reason: removed excessive quotting of preceding post; be wise, quote smart. lines of quote, 1 line of post.
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 18958
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:

Re: question about Encrypting DNS request using my mikrotik

Sat Dec 03, 2022 10:30 pm

Hahaha, anyone can enable it on the firefox browser but can you enable it on the router so all users achieve DOH without knowing it...........

Who is online

Users browsing this forum: patrikg, UkRainUa and 44 guests