Allow Out - DNS-Proxy Port 853?
When reviewing traffic passing through the default "Outgoing" Packet Filter, I noticed some Guest Network DNS Traffic going out to 8.8.8.8 on port 853 (rather than port 53). This is Google Secure DNS over TLS. My existing DNS Proxy Rule only allows the standard port 53 for DNS. Should I also add Port 853 to this existing rule?
Kind Regards, Stephen
0
Sign In to comment.
Comments
The DNS proxy does not currrently support TLS - only unencrypted traffic on TCP & UDP port 53.
@Bruce_Briggs Thanks for that. I will leave things as they are for the time being. It looks as though the client falls back onto port 53 if 853 is not available.