My setup
- Windows 11 Pro
- pfSense router acting as my DNS server
- with standard DNS (port 53) and DoT (853) available
- DoT is using self-signed certs
- doge.exe v0.2.9
Background
When I do a DNS lookup to my pfsense router with the following command:
doge google.com A @10.0.0.1 --tls
I get this response
Error [tls]: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider. (os error -2146762487)
Request
I would like an option to disable peer verification.
Maybe something like this from https://github.com/mikepultz/netdns2?tab=readme-ov-file#dns-over-tls-dot
$r->use_tls = true;
$r->tls_context = [ 'verify_peer' => false, 'verify_peer_name' => false ];
For more details, see the SSL Context Options documentation.
I am guessing it does both DoT and DoH
My setup
Background
When I do a DNS lookup to my pfsense router with the following command:
I get this response
Request
I would like an option to disable peer verification.
Maybe something like this from https://github.com/mikepultz/netdns2?tab=readme-ov-file#dns-over-tls-dot
For more details, see the SSL Context Options documentation.
I am guessing it does both
DoTandDoH