I've already have nginx proxy manager installed on PC in my local network, so I've made a cert for dns.mydomain.com and copied necessary pems to my router.
Ofc turned on the setting at AGH web-interface, but still only plain dns. Whats wrong and how to make it work? Maybe there is another option.
I use AGH only for blocking some ads, so may be it's not that necessary for my, idk rly. Hope somebody will help
So resolution stops everywhere like DNS doesn't work at all. On router itself and on other devices in LAN network. So yes, upstream resolution stops and local one too.
For example I get this if plain DNS is unchecked
root@OpenWrt:~# nslookup google.com
;; communications error to 127.0.0.1#53: connection refused
;; communications error to 127.0.0.1#53: connection refused
;; communications error to 127.0.0.1#53: connection refused
;; communications error to ::1#53: connection refused
;; no servers could be reached
So, the installation was made by guide on my first post. I moved dnsseq to 54 port, and set adguard to 53. How else should I force it to listen 53 port?
And I have that error only when I uncheck plain dns in Adguard settings
Again, no idea which services AGH provides, but if the clients aren't configure to use an encrypted DNS service as a replacement, who are they supposed to query ?
So as far as I understand AdGuard listens 53 for plain dns and 853 for DoH and DoT. And dnsmasq listens 54, as it should be according to the manual I used to install AGH
Router provides DNS to Lan clients in my case, as far as I understood
You see, my main idea is to force ADH to use only DoH. It works for me if I left everything untouched as you. But if I check for dnsleaks, for example one.one.one.one/help sometimes it shows in debug info that DoH not used, but sometimes DoH is used.