Does this DNS over DOH look correct

Installing and Using OpenWrt Network and Wireless Configuration
1

I have entered quad9 's dns servers but am not sure if DoH is actually working.
When I use the below command I get very little happening on port 853

netstat -an | grep :853
udp        0      0 0.0.0.0:853             0.0.0.0:*                           
udp        0      0 :::853                  :::*

But when I use the same command on port 53 I see a lot more happening,
I think my queries are not encrypted.

netstat -an | grep :53
tcp        0      0 10.131.86.139:53        0.0.0.0:*               LISTEN      
tcp        0      0 10.50.30.19:53           0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:53            0.0.0.0:*               LISTEN      
tcp        0      0 fe80::e65f:1ff:fe84:5969:53 :::*                    LISTEN      
tcp        0      0 fe80::e65f:1ff:fe84:596a:53 :::*                    LISTEN      
tcp        0      0 ::1:53                  :::*                    LISTEN      
tcp        0      0 fd7f:3613:3ffc::1:53    :::*                    LISTEN      
udp        0      0 127.0.0.19:53            0.0.0.0:*                           
udp        0      0 10.131.86.139:53        0.0.0.0:*                           
udp        0      0 10.50.30.19:53           0.0.0.0:*                           
udp        0      0 ::1:53                  :::*                                
udp        0      0 fe80::e65f:1ff:fe84:596a:53 :::*                                
udp        0      0 fd7f:3613:3ffc::1:53    :::*                                
udp        0      0 fe80::e65f:1ff:fe84:5969:53 :::*

How do I actually determine if am using port 853 / DoH
The image below shows where I entered the port 853, before I put 853 there it displanyed any.

DNS-Settings-
DNS-Settings-827×544 41.1 KB

2

Visit https://openwrt.org/docs/guide-user/services/dns/doh_dnsmasq_https-dns-proxy if you haven’t already and there’s a section there as well for testing.

2 Likes
3

Delete that, it is wrong, and not how you enable encrypted DNS. That option affects outbound source port range.

4

Port 853 has nothing to do with DOH, it is used by DOT, DNS-Over-TLS.
DOH stands for DNS-Over-HTTP(S), the latter operates via port 443/TCP as a standard.