Https-dns-proxy not working?

I have OpenWrt 23.05.4 with https-dns-proxy. When I use the following config to use Cloudflare Standard. On 1.1.1.1/help it says that I'm using DNS over HTTPS, which is what I want.

config main 'config'
        option dnsmasq_config_update '*'
        option force_dns '1'
        list force_dns_port '53'
        list force_dns_port '853'
        option canary_domains_icloud '1'
        option canary_domains_mozilla '1'

config https-dns-proxy
        option resolver_url 'https://cloudflare-dns.com/dns-query'
        option bootstrap_dns '1.1.1.1,8.8.8.8'

However when I switch to Cloudflare with Security filter by using the following config. 1.1.1.1/help says I am not using DNS over HTTPS. Are there any other ways of verifying that I'm indeed using DNS over HTTPS? As far as I'm aware, this used to work fine previously.

config main 'config'
        option dnsmasq_config_update '*'
        option force_dns '1'
        list force_dns_port '53'
        list force_dns_port '853'
        option canary_domains_icloud '1'
        option canary_domains_mozilla '1'

config https-dns-proxy
        option resolver_url 'https://security.cloudflare-dns.com/dns-query'
        option bootstrap_dns '1.1.1.1,8.8.8.8'

Any help would be greatly appreciated.

Edit - on reflection, I guess it may just be a limitation of 1.1.1.1/help. DNS over https is working when I set it to the regular Cloudflare service, just when I flip it to the security one that it fails to mention DNS over https.

Post a screenshot of the help page (feel free to blur tagbox)

1 Like

This is the page with Cloudflare Security set as DNS

That page seems to explicitly check for connection to 1.1.1.1. The security.cloudflare-dns.com domain resolves to different IPv4s: 1.0.0.2/1.1.1.2.

1 Like

Looking at the active connection list, I can see no connections on UDP port 53 only to 443 to 1.1.1.2. So you're right.

Thanks for the reassurance.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.