dns.bentasker.co.uk


Getting Started

The first port of call for any privacy sensitive user should be our Privacy Policy.

DNS-over-TCP

For best results, you should configure your DNS-over-TLS (DoT) client to use

dns.bentasker.co.uk, TCP port 853

for resolution

However, if you don't want to allow your resolver to do a lookup first, you can configure the following IPs, and instruct your resolver to verify that a valid cert is provided with the tls_auth_name dns.bentasker.co.uk.

Notes

Unbound Example
forward-zone:
        name: "."
        forward-tls-upstream: yes
        forward-addr: 51.255.232.237@853#dns.bentasker.co.uk
        forward-addr: 206.189.120.26@853#dns.bentasker.co.uk

For more information, see how to configure unbound for upstream DoT

DNS-over-HTTPS

Configure your DNS-over-HTTPS client to place queries via

https://dns.bentasker.co.uk/dns-query

By default, ECS information will be included in upstream queries. If you do not want this, you should ensure your DoH client is set to request that ECS is not used.

Notes

Firefox Example (about:config)
network.trr.uri: https://dns.bentasker.co.uk/dns-query
network.trr.disable-ECS: false
network.trr.mode: 2

Copyright © 2019 Ben Tasker | Privacy Policy
Available at dns.bentasker.co.uk / dns.6zdgh5a5e6zpchdz.onion
Page from: