I’m using e/os and I want to be sure that, when connected to my local network, my local dns server is used, however, no matter what I do, my phone always use google’s one. Is there any way to fix this?

  • thelittleblackbirdEnglish
    4·
    15 hours ago

    I had the same problem in my network and the solution is not easy.

    Many, but many android apps are using Google dns servers just to leak the location of the phone (using the nearest geographical Google server).

    The only way I found it was to instsll an opnsense router and redirect requests to port 53 to the internal dns server.

    DoT (dns over tls) is blocked because it can not be redirected

    DoH (dns over https) is (almost) imposible to block and still is a hole in current systems.

    Good luck solving this

    • Engywook@lemmy.zipEnglish
      3·
      15 hours ago

      You can block DoH by using a comprehensive blocklist of DoH domains. Both NextDNS and ControlD do this.

      • thelittleblackbirdEnglish
        1·
        11 hours ago

        Yep, I checked that possibility too but it is like putting barriers into the see because :

        • DoH can also share the IP-PORT with some legits websites
        • there is not a proper way to scan the web to see if there is a proper service
        • the effort to setup one is orders of magnitude lower tan to track then and then to filter it properly

        Honestly is just the prey-predator competition. It won’t stop ever