{"id":43,"date":"2019-11-25T08:46:56","date_gmt":"2019-11-25T08:46:56","guid":{"rendered":"https:\/\/technobabble.us.to\/?page_id=43"},"modified":"2020-12-17T05:25:40","modified_gmt":"2020-12-17T05:25:40","slug":"dns-tls-over-vpn-screw-off-comcast","status":"publish","type":"page","link":"https:\/\/technobabble.us.to\/?page_id=43","title":{"rendered":"DNS-TLS over VPN"},"content":{"rendered":"\n<figure class=\"wp-block-embed-wordpress wp-block-embed is-type-wp-embed is-provider-hashed-out-by-the-ssl-store\u2122\"><div class=\"wp-block-embed__wrapper\">\nhttps:\/\/www.thesslstore.com\/blog\/dns-over-tls-vs-dns-over-https\/\n<\/div><figcaption>A good article on the difference between DoT and DoH<\/figcaption><\/figure>\n\n\n\n<p>I&#8217;ve setup DNS-TLS at the house so that comcast can&#8217;t see all of my DNS traffic and sell it for marketing purposes. Moreover, I&#8217;ve routed all of my sensitive traffic over my VPN so that they can&#8217;t see which IP&#8217;s I&#8217;m visiting or look at the SSL SNI information to try and gather clues that way.  <\/p>\n\n\n\n<p>I&#8217;m using my PFSense Firewall as a DNS Resolver and VPN client to route all of my DNS traffic over my VPN that terminates on a dedicated server in a Canadian datacenter. The results get tunneled back to my house via the VPN connection. <\/p>\n\n\n\n<p>I&#8217;ll post another detailed writeup when I get some time for anyone who may be interested in doing something similar.  <\/p>\n","protected":false},"excerpt":{"rendered":"<p>I&#8217;ve setup DNS-TLS at the house so that comcast can&#8217;t see all of my DNS traffic and sell it for marketing purposes. Moreover, I&#8217;ve routed all of my sensitive traffic over my VPN so that they can&#8217;t see which IP&#8217;s &hellip; <a href=\"https:\/\/technobabble.us.to\/?page_id=43\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"parent":32,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-43","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/technobabble.us.to\/index.php?rest_route=\/wp\/v2\/pages\/43","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technobabble.us.to\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/technobabble.us.to\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/technobabble.us.to\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/technobabble.us.to\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=43"}],"version-history":[{"count":6,"href":"https:\/\/technobabble.us.to\/index.php?rest_route=\/wp\/v2\/pages\/43\/revisions"}],"predecessor-version":[{"id":691,"href":"https:\/\/technobabble.us.to\/index.php?rest_route=\/wp\/v2\/pages\/43\/revisions\/691"}],"up":[{"embeddable":true,"href":"https:\/\/technobabble.us.to\/index.php?rest_route=\/wp\/v2\/pages\/32"}],"wp:attachment":[{"href":"https:\/\/technobabble.us.to\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=43"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}