0

MobileConfig for iOS - DoH only?

MobileConfig generator generates MobileConfig file that clearly lists HTTPS, but my router shows that my iOS device (Apple TV) with NextDNS MobileConfig profile sometimes tries to resolve domains over TCP port 853. That is DoT, not DoH. Is that normal behavior? Why is there no separate profile for DoT and separate for DoH?

4 replies

null
    • Michael_Villalobos
    • 1 yr ago
    • Reported - view

    You’d need to manually make it DoT.

     

    nextdns got a whole philosiphy over DoH 

    • OpenSource_Ghost
    • 1 yr ago
    • Reported - view

    So DoH would not be falling back to DoT when profile is generated using NextDNS generator (without any manual changes) ?

     

    If the answer is no, then someone is spoofing my Apple TV and/or performing MITM on my network because logs show that Apple TV is trying to make TCP port 853 connections to NextDNS address. I just want to know for sure before making conclusions...

      • Michael_Villalobos
      • 1 yr ago
      • Reported - view

      OpenSource Ghost if it’s tvOS then that’s different, I know for iOS it doesn’t fallback to anything. 

    • OpenSource_Ghost
    • 1 yr ago
    • Reported - view

    How can I find out for sure???

Content aside

  • 1 yr agoLast active
  • 4Replies
  • 625Views
  • 2 Following