0

IPV6 DNS queries Question

Hi all,

What is the privacy implication when combining NextDNS via IPV6 + VPN such that the DNS queries are being made within the encrypted tunnel of the VPN (which is great), but being technically unencrypted as the DNS queries are made via IPV6?

I am struggling to understand what issues might emerge from this type of use. I understand that if one makes plain IPV6 DNS queries an external observer, such as the ISP will see the DNS queries due to how IPV6 works; however, when these IPV6 DNS queries are made within an encrypted VPN tunnel, what happens then? What's the difference or data being leaked when NextDNS DNS queries logs show encrypted vs. unencrypted queries in this scenario? Any help much appreciated.

2 replies

null
    • NextDNs
    • 2 mths ago
    • Reported - view

    The DNS queries will be visible to your VPN provider and will travel in clear between your VPN network and ours.

    • Martheen
    • 2 mths ago
    • Reported - view

    Note that when using a VPN they still see what domain you end up visiting through SNI, ECH prevent this but deployment is still spotty

Login to reply

Content aside

  • 2 mths agoLast active
  • 2Replies
  • 73Views
  • 3 Following