If encrypted DNS is configured, the traditional DNS will only be used to test the connectivity and resolve the domain in the encrypted DNS URL.
- DNS over HTTPS: https://example.com
- DNS over HTTP/3: h3://example.com
- DNS over QUIC: quic://example.com
Use Encrypted DNS for All Domains
[General] encrypted-dns-server = https://126.96.36.199/dns-query
You may specify multiple encrypted servers here, separated by commas.
Use Encrypted DNS for Specified Domains
[Host] example.com = server:https://cloudflare-dns.com/dns-query
Use Encrypted DNS with Proxy
If you want to query DoH servers through a proxy, you can set
encrypted-dns-follow-outbound-mode to true.
All the encrypted DNS connections will follow the outbound mode settings. Then configure a rule for the DoH hostname to use a proxy.
PROTOCOL,DOQ rule to match all encrypted DNS connections.