Bots, Confirmed users
270
edits
Trusted Recursive Resolver: Difference between revisions
Updated with a more informative summary and links to FAQs and documentation oon SUMO
(Updated request timeout prefs. Updated notes on DNS enhanced services (rfc1918 is not allowed by default - see pref), botnets are not affected by TRR.) |
(Updated with a more informative summary and links to FAQs and documentation oon SUMO) |
||
| Line 1: | Line 1: | ||
DNS-over-HTTPS (DoH) allows DNS to be resolved with enhanced privacy, secure | |||
transfers and improved performance. This page describes Firefox configuration settings related to DoH in detail, and offers some explanation of internal operations of the implementation. | |||
Mozilla operates a Trusted Recursive Resolver program, whose requirements are documented [[Security/DOH-resolver-policy|here]]. All TRRs offered by Firefox conform to the requirements described in the policy. | |||
For more information, we've created [https://support.mozilla.org/en-US/kb/firefox-dns-over-https documentation about DoH and our plans for deployment]. We also have an [https://support.mozilla.org/en-US/kb/dns-over-https-doh-faqs FAQ], and instructions for [https://support.mozilla.org/en-US/kb/configuring-networks-disable-dns-over-https network operators who wish to disable DoH on their networks]. | |||
== DNS-over-HTTPS Settings in Firefox == | == DNS-over-HTTPS Settings in Firefox == | ||
| Line 114: | Line 116: | ||
* Initial ticket: https://bugzilla.mozilla.org/show_bug.cgi?id=1434852 | * Initial ticket: https://bugzilla.mozilla.org/show_bug.cgi?id=1434852 | ||
* The DNS-over-HTTPS spec: https://tools.ietf.org/html/rfc8484 | * The DNS-over-HTTPS spec: https://tools.ietf.org/html/rfc8484 | ||
* https://support.mozilla.org/en-US/kb/configuring-networks-disable-dns-over-https | * https://support.mozilla.org/en-US/kb/configuring-networks-disable-dns-over-https | ||