01-14-2021 02:30 AM
Hello ,
We are having DNS Advantage Package
We are concerened DNS over https , Is it a Security concern for us ? can umbrella be bypassed ?
Mostly our client machines are MACOS ?
Kindly provide some inputs in this direction of DNS over https
Solved! Go to Solution.
01-14-2021 02:52 AM
I would imagine that when you block "Proxy/Anonymizer" content category that would apply to any operating system. This page has additional information, you can further block DoH by blocking "Newly seen domains".
And for DoT block 1.1.1.1 and 1.0.0.1 port 853.
01-14-2021 02:34 AM
You can enable the "Proxy/Anonymizer" category in the DNS policy to block DoH providers
https://umbrella.cisco.com/blog/doh-whats-all-the-fuss-about-dns-over-https
01-14-2021 02:38 AM
Does it work for MACOS which dont have Firefox?
01-14-2021 02:52 AM
I would imagine that when you block "Proxy/Anonymizer" content category that would apply to any operating system. This page has additional information, you can further block DoH by blocking "Newly seen domains".
And for DoT block 1.1.1.1 and 1.0.0.1 port 853.
01-14-2021 03:17 AM
Thanks @Rob Ingram
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide