The goal of this feature is to increase user privacy and security by preventing eavesdropping and manipulation of DNS data by man-in-the-middle attacks by using the HTTPS protocol to encrypt the data between the DoH client and the DoH-based DNS resolver.
- It simplyfies your Firewall outgoing rules by deny any outgoing UDP packets on 53 port. .
- DNS queries switched to HTTPs can use a Proxy that allows you to use a second outgoing log/analyze process level.
It requires a minor modification, just set your Artica server as an upstream DNS server in your Active Directory settings.