Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DoQ #114

Closed
APT-ZERO opened this issue May 12, 2024 · 3 comments
Closed

DoQ #114

APT-ZERO opened this issue May 12, 2024 · 3 comments

Comments

@APT-ZERO
Copy link

APT-ZERO commented May 12, 2024
edited
Loading

Hello, You have blocked DNS over QUIC (853 UDP), but why you have blocked 853 TCP too? does DNS over QUIC use TCP too?
@chika0801
Copy link
Owner

TCP and UDP's 853, I recall, was to shield DoT, I think.

@APT-ZERO
Copy link
Author

APT-ZERO commented May 13, 2024
edited
Loading

What is benefits of blocking DoT?

@chika0801
Copy link
Owner

I was seeing that the official sing-box website has it in the examples. At that time I thought about the reason and I guessed that the possible reason was to be able to fully (and better) hijack Dns requests when using tun mode for example.

It's not mandatory to block it, so please comment based on your own results after thinking about it. If you want to further bottom why singbox has it, you can also go to its homepage and ask the author.

Translated with DeepL.com (free version)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@APT-ZERO @chika0801