April 9, 2018

Using Cloudflare DNS

As part of an effort to decrease the amount of metadata that accidentally leaks out from networks when using the internet, I decided to swtich my DNS server to the new "privacy respecting" Cloudflare server. Below are some quick steps to get it configured on my pfsense router.

Configuring pfsense

Under System > General
Change DNS servers to:

1.1.1.1
1.0.0.1
2606:4700:4700::1111
2606:4700:4700::1001

To enable additonal security and stop your ISP from seeing requests:

Enable DNS over TLS

Services > DNS
Scroll down to Custom Options
Paste code below, then hit save.

server:
forward-zone:
name: "."
forward-ssl-upstream: yes
forward-addr: [email protected]
forward-addr: [email protected]