DOT/DOH for "Internet IP discover"? #1667

returntrip · 2026-06-02T09:18:13Z

returntrip
Jun 2, 2026

Can INTRNT plugin use DOT/DOH for "Internet IP discover"? In my setup I allow only secure DNS to port 853 and DNS resolution towards port 53 is disabled on the FW.

Answered by jokob-sk

Jun 2, 2026

No. The current INTRNT plugin uses:

dig +short ...

and dig only performs standard DNS queries over port 53 (UDP/TCP). It does not support DoT (853) or DoH (443).

In your setup, the dig lookup will fail, and the plugin will fall back to:

curl ifconfig.me/ip

which uses HTTPS and should still successfully detect your public IP.

Supporting DoT/DoH directly would require either a DoT-capable client (e.g. kdig) or changing the plugin to use an HTTPS-based IP lookup as the primary method.

View full answer

jokob-sk · 2026-06-02T12:16:20Z

jokob-sk
Jun 2, 2026
Maintainer

No. The current INTRNT plugin uses:

dig +short ...

and dig only performs standard DNS queries over port 53 (UDP/TCP). It does not support DoT (853) or DoH (443).

In your setup, the dig lookup will fail, and the plugin will fall back to:

curl ifconfig.me/ip

which uses HTTPS and should still successfully detect your public IP.

Supporting DoT/DoH directly would require either a DoT-capable client (e.g. kdig) or changing the plugin to use an HTTPS-based IP lookup as the primary method.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

DOT/DOH for "Internet IP discover"? #1667

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Uh oh!

DOT/DOH for "Internet IP discover"? #1667

Uh oh!

returntrip Jun 2, 2026

Replies: 1 comment

Uh oh!

jokob-sk Jun 2, 2026 Maintainer

returntrip
Jun 2, 2026

jokob-sk
Jun 2, 2026
Maintainer