How do you use NextDNS with hard-to-configure devices? A lot of its config seems to require DNS-over-HTTPS which I'm not sure my Smart TV would support.
You run a DoH or DoT proxy on your edge device or a caching resolver that supports DoH on your edge device, serve DNS from the edge device over DHCP and block outbound DNS from other devices on the network at the firewall. Doesn’t fix evil Google devices that intentionally use DoH to bypass DNS blocking, but there are ways (more complicated, unfortunately) to fix that too.
I use unbound as my edge resolver, and you can use this to help prevent _some_ rogue DoH clients
# nx domain for disabling firefox DoH, so we can still get adblocking
# https://support.mozilla.org/en-US/kb/canary-domain-use-application-dnsnet
local-zone: "use-application-dns.net" always_nxdomain
I have my home router pointing to their DNS servers, and then NextDNS links your public IP to your account. This ensures all your local devices are using it.
But what if your IP changes? NextDNS provides a URL you can call manually to resync your IP address. I recycled my PiHole with a cron job to just call it every minute.
