Privacy-Protecting Portable Router: Adding DNS-Over-TLS support to OpenWRT (LEDE) with Unbound

This blog post discusses the importance of protecting privacy online by encrypting Domain Name System (DNS) traffic. It explains that while encryption technologies have been longstanding for HTTP connections, only recently have such techniques been standardized for DNS. The author demonstrates how to configure an OpenWRT router to encrypt outbound traffic to Cloudflare's DNS Resolver using DNS-over-HTTPS and DNS-over-TLS. This is particularly useful when protecting the traffic of devices that may not support encrypted DNS protocols, such as TVs or IoT enabled toasters. The post also provides step-by-step instructions on how to replace Dnsmasq with Unbound and odhcpd in order to enable DNS-over-TLS on an OpenWRT router.