DNS over HTTPS on Mudi

EvolvePlease · September 25, 2025, 8:05pm

DNS over TLS appears as an encrypted DNS option in the GL admin panel. Sadly, no DNS over HTTPS.

There are some packages in the GL repo, like https-dns-proxy, dns-over-https and luci-app-https-dns-proxy,

I tried https-dns-proxy and luci-app-https-dns-proxy but there seems to be a GL “feature” that overrides DNS settings that don’t originate from the GL admin panel.

Is there a reliable way to set up DNS over HTTPS on Mudi?

bruce · September 26, 2025, 4:18am

The https-dns-proxy has a record configuration file in /etc/dnscrypt-proxy2/dnscrypt-proxy.toml.
You can back up to /root/dnscrypt-proxy.toml after setting it up.

If the running configuration has overwrite/change, you can add commands in /etc/rc.local to make it execute once each time of router starts and overwrite the running configuration:

sleep 30
cp /root/dnscrypt-proxy.toml /etc/dnscrypt-proxy2/dnscrypt-proxy.toml
/etc/init.d/dnscrypt-proxy restart
/etc/init.d/dnsmasq restart

EvolvePlease · September 26, 2025, 4:37am

Thank you, @bruce !

On an unrelated matter: what can you suggest for maximizing operating time on battery?

– Turn off unused WiFi band.
– Set low TX power

Are there any other ideas you can suggest, even if the gain is only a few more minutes on battery?

Thanks!

EvolvePlease · September 26, 2025, 6:31am

@bruce

The Mudi (on firmware 0328release1) doesn't have dnscrypt-proxy2

And if I try to install the package, there is an error:

Collected errors:
 * check_conflicts_for: The following packages conflict with dnscrypt-proxy2:
 * check_conflicts_for: 	dnscrypt-proxy * 
 * opkg_install_cmd: Cannot install package dnscrypt-proxy2.

dnscrypt-proxy shouldn’t be removed because gl-sdk4-dns depends on it.

Maybe you can enlighten me re: how to properly set up DoH?

EvolvePlease · September 27, 2025, 3:57am

@bruce I spent more time going in circles - with no reliable outcome. There must be a reliable method to put DoH on Mudi.

bruce · September 28, 2025, 10:56am

If the E750 is not in use, you can hold the side button for 4 seconds to enter standby mode.

bruce · September 28, 2025, 11:24am

Hello,

Seems the Mudi v2 firmware does not support DOH for now, that is, the dnscrypt-proxy2 is not supported, now supported v1.

I have submitted to R&D to evaluate, since the Mudiv2 has little flash space, so we have to evaluate whether it is merge the dnscrypt-proxy2 software and that supports configuration on the GL GUI.

Sorry, there is currently no other way to support DOH, you can use DOT first.

EvolvePlease · September 28, 2025, 1:02pm

@bruce Understand. Thank you.

saki · September 29, 2025, 12:00am

In this case, can you add adguard DNS via DOT?

There is no adguard dns DOT support in E750v2

Limited?! It is 128 MB! Now used less than 60! Plus it supports SD cards.

bruce · September 30, 2025, 6:41am

The list of DOT server in the firmware does not support adguard dns for now, but you can add it manually via SSH to router.

When upgrading firmware, it still requires some extra space because it needs to be decompressed.

saki · September 30, 2025, 6:57am

If it is so easy to add, what prevents you to add it in upcoming update? One string of config is few kilobytes.

I would like to have at least Quad9 and Adguard DNS servers selection (NOT replacing something)

bruce · September 30, 2025, 7:31am

This requirement will be submitted to the PM team and evaluated.

If you required to use it now, refer to the above method to configure it manually.