Hi all,
what other steps can i take to stop my ISP eves dropping on me and seeing what im doing, i have enabled DoT, what else is there to enable to make my connections secure so they cant see what im doing apart from getting a VPN ?
Thanks,
Rob
Using a VPN?
ok so apart from that you cant do anymore hardening on your opnsense?
Since to eavesdrop the ISP does not need to "attack" your OPNsense in any way, no. It's irrelevant which router/firewall you use - your ISP can sniff in their side of the wire.
Why do you suspect them to do that? Can you share where you live?
You want to hide all app level stuff, then use a vpn service.
Even with all your traffic encrypted the ISP can see see routed IP. Using special techniques, traffic patterns become indicators, like part of a c2/botnet.
There are other more advanced techniques to be had, like chopping up your data stream and sending those chunks out via random VPN's, to be combined some place else before making last dash to target.