DNS over TLS - Different server for specific VLAN(s)

[xstreem]

Hi everybody, I just configured my DNS over TLS using Cloudflare servers.
1.1.1.2 that is correctly working on all VLANs.

My question is I want that a specific VLAN or group of them utilize another server, for example I want that the KIDS Vlan is using 1.1.1.3.
I cannot find a way in the DNS over TLS configuration.
I tried to put this server on the DHCP section, losing the TLS functionality.

Is there a way to use DNS over TLS with different servers based on VLAN ?

Thanks

[FullyBorked]

I'm not aware of a way of defining this per VLAN/interface.  I assume you are wanting to do content filtering for your kids VLAN (1.1.1.3 (No Malware or Adult Content)) but not for the "parent" VLAN?  Have you thought about another solution such as Zenarmor?  You could setup different profiles for each VLAN (with the paid subscription) and its filtering and protections would be far superior to simple DNS filtering. 

[xstreem]

sure I know about this methodology, but the importance of this service at the moment is not justifying the paid sub . For the moment the DNS filtering would make its work. Today I switched to DNSCrypt, but in regards of this aspect seems there is no difference

[jp0469]

Hi everybody, I just configured my DNS over TLS using Cloudflare servers.
1.1.1.2 that is correctly working on all VLANs.

My question is I want that a specific VLAN or group of them utilize another server, for example I want that the KIDS Vlan is using 1.1.1.3.
I cannot find a way in the DNS over TLS configuration.
I tried to put this server on the DHCP section, losing the TLS functionality.

Is there a way to use DNS over TLS with different servers based on VLAN ?

Thanks

This can be easily achieved if you're willing to use the Adguard Home plugin. In the AGH settings, you can define a client group by CIDR range and then apply custom upstream DNS entries to just that group.