OPNsense w/ AdGuard Home Secure SNI

jamisonfitz · February 08, 2023, 06:47:25 AM

Morning, I've successfully utilized the guides to get AdGuard running and passing the majority of Cloudflare tests, all but Secure SNI.

Can anyone advise this is running OPNSense 23.1_6 AMD64.

Web GUI
HTTPS Port: 443
Web GUI redirect rule: Disabled

DNS Configuration
DNS Servers: Empty
Local DNS as a nameserver: Disabled
DHCP/PP override on WAN: Disabled

DHCPv4 - LAN
DNS: Empty

Unbound DNS
DNSSEC Support: Enabled
Listen Port: 5353
DNS Over TLS:
Server: 1.1.1.1
Port: 853
Verify CN: cloudflare-dns.com
Ports Forwarding: None

Adguard Configuration
Encryption: Enabled
HTTPS Redirect: Port 1443
DNS Over TLS: Port 853
Certificate Validity: Valid
Upstream DNS: 192.168.1.1:5353
Bootstrap DNS Servers: 192.168.1.1:5353
Private Reverse DNS Servers: 192.168.1.1:5353
DNSSEC: Enabled

Adguard YAML Configuration
bind_host: 0.0.0.0
DNS bind_hosts: 0.0.0.0

Cloudflare Check Results
Secure DNS: Pass
DNSSEC: Pass
TLS 1.3: Pass
Secure SNI: Fail

yeraycito · February 08, 2023, 06:29:53 PM

Adguard Configuration
Encryption: Enabled
HTTPS Redirect: Port 1443
DNS Over TLS: Port 853
Certificate Validity: Valid

All this is not necessary

rama3124 · December 03, 2023, 04:21:30 AM

Why is this not necessary?

OPNsense w/ AdGuard Home Secure SNI

jamisonfitz

February 08, 2023, 06:47:25 AM

yeraycito

February 08, 2023, 06:29:53 PM #1

rama3124

December 03, 2023, 04:21:30 AM #2