iOS MobileConfig - instructions for DoH without bootstrap

[ghost]

Prerequisites

• [X] I have checked the Wiki and Discussions and found no answer

• [X] I have searched other issues and found no duplicates

• [X] I want to request a feature or enhancement and not ask a question

Description

It would be nice if MobileConfig generation instructions stated how to create MobileConfig for iOS that doesn't use UDP port 53 to resolve domain and uses encrypted queries over TCP port 443 without boostrapping.

[ghost]

Additionally, I noticed that AdGuard official MobileConfig (https://cdn.adtidy.org/public/Dns/adguard-dns.mobileconfig) makes my Apple devices send queries over TCP port 443 (DoH) and TCP port 853 (DoT). Is DoT supposed to be a fallback for DoH? Does that mean one MobileConfig can include both protocols - DoH and DoT? The XML file specifies only DoH.

Please update documentation on how to create profiles:

• Without plaintext UDP port 53 bootstrapping
• Specific to only DoH
• Specific to only DoT
• Non-specific to support DoH and DoT at the same time