jibcage
commented
3 years ago The choice to use NextDNS is mostly for demo purposes. Ideally you'd use the ProtonVPN server as your DoH endpoint. While it doesn't really make sense to do that since the traffic is already encrypted, it might be a more interesting application for Oblivious DoH. I have a working prototype implementation (on macOS at least) of a NEDNSProxyProvider that can resolve ODoH queries with cloudflare's endpoint and odoh-rs client library, but since HPKE is still kind of an emerging standard and there aren't any audited libraries available yet, it'll take a little longer before it sees more widespread adoption.
Use the native secure dns feature available in iOS 14 and macOS 11 and later.