F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Juergen_Mang's avatar
Juergen_Mang
Icon for MVP rankMVP
Dec 02, 2024

F5 as DNS over TLS Proxy

Hello Folks, I digged into the F5 Proxy capability for DNS over TLS and stumbled upon a problem. Flow is: Client -> Virtual Server DNS Plain (udp/53) -> DNS Server DNS over TLS (DTLS) (udp/85...
application delivery
security
Juergen_Mang's avatar
Juergen_Mang
Icon for MVP rankMVP
Dec 02, 2024

Thanks for your reply. I have already read this documentation, but I see no hints how to configure DNS (UDP) -> DNS over DTLS (UDP). DNS (TCP) -> DNS over TLS (TCP) works.

It seems DNS over TLS is defined by RFC 7858 and DNS over DTLS by RFC 8094.

I am unsure if DNS over DTLS is supported by F5 or any public resolver. If this is not supported an other attempt would be to translate DNS (udp) to DNS over TLS (TCP), but I have no idea how it can be done in a simple way with F5.