Use IP host list as DNS server options?

Instead of manually entering DNS IP addresses into the DNS fields, it would be nice if we could use an IP host instead. Say you wanted to use google as your DNS. A user could create an IP host called "Google DNS servers" of the two IP addresses 8.8.8.8 and 8.8.4.4 and use that as the DNS servers option.

I believe the UTM had this feature, but it seems it could be implemented into SFOS in the future.



Added TAGs
[edited by: Raphael Alganes at 5:39 AM (GMT -8) on 12 Feb 2024]
  • You mean this one? 

    UTM could use a longer list of DNS providers, but in reality, most customers selected the DHCP option or the manually (known Hosts) like GoogleDNS. 

    Looking into this, an IP host list could be an improvement, but only for a smaller grade of customer, who wants to have more than 3 DNS servers. 

    __________________________________________________________________________________________________________________

  • The reason is that since I use AdGuard, they want the Sophos Firewall to be able to use a DNS-over-TLS to their DNS servers. Whether this will ever be possible or not, Sophos should look into DoT, and DoH as a big step in security to prevent DNS leaks and DoT/DoH is going to be in the future of DNS. 

    I would love to see this on a future roadmap.

  • More likely, Sophos will enhance there story about DNS Protection itself and going forward in this segment. Whether it will utilize DoT or other mechanism, this will be shown in the future. 

    __________________________________________________________________________________________________________________