github.com/StackExchange/dnscontrol/v4@v4.11.0/documentation/provider/dnsoverhttps.md (about) 1 This is a read-only/monitoring "registrar". It does a DNS NS lookup to confirm the nameserver servers are correct. This "registrar" is unable to update/correct the NS servers but will alert you if they are incorrect. A common use of this provider is when the domain is with a registrar that does not have an API. 2 3 ## Configuration 4 5 To use this provider, add an entry to `creds.json` with `TYPE` set to `DNSOVERHTTPS`. 6 7 {% code title="creds.json" %} 8 ```json 9 { 10 "dohdefault": { 11 "TYPE": "DNSOVERHTTPS" 12 } 13 } 14 ``` 15 {% endcode %} 16 17 The DNS-over-HTTPS provider defaults to using Google Public DNS however you may configure an alternative RFC 8484 DoH provider using the `host` parameter. 18 19 Example: 20 21 {% code title="creds.json" %} 22 ```json 23 { 24 "dohcloudflare": { 25 "TYPE": "DNSOVERHTTPS", 26 "host": "cloudflare-dns.com" 27 } 28 } 29 ``` 30 {% endcode %} 31 32 Some common DoH providers are: 33 34 * `cloudflare-dns.com` ([Cloudflare](https://developers.cloudflare.com/1.1.1.1/dns-over-https)) 35 * `9.9.9.9` ([Quad9](https://www.quad9.net/about/)) 36 * `dns.google` ([Google Public DNS](https://developers.google.com/speed/public-dns/docs/doh)) 37 38 ## Metadata 39 This provider does not recognize any special metadata fields unique to DOH. 40 41 ## Usage 42 An example configuration: 43 44 {% code title="dnsconfig.js" %} 45 ```javascript 46 var REG_MONITOR = NewRegistrar("dohcloudflare"); 47 48 D("example.com", REG_MONITOR, 49 NAMESERVER("ns1.example.com."), 50 NAMESERVER("ns2.example.com."), 51 END); 52 ``` 53 {% endcode %} 54 55 {% hint style="info" %} 56 **NOTE**: This checks the NS records via a DNS query. It does not check the 57 registrar's delegation (i.e. the `Name Server:` field in whois). In theory 58 these are the same thing but there may be situations where they are not. 59 {% endhint %}