DNS.Over.TLS
Description
This indicates an attempt to use the DNS over TLS (DoT) protocol.DNS over TLS (DoT) is a protocol for performing Domain Name System (DNS) resolution over TLS-encrypted TCP connections through port 853 by default. It helps to improve privacy and security between clients and resolvers by encrypting the DNS requests and responses with TLS.
Affected Products
DNS over TLS
Impact
Unexpected network communication
Technology
Browser-Based, Network-Protocol, Client-Server, Peer-to-Peer, Cloud-Based, Mobile-Device
Behavior
- Tunneling
Default Ports
- TCP/853