From 6e1f41533c142b386bdfa6114b4374c6995d8018 Mon Sep 17 00:00:00 2001
From: Mikaela Suomalainen <mikaela+git@mikaela.info>
Date: Thu, 29 Oct 2020 13:22:19 +0200
Subject: [PATCH] unbound/dns-over-tls.conf: comment the 443 appliedprivacy

Thinking it a bit more, it's not useful to use their resources on
devices that practically never encounter blocked port 853.
---
 etc/unbound/unbound.conf.d/dns-over-tls.conf | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/etc/unbound/unbound.conf.d/dns-over-tls.conf b/etc/unbound/unbound.conf.d/dns-over-tls.conf
index 28012873..d4b1b75b 100644
--- a/etc/unbound/unbound.conf.d/dns-over-tls.conf
+++ b/etc/unbound/unbound.conf.d/dns-over-tls.conf
@@ -21,10 +21,11 @@ forward-zone:
     name: "."
     forward-tls-upstream: yes
 
-    ## DNS-over-TLS on port 443, no filtering
+    ## DNS-over-TLS on port 443, no filtering. Mainly useful for traveling
+    ## laptops?
     # https://appliedprivacy.net/services/dns/ - Vienna, Austria
-    forward-addr: 2a02:1b8:10:234::2@443#dot1.applied-privacy.net
-    forward-addr: 146.255.56.98@443#dot1.applied-privacy.net
+    #forward-addr: 2a02:1b8:10:234::2@443#dot1.applied-privacy.net
+    #forward-addr: 146.255.56.98@443#dot1.applied-privacy.net
 
     # Cloudflare DNS - anycast
     forward-addr: 2606:4700:4700::1111@853#cloudflare-dns.com