From c78eecb547dcf1f6ef5eebd8fa9f9b14e11ab06a Mon Sep 17 00:00:00 2001
From: Mikaela Suomalainen <mikaela+git@mikaela.info>
Date: Sat, 17 Aug 2019 00:10:32 +0300
Subject: [PATCH] unbound/dns-over-tls: add two port 443 resolvers

---
 etc/unbound/unbound.conf.d/dns-over-tls.conf | 18 ++++++++++++++----
 1 file changed, 14 insertions(+), 4 deletions(-)

diff --git a/etc/unbound/unbound.conf.d/dns-over-tls.conf b/etc/unbound/unbound.conf.d/dns-over-tls.conf
index c8226310..1bde229e 100644
--- a/etc/unbound/unbound.conf.d/dns-over-tls.conf
+++ b/etc/unbound/unbound.conf.d/dns-over-tls.conf
@@ -12,12 +12,22 @@ server:
 forward-zone:
     name: "."
     forward-tls-upstream: yes
+    #
+    ### DNS-over-TLS on port 443, no filtering
+    # https://appliedprivacy.net/services/dns/
+    forward-addr: 37.252.185.232@443#dot1.appliedprivacy.net
+    ## https://dnswarden.com/
+    forward-addr: 2a01:4f8:1c1c:5e77::1@443#uncensored-dot.dnswarden.com
+    forward-addr: 2a01:4f8:1c1c:75b4::1@443#uncensored-dot.dnswarden.com
+    forward-addr: 116.203.35.255@443#uncensored-dot.dnswarden.com
+    forward-addr: 116.203.70.156@443#uncensored-dot.dnswarden.com
+    ##
     ## Quad9 - warning: uncommenting others simultaneously will break
     ## malicious domain blocking.
-    forward-addr: 2620:fe::fe@853#dns.quad9.net
-    forward-addr: 9.9.9.9@853#dns.quad9.net
-    forward-addr: 2620:fe::9@853#dns.quad9.net
-    forward-addr: 149.112.112.112@853#dns.quad9.net
+    #forward-addr: 2620:fe::fe@853#dns.quad9.net
+    #forward-addr: 9.9.9.9@853#dns.quad9.net
+    #forward-addr: 2620:fe::9@853#dns.quad9.net
+    #forward-addr: 149.112.112.112@853#dns.quad9.net
     ## Google - warning: for-profit business
     #forward-addr: 2001:4860:4860::8888@853#dns.google
     #forward-addr: 2001:4860:4860::8844@853#dns.google