If the simplest solution where I just replace 8888 with another #### DNS in my router/PC/devices stops working.

I'm thinking of using dnscrypt-proxy. Is it difficult to set up?

This ControlD need to pay for using an account?

Actually no...you can follow many tutorials in YouTube

For those with resources to setup their own DNS resolver or those sysadmin here.

Can anyone verify if ISP is hijacking private DNS resolver as well?

Cause it seems fine on my end. I am trying to avoid DoH and DoT due to performance impact.

Try --> https://www.olevod.tv/ (website to watch most recent movies)

Most mobile operators block it and Unifi fiber block it starting today

Try --> https://www.olevod.tv/ (website to watch most recent movies) to verify.

If your browser just spining and timeout then 100% it is block. Use DoH also no help on some DNS resolvers
, need to find those resolvers  not so well known and might have the chance to bypass the block.

Most mobile operators block it and Unifi fiber block it starting today

Try --> https://www.olevod.tv/ (website to watch most recent movies) to verify.

If your browser just spining and timeout then 100% it is block. Use DoH also no help on some DNS resolvers
, need to find those resolvers  not so well known and might have the chance to bypass the block.

Most mobile operators block it and Unifi fiber block it starting today

Try --> https://www.olevod.tv/ (website to watch most recent movies) to verify.

If your browser just spining and timeout then 100% it is block. Use DoH also no help on some DNS resolvers
, need to find those resolvers  not so well known and might have the chance to bypass the block.

Most mobile operators block it and Unifi fiber block it starting today

For those with resources to setup their own DNS resolver or those sysadmin here.

Can anyone verify if ISP is hijacking private DNS resolver as well?

Cause it seems fine on my end. I am trying to avoid DoH and DoT due to performance impact.

Digi phone cannot load

For those with resources to setup their own DNS resolver or those sysadmin here.

Can anyone verify if ISP is hijacking private DNS resolver as well?

Cause it seems fine on my end. I am trying to avoid DoH and DoT due to performance impact.

If yours is Android phone, goto settings and key in "DNS" to search, chosse setup private/custom dns, then put in "dns.google".

You cannot access this site even via DoH with public resolver e.g. Google DNS now?

there free and paid account

https://controld.com/free-dns

you can get cheap paid account by just registering on

https://windscribe.com/

and use your username there as promo code on controld 

thanks for sharing, just subscribe with tiral 30 days period.
Work nicely, see how it goes after 28 days to confirm on the yearly subscription 

For those with resources to setup their own DNS resolver or those sysadmin here.

Can anyone verify if ISP is hijacking private DNS resolver as well?

Cause it seems fine on my end. I am trying to avoid DoH and DoT due to performance impact.

> google.com
Server:  dns.umbrella.com
Address:  208.67.222.222

Non-authoritative answer:
Name:    google.com
Addresses:  2404:6800:4003:c11::8a
          2404:6800:4003:c11::64
          2404:6800:4003:c11::65
          2404:6800:4003:c11::71
          142.251.12.138
          142.251.12.139
          142.251.12.100
          142.251.12.101
          142.251.12.102
          142.251.12.113

> murrayhunter.substack.com
Server:  dns.umbrella.com
Address:  208.67.222.222

Non-authoritative answer:
Name:    murrayhunter.substack.com
Addresses:  2606:4700:4400::6812:25c8
          2606:4700:4400::ac40:9638
          104.18.37.200
          172.64.150.56

fine with me. (dns server on my sig)

Beware of DNS amplification attack

I have a similar configuration but with ACL for AS4788 and AS9534 only

Edit: I wonder if Unifi Biz affective by this as well. But I guess any decent corp or MNC have their own internal DNS already anyways.