From 6db1542577e319ee4bdcde4a7e454bc01477f916 Mon Sep 17 00:00:00 2001
From: Pothi Kalimuthu <1254302+pothi@users.noreply.github.com>
Date: Mon, 3 Jul 2023 07:33:55 +0530
Subject: [PATCH] Add Google DoH script

---
 doh-scripts/google.rsc | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 doh-scripts/google.rsc

diff --git a/doh-scripts/google.rsc b/doh-scripts/google.rsc
new file mode 100644
index 0000000..6003920
--- /dev/null
+++ b/doh-scripts/google.rsc
@@ -0,0 +1,22 @@
+# Verify the connection at TODO
+
+# disable doh (temporarily)
+
+/ip dns set verify-doh-cert=no
+
+/tool fetch url=https://pki.goog/repo/certs/gtsr1.pem once
+:delay 5s
+/certificate remove [find~gtsr1]
+/certificate import file-name=gtsr1.pem passphrase=""
+/file remove gtsr1.pem
+
+/ip dns static add address=8.8.8.8 name=dns.google
+/ip dns static add address=8.8.4.4 name=dns.google
+/ip dns set use-doh-server=https://dns.google/dns-query verify-doh-cert=yes
+
+# optional steps
+/ip dns set servers=""
+/ip dhcp-client set use-peer-dns=no [find]
+
+# flush existing cache
+/ip dns cache flush