curl/docs/cmdline-opts/doh-url.md
David Sardari cb829f994d
doh-url.md: point out DOH server IP pinning
Closes #14377
Signed-off-by: David Sardari <d@duxsco.de>
2024-08-04 15:57:45 +02:00

1014 B

c SPDX-License-Identifier Long Arg Help Added Category Multi See-also Example
Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. curl doh-url <URL> Resolve hostnames over DoH 7.62.0 dns single
doh-insecure
--doh-url https://doh.example $URL
--doh-url https://doh.example --resolve doh.example:443:192.0.2.1 $URL

--doh-url

Specifies which DNS-over-HTTPS (DoH) server to use to resolve hostnames, instead of using the default name resolver mechanism. The URL must be HTTPS.

Some SSL options that you set for your transfer also applies to DoH since the name lookups take place over SSL. However, the certificate verification settings are not inherited but are controlled separately via --doh-insecure and --doh-cert-status.

By default, DoH is bypassed when initially looking up DNS records of the DoH server. You can specify the IP address(es) of the DoH server with --resolve to avoid this.

This option is unset if an empty string "" is used as the URL. (Added in 7.85.0)