If i exclude the app from rethink dns it use the isp dns, my goal is using rethink dns with wireguard on and some apps exclude from wireguard.
Is it possible that using rethink dns while wireguard on and some apps exclude from wireguard but using encrypted dns without private dns on?
Example i excluded brave browser but i still need to input secure dns. I want to excluded the app and set encrypted dns without going to put secure dns in the browser setting.
I hope i made it clear
This was a bit difficult to understand, but yes, you can route traffic from specific apps outside your VPN, while maintaining their encrypted DNS. The app may be able to manually use its own DNS though. I’ve seen a couple apps do that.
As far as I know, every application can choose its own DNS. It’s just that many of them don’t and go with the OS DNS. The OS DNS can be set under the connection settings on desktop and android, where there’s a spot to input DNS address. It seems to be respected more on android. Browsers can be set either to use encrypted DNS of your choosing or to go with OS DNS. For a browser, using the OS DNS is set in the same place you would set secure DNS.
Ultimately DNS is NOT a reliable filtering method unless it’s going through a second device that will reroute the DNS. Don’t rely on it for anything critical.
If it’s a browser, you should probably just use secure DNS.
With Rethink? Yes.
Use WireGuard in Advanced mode. Then add apps to be routed through it using the “Add / Remove” button in "Configure → Proxy → Setup WireGuard → (tap on the particular WireGuard profile)*.
If you’re on Android 12+, turn ON Configure → DNS → Split DNS if it isn’t, to make sure those apps setup to be routed through the WireGuard tunnel use WireGuard-provided DNS upstream.
The rest of the apps not setup to be routed through WireGuard should continue to use DNS setup in Configure → DNS.