Referenced Document
|
When using iCloud Private Relay, most VPN clients, or Little Snitch, it will not utilize/respect this DNS profile. |
Summary
The section titled "VPNs, iCloud Private Relay, Little Snitch” appears to contain two issues specific to iOS:
- The statement about iCloud Private Relay not respecting DNS profiles is inaccurate when custom encrypted DNS (DoH / DoT) is used
- Little Snitch is mentioned in an iOS‑only guide, but Little Snitch is not available on iOS
iCloud Private Relay clarification
The document currently states:
“Apple private relay will use its own DNS servers at the system level, with no way to override it.”
However, Apple’s own iCloud Private Relay Overview documentation states:
If a user has configured custom‑encrypted DNS settings using a profile or an app, the DNS server specified will be used instead of ODoH.
Source (Apple):
https://www.apple.com/privacy/docs/iCloud_Private_Relay_Overview_Dec2021.PDF
(“Custom DNS settings” section)
Based on Apple’s documentation:
- Encrypted DNS (DoH / DoT) configured via profile or app is respected by iCloud Private Relay
- Unencrypted DNS (manual Wi‑Fi DNS / DHCP DNS) is not used for iCloud Private Relay traffic
Little Snitch mention
The heading and warning include Little Snitch, however:
- Little Snitch does not exist on iOS
Referenced Document
documentation/docs/en/Setup_Guides/iOS/iOS_14_and_later_(Encrypted).md
Line 6 in a3db09d
Summary
The section titled "VPNs, iCloud Private Relay, Little Snitch” appears to contain two issues specific to iOS:
iCloud Private Relay clarification
The document currently states:
However, Apple’s own iCloud Private Relay Overview documentation states:
Source (Apple):
https://www.apple.com/privacy/docs/iCloud_Private_Relay_Overview_Dec2021.PDF
(“Custom DNS settings” section)
Based on Apple’s documentation:
Little Snitch mention
The heading and warning include Little Snitch, however: