This means that whenever a user visits a website on Cloudflare that has ECH enabled, no one except for the user, Cloudflare, and the website owner will be able to determine which website was visited.
It’s also important to understand that no one technology can be a panacea. ECH works alongside other security and privacy features in Firefox, including DNS-over-HTTPS (DoH). DoH encrypts DNS queries to protect the translation of website names to IP addresses, which ensures that website names aren’t visible to the network in DNS traffic and is essential for ECH to be effective.
DoH alone should prevent DNS blockages, ECH would also prevent packet inspection revealing the domain.
How does this work against DNS blocks? I assume if you use your ISPs DNS server and they block that domain ECH won’t help
ECH is supposed to be used alongside DoH.
https://blog.mozilla.org/en/products/firefox/encrypted-hello/
DoH alone should prevent DNS blockages, ECH would also prevent packet inspection revealing the domain.
In that case use some other DNS server.
yo have to use cloudflare dns for it to work, not sure, but maybe you can use an external DoH DNS server, haven’t tried that