I’m in the process of setting up Pi-hole + dnscrypt proxy; got them all working, then use CF’s test page to test: (https://www.cloudflare.com/ssl/encrypted-sni/).
It tells me that it can’t tell whether I am or not.
All other indicators say that I am however, i.e. other leaktest sites. Why is this? Is it simply because I’m not specifically using CF’s 18.104.22.168 DNS server during the test? (It’s one of about 5 other DNS servers I have in my DNSCrypt list of server to use, which it pulls the one with the least latency at any time, so CF’s isn’t the fastest at that moment.).