I’m trying to understand the step: “Setup DNS over TLS with Cloudflare”, sounds like you were using a stub resolver that do DNSSEC validation? If so, may I know what stub resolver software you were using that forwards queries to 1.1.1.1 over DoT? If not a stub resolver, is that a browser or something?
The answers would help us reproduce the potential issue when investigating.
I’m using Unbound on OPNsense. Hope that helps. I toyed a little bit with Unbound settings (was using defaults) for example by unchecking “Harden DNSSEC data” but that didn’t help (when using Cloudflare DNS).
Switched back to 1.1.1.1 after a week and everything is working fine so far. Maybe a glitch in the matrix with the local cache at YUL for Cloudflare? Don’t think the issue was on my side but it’s difficult to test. I didn’t change anything… guess we will never know!