@pslpsl Hi, if you run a DMZ directly from the Internet provider modem/router, you should be able to bypass ISP DNS restrictions, This if the ISP modem router doesn’t allow the change!. For me worked that way when once in a very difficult DNS bypass by ISP.
Lynis warns about standalone features that must be take into attention and be fixed for a safe use. If it works well then just missing the TLS control pepe was talking in other post. But I’m not a programmer and better be safe then sorry. so no touching standalone as I do not know what that will break. Yep Snowden problem is everywhere