IOS DNS Settings

What we (know) so far, 
DNS over HTTS (DoH) doesn't work unless "Allow direct connection if PAC is unreachable" is enabled. (In the Global Proxy Payload)
DoH stays in effect when installed from Jamf....per testing it doesn't matter if its uploaded as signed or created in Jamf..

DNS over TLS (DoT) does work with "Allow direct connection if PAC is unreachable" disabled (In the Global Proxy Payload)
DoT does NOT stay in effect more than 24 hrs +/- when installed with Jamf.
Does stay in effect when installed via Apple Configurator...