Sure, but its not what pi-hole does or support. You need to install another software and forward requests to it. Technitium DNS has this feature built-in along with support for DoT and DoQ, including support for DoH/3.

If you are looking for self hosting local resolver then just make sure its not accessible from public Internet. If you wish to host your own authoritative DNS server for your domain names then just configuring query rate limiting will mitigate DoS or DNS amplification attacks. I have been self hosting all my domain names since 2+ years now and its not much of an issue.

Its actually much more beneficial to use a local DNS server even for a single user. A single user will keep querying for DNS requests since OS/apps cache DNS only for a minute or so. Local DNS will keep cache for the full TTL of the record and thus reduce the number of DNS requests that go out of your network. Plus there is Serve Stale feature which improves resiliency. For privacy, depending on your scenario, you can either run recursive resolver or use encrypted DNS protocols to hide DNS from your ISP. There is also support for configuring SOCKS5 or HTTP proxy to route requests via another server or via Tor network.

It does what pi-hole does and a lot more. Has encrypted DNS protocols like DNS-over-HTTPS, DNS-over-TLS, and DNS-over-QUIC support and also has built-in recursive resolver.

It seems you have not kept up with .NET development. Web Forms have been obsolete since many years by now.

Same can be said about IP-based blocking that firewalls employ. IP-based blocking can also be bypassed by using various tunneling techniques but that does not make it useless. Having DNS based control in addition to IP-based control is much useful for most scenarios.