Protect Your Online Privacy from your ISP
Encrypt Your DNS Traffic with DNS-over-HTTPS (DoH)
In today’s digital landscape, where privacy and security are paramount concerns, it’s crucial to take proactive measures to safeguard your online activities. One such measure is encrypting your Domain Name System (DNS) traffic using the DNS-over-HTTPS (DoH) protocol.
Understanding the Importance of Encrypted DNS
DNS is the system that translates human-readable domain names (like “www.example.com”) into the IP addresses that computers use to communicate with each other. Traditionally, this process has been done in an unencrypted manner, leaving your DNS traffic vulnerable to interception and monitoring by your internet service provider (ISP), government agencies, or even malicious actors.
By encrypting your DNS traffic using DoH, you can prevent these entities from seeing the websites you visit, which can be particularly important for sensitive or personal activities. Encrypted DNS can also help protect against DNS-based attacks, such as DNS spoofing or DNS hijacking, which can redirect you to malicious websites.
Enabling DNS-over-HTTPS (DoH)
To enable DoH and encrypt your DNS traffic, you’ll need to configure your device or browser to use a DoH-compatible DNS service. Here’s how you can do it on various platforms:
Windows 11
Open the Settings app and go to “Network & Internet” > “DNS”.Select “Customize DNS” and enter the DoH server addresses provided by your chosen service.
Cloudflare DNS: https://cloudflare-dns.com/dns-query
Google Public DNS: https://dns.google/dns-query
Quad9: https://dns.quad9.net/dns-query
Mullvad DNS: https://dns.mullvad.net/dns-query1
Save the changes and test your connection.
macOS
- Open System Preferences and go to “Network” > “Advanced” > “DNS”.
- Click the “+” button to add the DoH server addresses provided by your chosen service.
- Save the changes and test your connection.
Android
- Go to Settings, then “Network & internet” > “Private DNS”.
- Select “Private DNS provider hostname” and enter the DoH server address provided by your chosen service.
- Save the changes and test your connection.
iOS/iPadOS
- Go to Settings, then “Wi-Fi” and tap the “i” icon next to your network.
- Select “Configure DNS” and choose “Manual”.
- Add the DoH server addresses provided by your chosen service.
- Save the changes and test your connection.
Routers
The process for configuring DoH on your router may vary depending on the model and firmware. Refer to your router’s administration panel or manufacturer’s documentation for specific instructions.
Popular DoH DNS Servers
Here are some popular DoH DNS server providers and their IP addresses:
- Cloudflare DNS:
1.1.1.1,1.0.0.1,2606:4700:4700::1111,2606:4700:4700::1001 - Google Public DNS:
8.8.8.8,8.8.4.4,2001:4860:4860::8888,2001:4860:4860::8844 - Quad9:
9.9.9.9,149.112.112.112,2620:fe::fe,2620:fe::9 - Mullvad DNS:
82.221.129.216,2a0b:f4c1::1
Conclusion
Enabling DNS-over-HTTPS (DoH) is an essential step in protecting your online privacy and security. By encrypting your DNS traffic, you can prevent your ISP, government agencies, and other third parties from monitoring your browsing activities and potentially misusing that information. Take the time to configure DoH on your devices and enjoy the peace of mind that comes with a more secure and private internet experience.
Citations:
[1] https://www.youtube.com/watch?v=ChwGWdVpI_Q
[2] https://learn.microsoft.com/en-us/answers/questions/1163778/how-to-enable-dns-over-https-%28doh%29-in-group-policy
[3] https://simpledns.plus/kb/199-how-to-enable-dns-over-https-doh-in-windows-11
[4] https://www.elevenforum.com/t/enable-dns-over-tls-dot-in-windows-11.9012/
[5] https://winbuzzer.com/2024/03/25/how-to-enable-dns-over-https-doh-on-windows-11-xcxwbt/
