How to Enable DNS Over HTTPS on Windows 11

Elevate your online privacy and security by seamlessly activating DNS over HTTPS directly within Windows 11.

by

Olive Wyatt

windows 11 https dns check transformed
Table of contents

Employing DNS over HTTPS (DoH) introduces an additional security stratum while soliciting access to websites. Without activation, the solicitation remains unscrambled, rendering it susceptible to eavesdropping and unauthorized data breaches.

While eminent browsers such as Chrome, Firefox, and Edge have already embraced this protocol, Windows has presently integrated native support. This signifies that you retain the freedom to opt for any browser that suits your preference, all the while ensuring a sheltered and intact online experience.

How Does DoH Work?

Every time you attempt to access a website, your request is sent to a DNS server, which then locates the corresponding IP address of the website and facilitates your redirection to it. In the absence of DoH, this exchange of requests and responses remains unencrypted, thereby creating a pathway through which unauthorized entities can intercept and potentially manipulate the data.

For those more skilled in the realm of technology, DoH serves as a networking protocol that applies encryption to DNS queries through the use of the HTTPS protocol. Essentially, this protocol stands as a steadfast guardian of user privacy and security. By implementing encryption, it thwarts potential malevolent entities from accessing and tampering with DNS traffic originating from your device. This defensive measure aims to counteract threats like man-in-the-middle attacks.

Enable DNS Over HTTPS (DoH) On Windows 11

Here’s how to set up DNS over HTTPS (DoH) on Windows 11:

  1. Open the Start menu on your Windows 11 device.
  2. Search for “Settings” and click on the top result to launch the Settings app.
  3. Within Settings, click on “Network & internet.”
  4. Choose either the “Ethernet” or “Wi-Fi” tab, depending on your active connection.
  5. Under the “DNS server assignment” setting, locate and click the “Edit” button.
DNS server assignment windows 11 dns
  1. From the drop-down menu, select the “Manual” option.
  2. Enable the toggle switch for “IPv4.”
  3. In the sections labeled “Preferred DNS” and “Alternate DNS,” enter the primary and secondary IP addresses for DoH from one of the supported services, such as:
    • Cloudflare
    • Preferred: 1.1.1.1
    • Alternate: 1.0.0.1
    • Google:
      Preferred: 8.8.8.8
      Alternate: 8.8.4.4
    • Quad9:
      Preferred: 9.9.9.9
      Alternate: 149.112.112.112
Enable DNS Over HTTPS (DoH) On Windows 11
  1. Utilize the “DNS over HTTPS” drop-down menu to select the “On (automatic template)” option. Alternatively, you can choose other encryption preferences, including:
    • Off: Sends DNS traffic without encryption.
    • On (automatic template): Sends encrypted DNS traffic (recommended).
    • On (manual template): Allows customization of a specific template if the automatic setup doesn’t work.
  1. Disable the toggle switch for “Fallback to plaintext.”
    • Enabling this feature results in encrypted DNS traffic for the system; however, it also permits queries to be transmitted without encryption.
  1. (Optional) Enable the toggle switch for “IPv6.”
  2. In the “Preferred DNS” and “Alternate DNS” sections for IPv6, enter the primary and secondary DoH IP addresses:
    • Cloudflare:
      Preferred: 2606:4700:4700::1111
      Alternate: 2606:4700:4700::1001
    • Google:
      Preferred: 2001:4860:4860::8888
      Alternate: 2001:4860:4860::8844
    • Quad9:
      Preferred: 2620:fe::fe
      Alternate: 2620:fe::fe:9
Enable DNS Over HTTPS (DoH) On Windows 11 IPV6 dns
  1. Use the “Preferred DNS encryption” drop-down menu and select the “On (automatic template)” option.
  2. Disable the “Fallback to plaintext” toggle switch unless you specifically want to allow unencrypted traffic under certain circumstances.
  3. Click the “Save” button to apply the changes.

Once these steps are completed, Windows 11 will ensure that DNS traffic is encrypted using the HTTPS protocol.

Check if DNS Over HTTPS is Working

windows 11 Check if DNS Over HTTPS is Working
  1. To verify whether DoH is configured and functioning correctly, access the Settings application and select the ‘Network & Internet‘ tab located in the left sidebar.
  2. Next, proceed to click on either ‘Wi-Fi‘ or ‘Ethernet‘ based on the choice you made for enabling the DoH settings.
  3. Now, continue scrolling down to locate the ‘DNS server assignment’ field. The tile in this section should display ‘Encrypted.’

You’ve completed the necessary steps. Close the Settings app, and you’re all set. Going forward, your DNS requests will be both private and secure. Enjoy safe browsing!

Tags:

, ,