How to Implement DNS over HTTPS in Windows 11

DNS (Domain Name System) is a foundational internet service that translates human-readable domain names into IP addresses. Traditional DNS requests and responses are sent over plaintext, raising privacy concerns. DNS over HTTPS (DoH) encapsulates these requests within the HTTPS protocol, enhancing security and privacy.

Benefits of DNS over HTTPS

  • Privacy: Encrypts DNS queries to prevent eavesdropping.
  • Security: Reduces the risk of DNS spoofing attacks.
  • Integrity: Ensures data hasn't been altered during transmission.

Requirements for Implementing DoH in Windows 11

Before proceeding, ensure that the device runs Windows 11 and is connected to a network. Also, have access to a DNS server that supports DoH.

Steps to Enable DNS over HTTPS

  1. Press Windows + I to open the Settings application.
  2. Navigate to Network & Internet -> Status.
  3. Click on Properties under the current network.
  4. Scroll down and select Edit under DNS settings.
  5. Switch the DNS over HTTPS toggle to On.
  6. Under Preferred DNS, enter the IP address of the DoH-supported DNS server.
  7. Click Save.

Verifying the DoH Configuration

To ensure that DNS queries are now sent over HTTPS, follow these steps:

  1. Open Command Prompt or "PowerShell".
  2. Type the command below and press Enter:

    nslookup
  3. Check the Server address to ensure it matches the DoH DNS server's IP address entered earlier.

Conclusion

Implementing DNS over HTTPS in Windows 11 not only enhances security and privacy but also aligns with modern internet standards. By encrypting DNS traffic, users can browse more safely and reduce potential threats from malicious actors.