Windows

Windows DoH/DoT encrypted DNS configuration: system-level settings and browser-integrated DoH solutions to ensure ad blocking and privacy protection remain stable.

Windows 11

Starting with Windows 11 21H2, native DNS over HTTPS (DoH) is supported. You can enable it as follows:

  1. Open Settings
  2. Open Network & Internet
  3. Open Ethernet
  4. Locate DNS server assignment, click Edit
    1. Choose Manual
    2. In Preferred DNS server, enter 120.26.96.167 for IPv4 and 2408:4005:3de:8500:4da1:169e:dc47:1707 for IPv6
    3. DNS over HTTPS (DoH): On (manual template)
    4. In DoH template, enter https://xxxxxxxxxxxxxxxx.adguardprivate.com/dns-query; {xxxxxxxxxxxxxxxx} is your encrypted DNS service username.
    5. Do not check Fallback to plaintext
    6. For the alternate DNS server you can optionally enter 223.5.5.5 (Alibaba Cloud public DNS service), set DNS over HTTPS to Off, and check Fallback to plaintext.

Windows 10 and Earlier

Windows 10 and earlier versions do not support native encrypted DNS, but if you are using a newer browser such as Chrome/Edge or any Chromium-based browser (360, QQ, and other Chinese browsers), you can configure DoH encrypted DNS within the browser. Here are the steps for Chrome:

  1. Open Chrome Settings
  2. Open Privacy, search, and services
  3. Scroll to Security
  4. Enable Use secure DNS to specify how to look up the network address for websites
  5. In Choose service provider, enter https://xxxxxxxxxxxxxxxx.adguardprivate.com/dns-query; {xxxxxxxxxxxxxxxx} is your encrypted DNS service username.

For other browsers, please refer to their respective settings; generally, the option can be found under SettingsPrivacySecurity.