- Joined
- Nov 26, 2020
- Messages
- 716
How to enable DNS-over-HTTPS (DoH) support in Google Chrome using the Use secure DNS server feature. DNS over HTTPS protects requests to the DNS server using encryption and transmission over a secure channel.
Users of Google Chrome (version 83 and higher) can enable support for the secure DNS-over-HTTPS (DoH) Protocol by using the "Use secure DNS server" feature in their browser settings.
How DNS-over-HTTPS works
By default, DNS queries are transmitted in unencrypted form, which opens up opportunities for outsiders to track network preferences and manipulate DNS traffic, for example, when organizing phishing attacks.
DNS over HTTPS technology solves this problem by encrypting DNS queries. The secure HTTPS Protocol is used to increase security and privacy. When you use DoH, your DNS queries can no longer be tracked by third parties, and they can't be modified by attackers.
Google has decided to implement public DNS over HTTPS support starting with Chrome 83. The developers felt that this change would not interfere with the existing DNS system configuration. By default, the browser will use DNS over HTTPS for the DNS provider installed on the system, provided that it supports this Protocol.
In other words, the system DNS settings will not change. Another advantage of this approach is that filtering adult content or malware at the DNS level will remain active.
Chrome will switch to normal (unencrypted) DNS if problems are found during the search. The browser will not use secure DNS at all if parental controls are active on Windows systems or if certain corporate policies are set.
How to enable DNS-over-HTTPS support in Chrome
Use a secure DNS server
Enabling DNS-over-HTTPS support is available in the security settings of the Chrome browser:
In the menu you can choose to use one of the following providers: Cloudflare DNS (1.1.1.1), Quad9 (9.9.9.9), Google (Google Public), or CleanBrowsing (Family Filter).
In the menu Use > Personalized you can specify any other secure DNS server that supports DNS-over-HTTPS – for example, Comss. one DNS:
How to check DNS-over-HTTPS functionality
You can check DNS performance using the DNS Leak Test service (click Extended test). Make sure that all DNS servers found belong to the service specified in the settings, such as Cisco OpenDNS:
Users of Google Chrome (version 83 and higher) can enable support for the secure DNS-over-HTTPS (DoH) Protocol by using the "Use secure DNS server" feature in their browser settings.
How DNS-over-HTTPS works
By default, DNS queries are transmitted in unencrypted form, which opens up opportunities for outsiders to track network preferences and manipulate DNS traffic, for example, when organizing phishing attacks.
DNS over HTTPS technology solves this problem by encrypting DNS queries. The secure HTTPS Protocol is used to increase security and privacy. When you use DoH, your DNS queries can no longer be tracked by third parties, and they can't be modified by attackers.
Google has decided to implement public DNS over HTTPS support starting with Chrome 83. The developers felt that this change would not interfere with the existing DNS system configuration. By default, the browser will use DNS over HTTPS for the DNS provider installed on the system, provided that it supports this Protocol.
In other words, the system DNS settings will not change. Another advantage of this approach is that filtering adult content or malware at the DNS level will remain active.
Chrome will switch to normal (unencrypted) DNS if problems are found during the search. The browser will not use secure DNS at all if parental controls are active on Windows systems or if certain corporate policies are set.
How to enable DNS-over-HTTPS support in Chrome
Use a secure DNS server
Enabling DNS-over-HTTPS support is available in the security settings of the Chrome browser:
- Enter in the address bar chrome://settings/security (or go to the menuSettings > Privacy and security > Security >). There you will find a new option Use the secure DNS server that you need to enable.
- By default, the following option is offered:Use the current service provider. The browser will use DNS over HTTPS for the DNS provider installed on the system, provided that it supports this Protocol. Google Public DNS, Cisco OpenDNS, Cloudflare, Quad9, and Comss.one DNS support DNS over HTTPS.
In the menu you can choose to use one of the following providers: Cloudflare DNS (1.1.1.1), Quad9 (9.9.9.9), Google (Google Public), or CleanBrowsing (Family Filter).
In the menu Use > Personalized you can specify any other secure DNS server that supports DNS-over-HTTPS – for example, Comss. one DNS:
How to check DNS-over-HTTPS functionality
You can check DNS performance using the DNS Leak Test service (click Extended test). Make sure that all DNS servers found belong to the service specified in the settings, such as Cisco OpenDNS: