If you care about privacy, security, and a smoother browsing experience, you’ve probably heard about “DNS over HTTPS (DoH)”. It sounds technical, but the idea is simple. Every time you visit a website, your system sends a request to translate a domain name into an IP address using DNS. Traditionally, this process is not encrypted, which means your browsing activity can potentially be monitored.
It encrypts your DNS queries, making them more secure and harder to intercept. Whether you’re using Windows 10 or Windows 11, enabling DoH can significantly improve your online privacy without needing third-party software.
In this complete guide, I will walk you through everything you need to know to enable and disable DoH.
Tips Before Enabling DNS over HTTPS (DoH)
First of all, make sure your system is ready. Not all configurations support DoH by default, so a quick check will save you time.
First, ensure your system is updated. DoH support was introduced in later builds of Windows 10 and is fully supported in Windows 11. Go to your system settings and confirm that you are running the latest version.
Next, you need a “DNS provider that supports DoH”. Not all DNS servers offer encrypted DNS. Some popular ones include Cloudflare, Google DNS, and Quad9. You will need their DoH-compatible addresses to proceed.
Also, make sure you have administrative access to your system. Some settings require permission changes that standard user accounts cannot modify.
Lastly, a stable internet connection is necessary since DNS changes may temporarily interrupt connectivity while being configured.
How to Enable DNS over HTTPS (DoH) in Windows 10 or 11
To enable “DNS over HTTPS (DoH)” in Windows 10 or Windows 11, go to Settings, open Network and Internet, select your connection, edit DNS settings, choose manual DNS, enter a DoH-supported DNS server, and enable encryption under DNS settings. Save the changes to activate secure DNS.
Enabling DoH in Windows is not complicated, but it does involve navigating through a few system settings. The exact layout differs slightly between Windows 10 and Windows 11, but the core steps remain the same.
When you enable DoH, you are essentially telling your system to use encrypted communication for DNS queries instead of the traditional unencrypted method. This improves privacy and protects against certain types of attacks like DNS spoofing.
Let’s go step by step.
Step 1: Open Network Settings
Start by opening your system settings. You can do this by clicking on the Start menu and selecting “Settings”, or by pressing the Windows key along with the “I” key.
Once inside, go to “Network and Internet”. This section contains all your connectivity settings, including WiFi and Ethernet.
If you are on Windows 11, you will see a slightly modern layout, but the option names remain similar.
Step 2: Select Your Active Network Connection
Now, identify the connection you are currently using. If you are connected via WiFi, click on “WiFi”. If you are using a wired connection, select “Ethernet”.
Click on the name of your active network. This will open detailed properties related to your connection.
This step is important because DNS settings are applied per connection. If you switch networks frequently, you may need to repeat the process for each one.
Step 3: Open DNS Settings for Editing
Scroll down until you find an option labeled “DNS server assignment” or similar. Next to it, you will see an “Edit” button.
Click “Edit” to open the DNS configuration window. By default, it is usually set to automatic, meaning your internet provider assigns DNS servers.
To enable DoH, you need to switch this to manual configuration.
Step 4: Switch to Manual DNS Configuration
In the edit window, change the setting from “Automatic (DHCP)” to “Manual”.
Once you do that, toggle the switch for either IPv4 or IPv6, depending on your network setup. Most users will work with IPv4.
This allows you to manually enter DNS server addresses.
Step 5: Enter DoH Supported DNS Addresses
Now comes the key part. Enter the DNS addresses provided by a DoH-compatible provider.
For example, if you choose Cloudflare, you can use:
Preferred DNS: 1.1.1.1
Alternate DNS: 1.0.0.1
After entering these, you will see an option to enable encryption. Select “Encrypted only (DNS over HTTPS)” from the dropdown.
This ensures that your DNS queries are sent securely.
Step 6: Save the Settings
Once everything is entered correctly, click “Save”.
Your system will apply the new DNS configuration immediately. In some cases, your connection may briefly disconnect and reconnect.
This is normal and part of the process.
Step 7: Verify DoH is Working
To confirm that DoH is enabled, you can use online tools that check your DNS configuration.
Alternatively, you can revisit the DNS settings and ensure the encryption option is still set to “Encrypted only”.
If everything looks correct, you are now using secure DNS.
How to Disable DNS over HTTPS (DoH) in Windows 10 or 11
There may be situations where you want to revert to the default DNS settings. For example, certain networks or services might not work properly with custom DNS.
Disabling DoH is straightforward and follows almost the same steps as enabling it.
Go back to Settings and open “Network and Internet”. Select your active connection and locate the DNS settings.
Click “Edit” next to DNS server assignment. Change the setting from “Manual” back to “Automatic (DHCP)”.
Save the changes. This will remove your custom DNS configuration and restore your system to its default behavior.
If you still want to use manual DNS but without encryption, you can keep the manual setting and change the encryption option to “Unencrypted only”.
FAQs
What is the main benefit of “DNS over HTTPS”?
The primary benefit is enhanced privacy and security. It encrypts DNS queries, preventing third parties from tracking your browsing activity.
Does enabling DoH improve internet speed?
Not necessarily. In some cases, it may slightly improve performance if the DNS provider is faster than your ISP. However, the main goal is security, not speed.
Is DoH available on all versions of Windows 10?
No, it is only available on newer builds of Windows 10. If you do not see the option, you may need to update your system.
Can DoH break certain websites or services?
In rare cases, yes. Some networks rely on custom DNS configurations that may conflict with DoH. If you face issues, you can disable it easily.
Do I need third-party software to use DoH?
No, both Windows 10 and Windows 11 have built-in support for DoH. You can enable it directly from system settings.
Which DNS provider should I choose?
Popular choices include Cloudflare, Google DNS, and Quad9. Each offers DoH support and has its own advantages in terms of speed and privacy.
Is DoH the same as a VPN?
No, they are different. DoH only encrypts DNS queries, while a VPN encrypts all your internet traffic.