DNS over HTTPS (DoH) is a privacy feature that restricts your ISP/any mid tracker from tracking your web activity, proofing your access to a website in a very secure, encrypted way to the DNS. Windows 10 never supported this feature natively, though it was quite possible to do it with third-party applications. Gladly, Windows 11 has introduced this essential security feature in its core settings and you, the users can easily use it to ensure more privacy. Follow these easy steps to enable the DoH settings on your computer.
How to enable DNS over HTTP (DoH) feature in Windows 11
Just go through these easy steps to enable the DoH feature on your computer.
1. At first, press the Windows key+I keys together to open up the Settings.
2. Then, click on the “Network & Internet” settings.
3. Here you will different connectivity options, such as – WiFi, Ethernet, etc.
4. Select the network type your PC/laptop is currently using.
(As this computer is using the ‘Ethernet’ connection, we have selected it.)
5. Now, you will see various connectivity settings on this page.
6. Find out the “DNS Server assignment:” settings. Then, click on the “Edit” button.
7. Now, you will see two options – ‘Automatic’ and ‘Manual’.
8. Just click on the “Manual” settings.
9. Then, you will notice two types of connectivity options. These are – “IPv4” and “IPv6” settings.
10. Toggle the particular connectivity settings your adapter is using.
If you want to check which network type your adapter is using, follow these steps –
1. Press the Windows key+R keys together.
2. Then, type “ncpa.cpl” and hit Enter.
3. When the Network Connections window opens up, you will see your network adapter.
4. Just double-click on the adapter to access it.
5. You will see the ‘IPv4’ and ‘IPv6’ connectivity options. Check which connection is connected to the “Internet“.
You can also see the connectivity option, following way –
Settings > Network & Internet > Ethernet (or WiFi) > Status
11. Now, set the ‘Preferred DNS‘ settings to “22.214.171.124“.
12. Then, set the ‘Preferred DNS encryption’ settings to “Encrypted only (DNS over HTTPS)“.
13. Set the ‘Preferred DNS’ setting to this –
14. Finally, click on “Save” to save this modification.
Close the Settings window.
That’s it! This way, you can easily set up the DoH protocol on your network.
There are three types of DNS Encryption settings Windows 11 supports. These are –
1. Unencrypted only – This is the default encryption DNS follows.
2. Encrypted only (DNS over HTTPS) – This option uses the DNS over HTTPS servers only. It will restrict your access to all the unencrypted HTTPS.
3. Encrypted preferred, unencrypted allowed – It prefers the DoH protocol, but it allows the unencrypted connections if there is no DoH DNS available.
DoH for the GPO in Windows 11
If you want to apply this modification to a domain with other users, you can do this following way –
1. Open the Windows key+R keys together.
2. In that terminal, type this simple code and then hit Enter.
This will open up the Local Group Policy Editor.
3. Once you see that the Local Group Policy Editor window has appeared on your screen, go here-
Computer Configuration > Administrative Templates > Network > DNS Client
4. Then, on the right-hand side, double click on the “Configure DNS over HTTPS (DoH) name resolution” to modify it.
5. Next, set the policy settings to “Enabled“.
6. Finally, click on “Apply” and “OK” to save the settings.
Close the Local Group Policy Settings.
This will be applied to all the computers in the same domain.