In this article
DNS over HTTPS (DoH) encrypts DNS requests to improve privacy and security in network-based deployments. DNSFilter supports DoH via the resolver endpoints https://doh.dnsfilter.com/dns-query (standard) and https://doh.netalerts.io/dns-query (whitelabeled)
Notes on Compatibility
When using DoH, NAT IPs are not supported—the resolver matches traffic to the public IP address of the Site, and it is not possible to assign a different NAT IP to individual devices.
Before configuring DoH, ensure the following:
- A Site in DNSFilter includes the public IP address
- A Filtering Policy is assigned to that Site
The DoH URL is also available in-app. Navigate to a Site's details and jump to Advanced to copy the URL.
Configure DoH in Browsers
- Open Settings in the browser
- Navigate to Privacy/Security settings
- Enable Secure DNS / DNS over HTTPS
- Select the option to manually configure the resolver
- Enter the DoH address
Save the settings. DNS traffic will now route securely through DNSFilter using DoH.
Configure DoH in Windows
- Open Windows Network Settings
- Select the active network connection
- Under DNS server assignment, select Manual
- Enable IPv4
- Toggle DNS over HTTPS to On (manual template)
- Configure values:
-
Preferred DNS server:
103.247.36.150 -
DNS over HTTPS template:
https://doh.dnsfilter.com/dns-query(standard)https://doh.netalerts.io/dns-query(whitelabeled)
-
Preferred DNS server:
Save the settings. DNS traffic will now route securely through DNSFilter using DoH.
Configure DoH in macOS
- Generate a mobileconfig profile configured for DNSFilter servers
- Use a tool such as Simple DNS Plus
- Configure the resolver to the DoH address
- From System Settings, open Device Management
- Install the generated DNS mobileconfig profile
Save the settings. DNS traffic will now route securely through DNSFilter using DoH.
Comments
0 comments
Please sign in to leave a comment.