Home > News content

[tip] configure DOH to encrypt DNS traffic in chrome and Firefox to improve security

via:蓝点网     time:2019/12/3 15:21:07     readed:154

We mentioned earlier that Microsoft is developing DOH support for windows 10 system, but it is not clear which version will bring this function. Doh function is designed to encrypt DNS query traffic to avoid being attacked and hijacked by operators or middlemen, so using this protocol helps to improve privacy and security.Although Microsoft has not yet natively supported this feature in Windows 10, mainstream browsers such as Google and Firefox are already supported.

For testing only, please read the following instructions carefully:

At present, there are few public DNS servers supporting DOH function and they are all foreign ones. Domestic users may use these public DNS servers slowly.

Different regions of the network use these public DNS servers at different speeds. If you are interested, you can start to test to see if normal access is affected.

If you can feel that the loading speed of the web page is obviously slow, please switch back to the domestic public DNS server or continue to use the default DNS server of the operator.

To open the query step of dot encryption in chrome:

Google browser has started to test the dot function in Google Chrome v78, so it needs at least 78 and above versions if you need to enable this function.

Open the Google browser address bar and enter chrome://flags/#dns-over-https, and then change this option to Enabled and restart the browser.

After the browser is partially modified, you need to modify the public DNS server of the operating system, and go to the network and sharing center of the windows 10 control panel.

Then click change adapter settings on the left to find the network card in use, right-click the network card to select properties, and then configure DNS in IPv4 / IPv6.

Optional dot servers include: 8.8.8.8 / 8.8.4.4 / 2001:4860:4860:: 8888 and 1.1.1.1 / 1.0.0.1 / 2606:4700:4700:: 1111

Other dot servers include: 9.9.9.9 / 9.9.11 / 2620: Fe:: Fe / 2620: Fe:: 9 / 2620: Fe:: 11 and 2620:119:35:: 35 (OpenDNS)

Firefox to open the dot encryption query steps:

Users with the latest version of Firefox can directly open Firefox settings, then find the network part at the bottom of the general settings and click settings.

In this dialog box, you can see the enable HTTPS based DNS option at the bottom, and Firefox has built-in some dot DNS for users to choose.

The default is 1.1.1.1 jointly built by cloudfire and Firefox. If users are not willing to use this, they can also use other DNS.

Just click the provider's custom option to enter the query address. For example, fill in the query address of Google: https://dns.google/dns-query

How to test whether the dot function is normal:

After the configuration is completed, you only need to visit the test page provided by cloudfire to check. If secure DNS displays green, it turns on successfully.

Whether the other options are green is irrelevant to DNS over HTTPS, so it does not need to be managed. Please click here after the browser and DNS configuration are completed to test the address.

China IT News APP

Download China IT News APP

Please rate this news

The average score will be displayed after you score.

Post comment

Do not see clearly? Click for a new code.

User comments