top of page

DNS Encryption in Windows 11

To enhance the security and privacy of DNS queries, Windows 11 introduced DNS encryption, which encrypts all DNS traffic between your device and the DNS server, protecting it from interception and modification. In this article, we will explain what DNS encryption is and how to enable it on Windows 11.

What is DNS Encryption?

DNS encryption is a mechanism that secures DNS queries and responses by encrypting them. With DNS encryption, the communication between your device and the DNS server is protected from unauthorized access, preventing anyone from intercepting or modifying the DNS traffic.

DNS encryption can be implemented using different protocols, such as DNS over HTTPS (DoH) and DNS over TLS (DoT). Both protocols provide a secure and encrypted communication channel between your device and the DNS server.

Enable DNS encryption using DNS over HTTP (DoH)

DNS over HTTPS (DoH) is a protocol that allows for secure and private DNS queries by encrypting them within HTTPS traffic. In simpler terms, DoH is a way to encrypt DNS queries and responses so that they cannot be intercepted or modified by unauthorized parties. It ensures that your online activities remain private and secure, protecting you from various cyber threats such as DNS snooping and manipulation.

To enable DNS encryption in Windows 11 using DoH, you can follow these steps:

STEP 1: Open the Settings app and click on "Network & internet".

STEP 2: Scroll down and click on "Advanced network settings".

STEP 3: Now, select the Wi-Fi network and click on "View additional properties".

STEP 4: Here, click on Edit next to the "DNS server assignment".

A prompt box will appear. Select the "Manual" option.

STEP 5: Turn on the toggle for "IPv4".

STEP 6: Enter the IP address of the DNS server you want to use for encrypted DNS.

You can use a public DNS server like Cloudflare ( or Google (, or you can use your own private DNS server if you have one.

STEP 7: Click on "Save" to save your changes.


DNS encryption is an essential security feature that can protect your online activities from various threats. By encrypting all DNS traffic between your device and the DNS server, DNS encryption helps prevent unauthorized access, interception, and modification of your DNS queries and responses.

Enabling DNS encryption in Windows 11 is simple. By following the steps outlined in this article, you can ensure that your device uses encrypted DNS for enhanced security and privacy while browsing the internet.

bottom of page