Windows 10 Windows 10 Insider Build 20185: Encrypted DNS


Level 32
Jan 9, 2020

Improving DNS configuration in Settings
We’re making a few changes to the Network section in Settings:

  1. Making DNS settings more easily accessible: Editing your DNS server assignment is now a top-level option when you go into your network’s properties page.
  2. Encrypted DNS controls in the Settings app: Encrypted DNS (DNS over HTTPS, or DoH) can help increase privacy and security while browsing the web. You can now configure DoH directly in the Settings app to more easily take advantage of this feature:
    • For ethernet connections: Go to Settings > Network & Internet > Status. Click Properties, then select Edit IP assignment or Edit DNS server assignment and it will be available in the popup
    • For Wi-Fi connections: Go to Settings > Network & Internet > Wi-Fi. Click the adapter properties link, then select Edit IP assignment or Edit DNS server assignment and it will be available in the popup. Currently you will not see the encryption options if you go to the individual network’s property page
You can add any IP address listed here to unlock the DoH dropdown and choose to use encryption. Once encryption is enabled, you can confirm it’s working by looking at the applied DNS servers in the network properties and see them labeled as “(Encrypted)” servers. If you want to try a custom DoH server we don’t recognize yet, you can configure an IP address to be recognized as a DoH server by using the netsh command documented here at the end of the blog post.


Level 10
Jan 21, 2018
Microsoft adds Windows 10 DNS over HTTPS settings section

Microsoft has announced that Windows 10 customers can now configure DNS over HTTPS (DoH) directly from the Settings app starting with the release of Windows 10 Insider Preview Build 20185 to Windows Insiders in the Dev Channel.
The addition of support for the DoH protocol in a future Windows 10 release was announced by Microsoft in November 2018, the inclusion of DNS over TLS (DoT) support also being left on the table.
DoH allows DNS resolution over encrypted HTTPS connections, while DoT encrypts DNS queries via the Transport Layer Security (TLS) protocol, instead of using plain text DNS lookups...."