How to Set Up DNS over HTTPS in Chrome

This guide will walk you through the process of configuring DNS over HTTPS (DoH) in Google Chrome, including basic setup, advanced options, and troubleshooting.

Prerequisites

  • Google Chrome browser (version 83 or later)
  • Basic understanding of DNS concepts
  • Access to Chrome settings

Basic Configuration

Step 1: Access Chrome Settings

  1. Open Google Chrome
  2. Click the three dots menu (⋮) in the top-right corner
  3. Go to Settings
  4. Click on “Privacy and security” in the left sidebar
  5. Scroll down to “Security” section

Step 2: Enable Secure DNS

  1. Find “Use secure DNS” option
  2. Toggle the switch to enable it
  3. Choose your preferred DNS provider:
    • Google (Public DNS)
    • Cloudflare (1.1.1.1)
    • Custom provider

Step 3: Configure Custom Provider

If you want to use a custom DoH provider:

  1. Select “Use custom”
  2. Enter your preferred DoH provider URL, for example: 
    https://dns.google/dns-query
https://1.1.1.1/dns-query
https://dns.quad9.net/dns-query

Advanced Configuration

Using Chrome Flags

For advanced users, you can use Chrome flags to configure additional DoH settings:

  1. Open Chrome and go to chrome://flags
  2. Search for “doh”
  3. Configure the following flags:
    • doh-with-https-svcb
    • doh-with-https-svcb-alpn
    • doh-with-https-svcb-ipv4
    • doh-with-https-svcb-ipv6

Network Settings

You can also configure DoH through Chrome’s network settings:

  1. Go to chrome://net-internals/#dns
  2. Enable “Use secure DNS”
  3. Configure your preferred provider

Verification

Method 1: Using Chrome DevTools

  1. Open Chrome DevTools (F12 or right-click > Inspect)
  2. Go to the Network tab
  3. Check “Preserve log”
  4. Visit any website
  5. Look for DNS queries in the network log
  6. Verify that queries are using HTTPS

Method 2: Using Online Tools

  1. Visit DNS Leak Test
  2. Run the test
  3. Verify that your DNS queries are using the configured DoH provider

Troubleshooting

Common Issues

  1. DoH Not Working

    • Check if your network allows HTTPS traffic
    • Verify your DNS provider is accessible
    • Try a different DoH provider

  2. Performance Issues

    • Choose a geographically closer provider
    • Check your network connection
    • Try different providers to find the fastest one

  3. Configuration Problems

    • Clear Chrome cache and cookies
    • Reset Chrome settings
    • Update Chrome to the latest version

Advanced Troubleshooting

  1. Check DNS Resolution

    # Using dig command
dig @8.8.8.8 example.com

  2. Verify HTTPS Connection

    # Using curl
curl -v https://dns.google/dns-query

Best Practices

  1. Provider Selection

    • Choose providers with good uptime
    • Consider privacy policies
    • Test performance before finalizing

  2. Security Considerations

    • Use providers with DNSSEC support
    • Enable additional security features
    • Regular security audits

  3. Performance Optimization

    • Monitor DNS resolution times
    • Use providers with global distribution
    • Enable DNS caching

Next Steps