Stop your ISP from reading every website you visit. This resolver encrypts your DNS queries, blocks surveillance, and races across 57 independent servers worldwide to return the fastest answer.
Open browser Settings and search for DNS.
Go to Privacy and Security → Security and find Use Secure DNS.
Select With Custom Provider from the dropdown.
Paste your endpoint URL into the field above.
Verify by visiting dnsleaktest.com — your ISP's DNS should no longer appear.
Open Settings, scroll to the bottom, and click Network Settings.
Check Enable DNS over HTTPS.
Set the provider to Custom and paste your endpoint URL.
Choose Max Protection mode and click OK.
In your mobile browser (recommended): Open Chrome or Firefox on your phone and follow the same steps as the desktop guide above.
System-wide on Android / iOS: Use the RethinkDNS or Intra app. Set DNS mode to DoH and paste your endpoint URL.
https:// URL. See the note below.
Operating systems like Windows, Android Private DNS, and Apple profiles use DNS-over-TLS (DoT), which only accepts a plain hostname. Pasting this URL there produces an "Invalid Hostname" error.
This resolver runs on Cloudflare's global edge and speaks DNS-over-HTTPS (DoH) — the same port as every website you visit (443). Modern browsers have their own built-in DoH engine that works perfectly here. Your DNS traffic hides inside normal HTTPS, making it invisible to your ISP or any middlebox on the network.