How to Set Up a Private DNS for a Secure Browsing Experience

By On Friday, April 04, 2025
DNS engraved on a globe

Security and privacy are two of the primary concerns while browsing the internet. One of the ways to combat online threats is the use of private DNS (Domain Name System). A DNS system converts domain names into IP addresses. Generally, the default DNS server provided by your ISP logs all your internet queries. It also doesn't provide any kind of protection from malicious websites. On the other hand, a private DNS not only protects you from malicious websites but also follows a no-logging policy for user queries. We'll learn the setup of the best private DNS services for better security and privacy.

DNS engraved on a globe
📷 Credit: DALL·E 3

Configuring a private DNS only involves replacing current DNS server IP addresses with the one you want to use. The only difference is the operating system and the device interface to do it.

Read Also:
Stop Websites from Spying on You: Effective Privacy Tips

Changing your default DNS server doesn't affect the speed of your browsing. It's the same as all of these services have DNS server nodes across the entire globe to enable quick domain name resolution.

What Are the Benefits of Using a Private DNS?

Before you consider using a private DNS service, learn about what you'll gain from it. Here are some of the biggest advantages of using a private DNS.

  • Improved Privacy: Because of the no-logging policy, your internet queries are not trackable.
  • Enhanced Security: Strong encryption prevents hackers from intercepting your DNS queries.
  • Faster Browsing: Premium DNS services offer both faster name resolution and optimal caching.
  • Content Filtering & Control: Use it for parental controls or ad and malware blocking.

As you can see, the advantages make a private DNS—the best option—for individuals looking to protect their privacy. It also ensures you get protected from deceptive websites.

How to Choose the Right Private DNS Provider

Now that we are aware of the benefits of using a private DNS, let's quickly take a look at what to look for when deciding on a private DNS service provider. Here are the key attributes to consider:

  • Encryption Support: If you want all your DNS queries to be encrypted, make sure the DNS service provider supports DNS-over-HTTPS (DoH) or DNS-over-TLS (DoT) to eliminate sniffing of your query data by malicious actors.
  • No Logging Policy: Now this one is important. Make sure your DNS provider isn't logging your DNS queries. There should be a strict no-logging policy at the service end, else do not even consider it.
  • Reputation & Speed: Read reviews of all the top private DNS service providers before taking any decision. Sites like Trustpilot are a good source of reading reliable and geniune reviews.
  • Custom Features: Check for advanced features like filtering and blacklisting ability. If you can create advanced filters and can both blacklist and whitelist selective domains, it's one of the attributes that make your DNS service provider, a good candidate.

Now before we learn about some of the best private DNS service providers, let's quickly see how we can configure custom DNS servers on different types of devices.

Private DNS Setup Across Different Devices

Let's see how we can set up a private DNS system on the most popular devices. It's a simple process, provided you know how to access and modify the network adapter settings. Let's go!

1. On Windows (10 & 11)

  1. Go to the SettingsNetwork & Internet page.
  2. Depending on the type of network you are using, click on the Wi-Fi or Ethernet tab.
  3. Click on Change adapter options.
  4. A new window will open with all the available networks. Choose the currently active network and right-click on the Properties option from the context menu.
    DNS server address change in Windows 10
    📷 Configuring custom DNS server addresses on Windows
  5. Here, select the Internet Protocol Version 4 (TCP/IPv4) option and click the Properties button below it.
  6. Select the Use the following DNS server addresses option.
  7. Add both Preferred DNS and Alternate DNS IP addresses obtained from the private DNS service provider. Click OK to save the changes.
  8. Open the command prompt with admin privileges and fire the ipconfig /flushdns command to flush the cache of the old DNS server. It'll ensure all new requests are made through the new DNS servers.

2. On macOS

  1. Go to the System PreferencesNetwork option.
  2. Identify the active network and click on the Advanced option.
  3. In the tabbed dialogue box, go to the DNS tab and delete all the existing DNS records.
    Change DNS server on a Mac system
    📷 Configuring DNS server on macOS
  4. Click the plus button to enter new DNS server IP addresses.
  5. Finally, click the OK button for changes to take effect.

3. On Android (Android 9 and above)

  1. In most stock Android versions, go to the SettingsNetwork & Internet option. On my smartphone, I have to go to the SettingsConnection & sharing option.
  2. Scroll down and tap on the Private DNS option.
  3. Tap on Modify as shown in the image below. In some Android versions, this option will be Private DNS provider hostname while in others it may be Designated private SNS.
    Private DNS on Android
    📷 Setting up private DNS for Android
  4. A text field will appear where you should type in the private DNS hostname.
  5. Tap on the Save option for changes to take effect.

4. On iOS (iPhone & iPad)

  1. Go to the SettingsWi-Fi option.
  2. Find the active network and tap on its 'i' icon.
  3. Scroll down and find the Configure DNS option. Tap on it.
    Custom DNS configuration on iOS
    📷 Custom DNS configuration on iOS
  4. Select the Maunal option and delete existing DNS server IP addresses replacing them with the private DNS IP addresses you got from your service provider.
  5. Finally, tap on the Save button.

5. On Routers

If you are using multiple devices in your premises and the internet source is a router, instead of configuring them individually, it is better to set up private DNS on the router itself. Here's how to do it.

  1. Open the administration panel of your router which is generally accessible through 192.168.1.1 or 192.168.0.1 IP addresses.
  2. Enter the admin login credentials to access the router management interface.
  3. To access the DNS configuration section, find the WAN or DHCP options.
  4. Replace the existing DNS addresses with your private DNS server IP addresses.
  5. Make sure to save the changes before restarting the router.

Best Private DNS Services (For Home Use)

After learning how to configure private DNS on different types of devices, let's quickly take a look at some of the best private DNS services one can use at home.

1. Cloudflare DNS

Here are the IP addresses and hostnames you can use for Cloudflare DNS services.

# General purpose setup
1.1.1.1
1.0.0.1

# To block malware
1.1.1.2
1.0.0.2

# To block both malware and adult content
1.1.1.3
1.0.0.3
# General purpose setup (Android)
one.one.one.one

# To block malware (Android)
security.cloudflare-dns.com

# To block both malware and adult content (Android)
family.cloudflare-dns.com

2. Google DNS

For using Google DNS, use the following IP addresses and hostname:

# General purpose setup
8.8.8.8
8.8.4.4

# For Android
dns.google

3. Quad9

Here are the IP addresses and hostname for Quad9 DNS:

# General purpose setup
9.9.9.9
149.112.112.112

# For Android
dns.quad9.net

4. NextDNS

Another popular private DNS service is NextDNS. Here's how to use it.

# General purpose setup
45.90.28.0
45.90.30.0

# For Android
<account-id>.dns.nextdns.io

5. OpenDNS

I use this one. It has a couple of configuration options. Take a look.

# General purpose setup
208.67.222.222
208.67.220.220

# For blocking adult content
208.67.222.123
208.67.220.123

# For Android
familyshield.opendns.com

6. AdGuard DNS

Last but not least, AdGuard DNS can be configured using the following options:

# General purpose setup (blocks ads and trackers)
94.140.14.14
94.140.15.15

# For blocking adult content as well
94.140.14.15
94.140.15.16
# For Android (blocks ads and trackers)
dns.adguard-dns.com

# For Android (blocks adult content as well)
family.adguard-dns.com

Testing Your Private DNS Setup

Once your private DNS is configured, it's time to check if it's actually working or not. You can do it easily using the following method.

Go to DNS leak test and run standard or extended test.

DNS leak test report
📷 DNS leak test report confirms the DNS service in use on a device

These tests clearly show where your DNS queries are served from. This way, you can easily detect if your current DNS setup is working as per your configuration.

Conclusion

A private DNS enhances security, speeds up browsing, and helps maintain privacy online. Whether you configure it on individual devices or at the router level, the process is straightforward and significantly improves your online experience.

By setting up a private DNS today, you take a crucial step toward a safer and more secure digital life. If you found this guide helpful, share it with others and help spread privacy awareness!

Image Credit: All screenshots and image alterations by Rajeev Edmonds/FreshTechTips

Rajeev Edmonds - Author of Fresh Tech Tips

Rajeev Edmonds

Editor-in-Chief / Author

Rajeev Edmonds has been guiding tech enthusiasts with in-depth tutorials since 2012. He covers WordPress, digital services, the latest gadgets, and more. He also crafts websites and web apps for individuals and small to mid-sized businesses. Connect with him on X, Bluesky, and GitHub.

All comments posted here are subject to the comment policy of this blog.