DNS over HTTPS
tina-hello edited this page May 14, 2024
·
1163 revisions
DoH queries resolve over HTTPS for privacy, performance, and security. DoH also makes it easier to use a name server of your choice instead of the one configured for your system.
RFC 8484 - DNS Queries over HTTPS (DoH)
*: Tested via curl --doh-url <RESOLVER_URI> http://google.com
.
Download a recent snapshot of the above list as JSON from here.
Base | Source | Comment |
---|---|---|
Docker | https://github.com/satishweb/docker-doh | Complete Docker stack using Star Brilliant's dns-over-https and Docker Flow Proxy |
Docker | https://github.com/coolquasar/dnsproxy | Complete DoH, DoT, and DoQ stack in docker based on Adguard home dnsproxy project. Could host DoH, DoT and DoQ quickly in a cloud server, and run respective clients in local Docker env. It has been tested in Raspberry PI as well |
Name | Version | Comments |
---|---|---|
Firefox | 62 | Firefox DNS-over-HTTPS |
Bromite | 67.0.3396.88 | How to enable DoH |
curl | 7.62.0 | See DOH-implementation |
OkHttp | 3.11 | See Providers |
curl-doh | n/a | basic stand-alone DoH client that uses curl |
Chrome | 66 | https://support.google.com/chrome/answer/10468685#zippy=%2Cuse-a-secure-connection-to-look-up-sites-ip-addresses |
Windows | 11 | https://learn.microsoft.com/en-us/windows-server/networking/dns/doh-client-support |
iOS & macOS | iOS 14 & macOS 11 | https://dns.notjakob.com/ |
Name | Author/Organization | Comments |
---|---|---|
bulldohzer | Commonshost | Benchmark DoH and Do53 servers |
coredns | Cloudflare | CoreDNS is a DNS server/forwarder, written in Go from the Cloud Native Computing Foundation. |
dealdoh | Maxime Elomari | a middleware to proxy DoH requests to different DNS upstreams, written in PHP. |
dns-over-https | Star Brilliant | server-side and client-side implementation, written in Golang |
dns2doh | Daniel | tool for generating DOH responses and questions. |
dnscrypt-proxy | Frank Denis | dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols. |
dnsdist | PowerDNS | supports doh, see https://dnsdist.org/guides/dns-over-https.html |
dnss | Alberto Bertogli | daemon written in Go which acts as a proxy (the most common use case), and as a server (in case you want end-to-end control). |
doh-cf-workers | tina-hello | A single JS file to forward DoH to DoH on Cloudflare Workers |
doh-gcf | tina-hello | A single C# file to forward DoH to DoH/Do53 on Google Cloud Function |
doh-js-client | Peter Lai | client-side implementation of DoH, can be used in nodejs backend. |
doh-php-client | Daniel Cid | can be used to test and run DoH requests via PHP applications. |
doh-proxy | tools for DoH | |
doh-proxy | Frank Denis | server-side proxy in rust |
DOHD | Dyne.org | Very fast and lightweight daemon written in C functioning as a simple proxy for DNS queries over HTTPS using the HTTP/2 protocol and WolfSSL. |
dohjs | BYU IMAAL | Client DoH JavaScript library for accessing DNS information from web applications. Can be tested at dohjs.org |
DoH | NotMikeDEV | A single PHP file to add DoH forwarder on any PHP-capable server |
EasyDoH | ElevenPaths | a simple add-on for Firefox that allows one to easily activate DNS over HTTPS and its working mode with just one click. |
Encrypted DNS Server | Frank Denis | can serve DNSCrypt and DoH traffic simultaneously, written in Rust. |
Encrypted-DNS | Siujoeng Lau | DNS-over-HTTPS forwarder written in Python |
FDNS | netblue30 | Firejail DNS-over-HTTPS Proxy Server |
godnsbench | Andrey Meshkov | Benchmark DoH, Do53, DoT and DoQ servers. |
h2odoh | Max Kostikov | an implementation with H2O HTTP/2 server using embedded mruby. |
Intra | Jigsaw | DoH client for Android |
jDnsProxy | Travis Burtrum | DNS proxy and cache, implementing DNS-over-TLS, DNS-over-HTTPS, and Serve-Stale |
kdig | CZ.NIC | Utility that sends one or more DNS queries to a nameserver. Each query can have individual settings, or it can be specified globally via common settings, which must precede query specification. This utility supports DoH. |
Nebulo | Daniel Wolf | DoH client for Android |
nss-tls | Dima Krasner | a daemon that makes gethostbyname(), getaddrinfo(), etc. happen through DoH, without any change to applications, thus transparently migrating all applications that don't use their own resolver (like some browsers) from DNS to DoH. |
quart-doh | Matthieu Treussart | HTTP/2 server who serves a DOH proxy written in Python, with Quart Python web microframework. |
RouteDNS | Frank Olbricht | a flexible stub resolver, proxy, and router with support for DoH, DoT, and plain DNS written in Go. |
serverless-dns | RethinkDNS | Host your own RethinkDNS instance on Cloudflare Worker, support customizable filter from URL parameter |
Technitium DNS Server | Technitium | A FOSS, cross-platform DNS Server written in C# that can consume as well as host DNS-over-HTTPS (DoH) and DNS-over-TLS (DoT) services. |