hide.me Support

DNS over HTTPS (DoH)

Last modified: July 14, 2021

hide.me VPN Discontinues Support For Windows XP & Vista

What Is DNS over HTTPS (DoH)?

When you enter a web address into your address bar, your web browser sends a request (DNS query) over the Internet to look up the IP address for that site.

This traffic often goes over plain text so third-parties may see which website you’re accessing. To improve security and privacy, browser vendors started implementing DoH (DNS-over-HTTPS) that works differently.


How DNS over HTTPS (DoH) Works?

It sends the domain name you typed to a DoH-compatible DNS server using an encrypted HTTPS connection instead of a plain text one. This may prevent third-parties from seeing what websites you are trying to access, but just encrypting DNS traffic may not be sufficient.

Unless your browser supports TLSv1.3 and the website you’re connecting to supports TLSv1.3, your HTTPS traffic has unencrypted Server Name Indicators (SNI), which may reveal hostname you are connecting to therefore you may get a false sense of security.


Is DNS over HTTPS (DoH) Good Or Bad?

DoH and DoT (DNS over TLS) are in general good technologies as they add encryption to DNS traffic that was previously transmitted over plain text.

However, having it configured only in your browser is not enough as not all applications will benefit from encrypted DNS traffic.

Also, letting applications (i.e. web browsers) manage DNS and network settings may cause things to get out of control as DoH bypasses your local DNS resolver and can defeat policies you or your organizations have like blocking malware, parental control, etc.

In the US, Firefox by default directs DoH queries to DNS servers that are operated by CloudFlare, meaning that CloudFlare has the ability to see users’ queries but Mozilla has a strong Trusted Recursive Resolver (TRR) policy in place that forbids CloudFlare or any other DoH partner from collecting personally identifiable information.


Do I Need DoH Whilst Connected To hide.me VPN?

No. You don’t need to have DoH enabled whilst connected to hide.me VPN.

Every Hide.me server operates its own privacy-friendly and zero-logging DNS server so, when you are connected your traffic, including DNS requests, are protected by the underlying VPN tunnel.


How To Disable DNS over HTTPS?

Mozilla Firefox

  1. Click the menu button Fx57Menu and select Options.
  2. In the General panel, scroll down to Network Settings and click the Settings… button.
  3. In the dialogue box that opens, scroll down to Enable DNS over HTTPS.
  4. Uncheck the Enable DNS over HTTPS checkbox and click OK to save your changes.
Disable DNS over HTTPS (DoH) in Firefox

Google Chrome

Open your browser and enter chrome://settings/security at the address bar.

Scroll down to the Advanced section. Next, toggle off Use secure DNS button.

disable dns over https on chrome

How Can I Check For DNS Leak?

Go to our DNS leak test page and check your results.

The green banner indicates your DNS queries are not leaking and it is using our DNS server.

hide me ip check green banner

The dark yellow banner indicates your device/application is using a third-party DNS server.

i:e DNS over HTTPS is enabled in your browser’s settings.

hide me ip check yellow banner

The red banner indicates you’re not connected to our VPN service.

hide me ip check red banner

Tips

We would also recommend that you secure your web browser by following the guidelines at the link below:

How To Secure and Increase Privacy Of A Web Browser?

hide.me Support
Support Ticket
Contact Support

Open a support request and contact our support directly.

Contact Support
Community
Community

Need help? Have something to share? Let our community know about it.

Visit Community
Setup Guide
Open Setup Guides

We have a detailed step-by-step guide which can help you set up a VPN within minutes.

Open Setup Guide
Christmas Sale

Includes 3 months extra

Days

Hrs

Min

Sec

Get the offer