1

Windows 11 IPv4/IPv6 of NextDNS does not work as encryption

Hi

Location: Network & Internet > Wifi/Ethernet > DNS server assignment

When I enter the IP address of NextDNS under IPv4 or IPv6 of NextDNS then it never gives an option to choose the Encrypted option. Furthermore, Windows 11 does not accept the web link of DOH or DOT under DNS server assignment.

Could you please check and help us enable the Encryption option by entering IPv4 or IPV6 of NextDNS.

Thank you!

9 replies

null
    • NextDNs
    • 2 yrs ago
    • Reported - view

    Please install our windows app, it will configure Windows 11 DoH support for you.

      • Mohit
      • 2 yrs ago
      • Reported - view

      NextDNS 

      Hi,

      I tried but it disclose my laptop model number, OS version, and device name.

      Could you please let us know if there's any possibility to set the device name in NextDNS software manually?

      • Mohit
      • 2 yrs ago
      • Reported - view

      NextDNS also feature to hide OS version and model number?

      • NextDNs
      • 2 yrs ago
      • Reported - view

      Mohit disable "Report Device Name" in the settings. There is no way to customize the device name with the app.

      • Mohit
      • 2 yrs ago
      • Reported - view

      NextDNS Thank you!

      One last question, why am I unable to choose Encrypt option in Windows 11 settings after entering NextDNS IPv4/6?

      Whereas I can choose the encryption option in Windows 11 of Google/Cisco/Adguard IP address.

      • NextDNs
      • 2 yrs ago
      • Reported - view

      Mohit it does not matter, the encryption is forced.

      • Mohit
      • 2 yrs ago
      • Reported - view

      NextDNS 

      Not really, I request you to cross-check because I do not see a lock icon in logs after I enter IPv4/6 on Windows 11 OS DNS option.

      • Hey
      • 2 yrs ago
      • Reported - view

      Mohit They mean when you install the app itself.

      Manually configuring the IP is hard as Windows doesn't let you enter a DoH address so you end up with having to manaully update your IP on the site.

      For the lock not showing while you enter the IP manually, you need to turn on the DoH option that's weirdly hidden in Windows 11. As they recommend just use the App as otherwise it's a problematic at best to configure / set up.

    • Andrew_Paolucci
    • 2 yrs ago
    • Reported - view

    So MSFT has only allowed "known" encrypted DNS for this setting, but you may add servers in the Windows registry to make it known. You'll need to make 4 total entries, 2 for v4 and 2 for v6. But with this technique you can package the settings into a Group Policy and deploy to a whole network of WIndows machines. Once these 4 entries are added you should be able to use the Windows DoH settings within the normal network section.

    Replace: $NEXTDNSID & $NEXTDNSIP

    reg add "HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\NEXTDNSIP" /v "Template" /t REG_SZ /d "https://dns.nextdns.io/$NEXTDNSID" /f
    reg add "HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\NEXTDNSIP" /v "Template" /t REG_SZ /d "https://dns.nextdns.io/$NEXTDNSID" /f

Content aside

  • 1 Likes
  • 2 yrs agoLast active
  • 9Replies
  • 1052Views
  • 4 Following