Cloudflare Docs
Visit on GitHub
Set theme to dark (⇧+D)

Encrypt DNS traffic

Traditionally, DNS queries and replies are performed over plaintext. They are sent over the Internet without any kind of encryption or protection, even when you are accessing a secured website. This has a great impact on security and privacy, as these queries might be subject to surveillance, spoofing and tracking by malicious actors, advertisers, ISPs, and others.

To prevent this and secure your connections, supports DNS over TLS (DoT) and DNS over HTTPS (DoH), two standards developed for encrypting plaintext DNS traffic. This prevents untrustworthy entities from interpreting and manipulating your queries.

You can also configure your browser to secure your DNS queries.

If you need to secure connections in your smartphone, refer to’s iOS or Android apps.