Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

I've figured out how to get Windows 11 to recognise AdGuard DNS as encryptable, but I don't know which folder/page to add such info to #288

Closed
DandelionSprout opened this issue Jun 28, 2022 · 7 comments
Closed

I've figured out how to get Windows 11 to recognise AdGuard DNS as encryptable, but I don't know which folder/page to add such info to #288

DandelionSprout opened this issue Jun 28, 2022 · 7 comments

Comments

@DandelionSprout
Copy link
Member

DandelionSprout commented Jun 28, 2022
edited
Loading

Windows 11's "Network and Internet" settings added an option to set DNS servers as encrypted. But by default, they only made it possible to turn on for the IP addresses used by Google DNS, CloudFlare DNS, and Quad9, which can be displayed with netsh dns show encryption in PowerShell. I have however figured out how to get it to recognise public AdGuard DNS IPs too.

The .reg file content that would've enabled it, from what I can tell:

;Allows Windows 11's (Not earlier Windows versions) network settings to recognise AdGuard DNS IPs as being possible to turn on encryption for.
;Users probably won't need to use both IPv4 connection addresses in their settings, as they'd both lead to the same DoH address.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\94.140.14.14]
"Template"="https://dns.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\94.140.15.15]
"Template"="https://dns.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\2a10:50c0::ad1:ff]
"Template"="https://dns.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\2a10:50c0::ad2:ff]
"Template"="https://dns.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\94.140.14.140]
"Template"="https://dns-unfiltered.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\94.140.14.141]
"Template"="https://dns-unfiltered.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\2a10:50c0::1:ff]
"Template"="https://dns-unfiltered.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\2a10:50c0::2:ff]
"Template"="https://dns-unfiltered.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\94.140.14.15]
"Template"="https://dns-family.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\94.140.15.16]
"Template"="https://dns-family.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\2a10:50c0::bad1:ff]
"Template"="https://dns-family.adguard.com/dns-query"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DohWellKnownServers\2a10:50c0::bad2:ff]
"Template"="https://dns-family.adguard.com/dns-query"

What the settings menu looks like, complete with 94.140.14.140 having encryption turned on, which can't be done on stock Windows 11 stable installations (In this case, it was accomplished with direct registry editing instead of a .reg file. I can take a UK English screenshot on request):

image

Ideally, this kind of info would've been suited for https://adguard-dns.io/en/public-dns.html → "Method 2: Configure AdGuard DNS manually" → Windows 11; but it doesn't seem to be part of the main Knowledge Base at the time of writing, nor are there any pages in the actual Knowledge Base that are anywhere nearly as suited for it.
@ameshkov ameshkov transferred this issue from AdguardTeam/AdguardKnowledgeBase Jun 28, 2022
@ameshkov
Copy link
Member

Yeah, this probably should be a part of the DNS configuration instructions, not the knowledge base.

@Chilace
Copy link

Chilace commented Jun 28, 2022

My settings without having to edit the registry:
2022-06-28 15-38-07 Settings
2022-06-28 15-40-00 Settings
2022-06-28 15-41-23 About Windows

@DandelionSprout
Copy link
Member Author

I seem to be running on 21H2, which I suppose explains the difference. But thanks for the headsup. Good to know the settings will get more expanded for stable users in 4 months or so.

@ameshkov
Copy link
Member

We'll have to postpone this until the update is out then.

@DandelionSprout
Copy link
Member Author

I still feel the OP stuff is worth mentioning, since seemingly no relevant search results on Google seem to demonstrate any such registry fix, thus AdGuard would've shared new info with the world.

@Chinaski1
Copy link
Member

Added at v2.4 update

@Chinaski1
Copy link
Member

The instruction How to configure personal DNS manually was added at v2.4 update

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@ameshkov @DandelionSprout @Chilace @Chinaski1