DNS-Resolver

Technical overview and configuration files of our public DoT and DoH DNS resolvers.

The Digital Society Switzerland runs two publicly available DoH and DoT DNS resolver systems. In this repository we provide various configuration instructions so you can use our service. To use transparency and a diverse Internet is very important, therefore we provide our live configuration. Everyone is welcome to copy our configuration and run his/her own secure DNS resolver.

Our DNS resolvers:

• DoT: dns.digitale-gesellschaft.ch:853
• DoH: https://dns.digitale-gesellschaft.ch/dns-query

Do you have improvement suggestions and/or questions about our configuration? Check out our FAQ or get in contact with us. More information can be found here (German only).

The following illustration describes the idea of our secure DNS service.

Technical Information & Configuration How To’s

Technically every DNS-over-HTTPS or DNS-over-TLS conform software or system is able to be configured to our public services. Simply point them to our secure DNS resolvers:

• DoT: dns.digitale-gesellschaft.ch:853
• DoH: https://dns.digitale-gesellschaft.ch/dns-query

In case you want IP addresses use these:

• 2a05:fc84::42
• 2a05:fc84::43
• 185.95.218.42
• 185.95.218.43

These are virtual IP addresses (VRRP) and are shared by our server instances.

The following list gives you some ideas how to configure your software or system to use our secure DNS resolvers. The list of how-tos is not complete. Feel free to add configuration instructions or translations in other languages via a pull request (PR).

Browser Configuration

• Firefox with DoH: German
• Opera with DoH: German
• Chrome / Chromium with DoH: German

Operating System

• Android / Lineage OS with DoT: German
• iOS Profile: German
• Windows 11 with DoH: German

Internet Router

• Fritz!Box with DoT: German
• Turris Omnia / OpenWRT with DoT: German

Other

• Curl with DoH: German
• Stubby with DoT: German