You want to confirm which protocol is used when Quad9 receives your DNS queries. This is especially relevant after setting up DNS encryption, such as DNS over TLS or DNS over HTTPS, in the operating system, router, DNS forwarder, or browser.
In the future, this information will be integrated in the on.quad9.net page.
- do53-udp (53/UDP - Plaintext)
- do53-tcp (53/TCP - Plaintext)
- doh (443/TCP - DNS over HTTPS)
- dot (853/TCP - DNS over TLS)
- dnscrypt-udp (UDP - DNSCrypt)
- dnscrypt-tcp (TCP - DNSCrypt)
In the Terminal application, execute the following command. If the DNS query was sent to Quad9, it will respond with the protocol used:
dig +short txt proto.on.quad9.net
In the Command Prompt or Power Shell application, execute the following command. If the DNS query was sent to Quad9, it will respond with the protocol used:
nslookup -type=txt proto.on.quad9.net
If you configured encrypted DNS on another device type without a Terminal application, such as iOS or Android, you will need to install/open a Terminal application, and execute either the MacOS/Linux command, or the Windows command if the dig command is not installed by default.
If you configured Quad9 in the "Encrypted DNS" setting in Chrome, Firefox, Brave, etc, there is no verification needed, as the browser will show an error if the DNS over HTTPS service associated with the URL (https://dns.quad9.net/dns-query) cannot be utilized. If the URL is set and accepted in the browser, then it's working.
Please sign in to leave a comment.