Features

• DNSSEC - Enabled.
• EDNS Client Subnet - Disabled.
• Client Rate limit - 40 requests per second.
• Blocking mode - NXDOMAIN.
• Logging - No. (Performance stats only).

Usage

For best results, always select a server that is geographically close to you :-)

General

• DNS-over-HTTPS: Use https://servername.adfilter.net/dns-query
• DNS-over-TLS: Use tls://servername.adfilter.net:853

iOS

On an iOS 14+ or macOS Big Sur+ device you can download special ‘.mobileconfig’ file that adds DNS-over-HTTPS or DNS-over-TLS servers to the DNS settings. On each of the pages for a server I have a link to a .mobileconfig file for that server.

Android

Android 9 supports DNS-over-TLS natively. To configure it, go to Settings → Network & internet → Advanced → Private DNS and enter your domain name there.

Browsers

Many browsers allow you to specify a DOH DNS resolver independent of your OS settings, use the DOH example above, replacing the servername with the location you would like to use.

Software

The servers providing the service are Ubuntu VMs running the following software.

• AGH - The front end for DOH/DOT/DOQ queries.
• UNBOUND - Validating, recursive, caching DNS resolver.
• chrony - Contributing to the NTP Pool Project.