← Back to blog
bpdubuntu

Encrypt Your DNS: A Simple Step to Boost Your Online Privacy

9 January 2026bpd · ubuntu

Stop Your ISP from Seeing Every Site You Visit

When you type a website address like ‘google.com’, your computer sends a DNS request to translate that name into an IP address. By default, this request is sent in plain text, meaning your internet provider can see every website you visit. The ‘Ubuntu System Administration Guide’ explains how to secure this traffic using DNS over HTTPS (DoH).

How DNS over HTTPS Works

Instead of sending DNS requests in the clear, DoH encrypts them and sends them over the same secure channel your web browser uses. This prevents third parties from easily logging your browsing habits. You can set this up on Ubuntu by installing and configuring a local DNS proxy.

Setting it Up

The book provides a guide for setting up a tool that listens for local DNS requests on your machine and forwards them securely to a public DoH-enabled DNS server. By configuring your network settings to use this local proxy, you ensure that all DNS lookups from your computer are encrypted and private.

This post is based from content of the book Ubuntu System adminstration guide. And the book can be found here https://www.amazon.com/stores/Mattias-Hemmingsson/author/B0FF5CQX13