For iOS, seek a DNS provider from the list and click either HTTPS or TLS using Safari and click Install when given a prompt that states "XXXX." The profile will now install. Now, go to Settings and click on "Profile Downloaded." Follow the instructions. Your DNS configuration will now be changed to the one that you've installed. To manage your DNS configuration, go to Settings => General => VPN, DNS, and Device Management => DNS to change your DNS providers.
To remove DNS profiles from your device, go to Settings => click General => VPN, DNS, and Device Management => click on the profile that you've like to delete => click "Remove Profile."
For macOS Big Sur & Monterey, double click on the downloaded file and approve installation in System Preferences => Security & Privacy => Profiles
For macOS Ventura & newer, double click on the downloaded file and approve installation in System settings => Privacy & Security => Profiles.
I've downloaded the profile but why is it not working????!?!?!
Yeaaaaah. There may be problems with the DNS profile or the DNS resolver itself. Open up an issue request and I or others will take a look within the end of the next decade.
These DNS profiles are pretty much text files. To create a new profile,
- Copy the
DoH-3-template.mobileconfigand/orDoT-3-template.mobileconfig. DoH contains DNS over HTTPS specifics, while DoT contains DNS over TLS specifics. - Once you copied the content from either or both of these profiles, you can start anywhere you like. I recommend the following:
- Replace all
@@@@Adguard@@@@with the DNS resolver's name and filter. - For DoH, add the HTTPS link; for DoT, add the TLS authenticater.
- Use uuidgenerator.net to generate a batch of 4 random UUIDs (Version 4).
- Replace all 4
@@@@RANDOM-UUID-CODE-HERE@@@@with the ones generated. Do. Not. Reuse UUIDs. - Add the profile to the
README.md
- Replace all
README.md Table setup is the following:
| DNSNAME | Filtered? (Yah/Nah) | source link | Anycast? (Yah/Nah) | HTTPS, TLS |
HTTPS link setup should be https://github.com/Undercook1799/layer7-dns-profiles/raw/master/profiles/WHATEVER-PROFILE-NAME-HERE-https.mobileconfig
TLS link setup should be https://github.com/Undercook1799/layer7-dns-profiles/raw/master/profiles/WHATEVER-PROFILE-NAME-HERE-tls.mobileconfig
Apple's documentation for DNS code is https://developer.apple.com/documentation/devicemanagement/dnssettings/ or Here
Or, if you just want a profile but don't want to create one, you can open up a issue request with the resolver of your choice. Include the source link please (the link to where you got the HTTPS/TLS link from).
https://github.com/Undercook1799/layer7-dns-profiles
- This was forked from Paul Miller's repo: https://github.com/paulmillr/encrypted-dns
- DoH ("DNS over HTTPS) will run your queries over port 443; DoT ("DNS over TLS") will run your queries over port 853. Note that DNS runs over port 53 by default.
- None of these profiles are signed xoxo
- Not going to lie, but I have minimal idea of how to operate Github
- I don't operate any of the DNS servers within these profiles. If there are any issues with the resolvers, it may not be my fault. Pretty much anything after the installation process of the profile is not on me. I am not liable if something goes wrong or for any illegal activities.
- If you want me to remove any of these profiles, put in an issue request.