Windows News
Changing your DNS server is one of the simplest yet most impactful network tweaks available to Windows and Mac users, offering tangible benefits like faster website loading, enhanced security against malicious sites, and increased privacy from internet service providers. While many users stick with their ISP's default DNS servers, switching to optimized third-party services can dramatically improve your online experience with just a few configuration changes. This comprehensive guide covers everything from basic DNS concepts to advanced encrypted DNS setup across Windows 11, macOS, and home routers.
What is DNS and Why Should You Change It?
DNS (Domain Name System) functions as the internet's phonebook, translating human-readable domain names like "google.com" into machine-readable IP addresses like "142.250.74.46" that computers use to connect to websites. When you type a URL into your browser, your device queries a DNS server to resolve that name to an IP address before any content can load. Your Internet Service Provider typically assigns their own DNS servers by default, but these aren't always the fastest or most secure options available.
Third-party DNS services like Cloudflare (1.1.1.1), Google (8.8.8.8), and OpenDNS offer significant advantages over ISP defaults. According to recent performance tests, Cloudflare's DNS consistently ranks among the fastest globally, with average response times under 10ms in many regions compared to 20-50ms for typical ISP servers. Beyond speed, these services provide better security features including phishing protection, malware blocking, and support for modern DNS security extensions like DNSSEC that validate domain authenticity.
How to Change DNS on Windows 11
Windows 11 offers multiple methods for configuring DNS settings, from simple graphical interfaces to advanced PowerShell commands. The most straightforward approach is through the Settings app:
- Open Settings (Windows key + I) and navigate to Network & internet
- Select either Wi-Fi or Ethernet depending on your connection type
- Click on your active network connection
- Under IP assignment, click Edit
- Change from Automatic (DHCP) to Manual
- Toggle IPv4 to On
- Enter your preferred DNS servers in the Preferred DNS and Alternate DNS fields
- Click Save to apply changes
For users who prefer the classic Control Panel approach:
- Open Control Panel > Network and Sharing Center
- Click Change adapter settings on the left sidebar
- Right-click your active network connection and select Properties
- Select Internet Protocol Version 4 (TCP/IPv4) and click Properties
- Choose Use the following DNS server addresses
- Enter your preferred DNS servers
- Click OK to save changes
Power users can configure DNS via PowerShell with the command:
Set-DnsClientServerAddress -InterfaceAlias "Ethernet" -ServerAddresses "1.1.1.1","1.0.0.1"
Replace "Ethernet" with your connection name and the addresses with your preferred DNS servers.
Setting Up Encrypted DNS (DNS-over-HTTPS) on Windows
Windows 11 natively supports DNS-over-HTTPS (DoH), which encrypts DNS queries to prevent eavesdropping and manipulation. To enable DoH:
- Open Settings > Network & internet > Advanced network settings
- Select More network adapter options
- Right-click your connection > Properties > Internet Protocol Version 4 (TCP/IPv4)
- Click Properties > Advanced > DNS tab
- Check Use encryption (DNS over HTTPS)
Alternatively, configure DoH via registry:
1. Open Registry Editor (regedit)
2. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters
3. Create a DWORD value named EnableAutoDoh with value 2
4. Restart your computer
How to Change DNS on macOS
macOS provides a straightforward interface for DNS configuration through System Settings:
- Open System Settings and select Network
- Choose your active connection (Wi-Fi or Ethernet)
- Click Details next to your connection
- Select DNS from the sidebar
- Click the + button under DNS Servers to add new addresses
- Enter your preferred DNS servers (Cloudflare: 1.1.1.1, 1.0.0.1)
- Remove any existing servers by selecting them and clicking -
- Click OK then Apply to save changes
For encrypted DNS on macOS, you can use third-party applications like Cloudflare's 1.1.1.1 app or configure DNS-over-HTTPS manually through terminal commands. Apple has also begun implementing native DoH support in recent macOS versions, though full system-wide implementation is still developing.
Router-Level DNS Configuration
Changing DNS at the router level ensures all devices on your network benefit from faster, more secure DNS resolution without individual configuration. The exact steps vary by router manufacturer, but generally follow this pattern:
- Access your router's admin panel (typically 192.168.1.1 or 192.168.0.1)
- Log in with administrator credentials
- Navigate to Internet or WAN settings
- Look for DNS Server or Domain Name Server settings
- Change from Automatic from ISP to Manual or Custom
- Enter your preferred DNS addresses
- Save changes and restart your router
Popular router brands have slightly different interfaces:
- TP-Link: Advanced > Network > Internet > Manual DNS
- Netgear: Advanced > Setup > Internet Setup > Use These DNS Servers
- ASUS: Advanced Settings > WAN > Internet Connection > DNS Setting
- Linksys: Connectivity > Internet Settings > Static DNS
Router-level changes affect all connected devices including smart home gadgets, gaming consoles, and mobile devices. This is particularly beneficial for IoT devices that don't offer individual DNS configuration options.
Top DNS Service Providers Compared
| Provider | Primary DNS | Secondary DNS | Key Features | Best For |
|---|---|---|---|---|
| Cloudflare | 1.1.1.1 | 1.0.0.1 | Fastest speeds, privacy-focused, DoH/DoT support | Speed & privacy |
| 8.8.8.8 | 8.8.4.4 | Reliability, global infrastructure, security filtering | Reliability & security | |
| OpenDNS | 208.67.222.222 | 208.67.220.220 | FamilyShield filtering, phishing protection | Content filtering |
| Quad9 | 9.9.9.9 | 149.112.112.112 | Malware blocking, privacy, non-profit | Security & privacy |
| AdGuard | 94.140.14.14 | 94.140.15.15 | Ad blocking, tracking protection | Ad blocking |
Cloudflare's 1.1.1.1 service consistently ranks as the fastest in global performance tests, with the added benefit of a strict privacy policy that doesn't log IP addresses. Google's DNS offers exceptional reliability with servers in hundreds of locations worldwide. OpenDNS provides robust content filtering options ideal for families, while Quad9 focuses on security by blocking known malicious domains.
Performance Testing and Optimization
After changing your DNS settings, verify the improvement using these tools:
- DNS Benchmarking: Use GRC's DNS Benchmark or namebench to compare response times
- Online Speed Tests: DNS speed affects initial connection times more than download speeds
- Real-World Testing: Notice faster website loading, especially on frequently visited sites
For optimal performance, consider these advanced tips:
- Use geographically close servers: Some providers offer regional endpoints
- Combine providers: Use one for primary, another for secondary DNS
- Regular testing: ISP infrastructure changes can affect relative performance
- Consider IPv6: Many providers offer IPv6 DNS addresses for future-proofing
Troubleshooting Common DNS Issues
After changing DNS settings, you might encounter these issues:
No internet connection:
- Verify DNS addresses are entered correctly
- Try switching back to automatic DNS temporarily
- Check if your firewall is blocking DNS traffic (port 53)
Slow performance after change:
- Test different DNS providers
- Ensure you're using the closest servers geographically
- Clear your DNS cache (Windows: ipconfig /flushdns, macOS: sudo killall -HUP mDNSResponder)
Specific sites not loading:
- Some networks block third-party DNS
- The DNS provider might be filtering the site
- Try accessing via IP address to isolate DNS as the issue
Security and Privacy Considerations
Modern DNS services offer significant security advantages:
DNS Security Extensions (DNSSEC): Validates DNS responses to prevent spoofing and cache poisoning attacks. Most major providers now support DNSSEC.
Encrypted DNS Protocols:
- DNS-over-HTTPS (DoH): Encrypts DNS queries within HTTPS traffic on port 443
- DNS-over-TLS (DoT): Encrypts DNS queries using TLS on port 853
- DNSCrypt: An older but still effective encryption protocol
Privacy protections: Reputable providers like Cloudflare and Quad9 have strict no-logging policies, while Google anonymizes logs after 24-48 hours. Avoid free DNS services with unclear privacy policies that might sell your query data.
Enterprise and Advanced Configurations
For business environments or advanced users:
Split DNS: Configure different DNS servers for different domains
Conditional Forwarding: Route queries for specific domains to designated servers
DNS Policies: Windows Server allows granular DNS control based on client attributes
Pi-hole: Self-hosted DNS sinkhole that blocks ads and trackers network-wide
The Future of DNS
DNS technology continues evolving with several important developments:
Oblivious DNS: Separates query content from client identity for enhanced privacy
DNS over QUIC: Combines QUIC protocol benefits with DNS encryption
Increased ISP adoption: More ISPs are offering encrypted DNS options to customers
Standardization: IETF continues developing standards for DNS privacy and security
Conclusion
Changing your DNS settings represents one of the most effective optimizations for both home and business networks, offering improved speed, security, and privacy with minimal effort. Whether you choose Cloudflare for raw performance, Google for reliability, or a specialized provider for content filtering, the process takes just minutes but delivers lasting benefits. For maximum impact, configure DNS at the router level to protect all connected devices, and consider enabling encrypted DNS protocols where supported. Regular testing ensures you're always using the optimal servers for your location and needs, keeping your internet experience fast and secure as DNS technology continues to advance.