Encrypted DNS Server

This page was last modified: 23 Sep 2023 23:12 CE(S)T.

MegaNerd.nl is providing an encrypted DNS server (SDNS server) and anonymized DNS relay - via DNSCrypt and/or DNS over HTTPS (DoH) at snoke.meganerd.nl.

Why?

Most sites you visit use encryption nowadays (HTTPS), but the ancient DNS protocol doesn't encrypt communication between client and server. In other words: it is sent as plain text and anyone that sniffs your traffic can read and understand the requests you make to translate a domain(name) to an IP address. That makes DNS very vulnarable to man-in-the-middle attacks.

An encrypted DNS server encrypts and authenticates DNS queries. There are several protocols to encrypt DNS. DNSCrypt is one of them and by far the easiest to implement. One of the best ways to enable DNS encryption for yourself is to use dnscrypt-proxy. Download it for your OS and follow the instructions on that page. To further improve privacy, you could enable anonymized DNSCrypt on top of that. You can even use it together with another fantastic piece of software named Pi-hole: see this page for instructions how to do that. The server also supports DNS over HTTPS (DoH) via doh-proxy - another way to encrypt your DNS queries.

MegaNerd.nl encrypted DNS server characteristics
  • Free, No logs, no filters
  • Encrypted DNS with DNSCrypt v2 (Encrypted DNS Server)
  • Anonymized DNSCrypt relay
  • DNS over HTTPS (DoH) support (via doh-proxy)
  • Support for DNSSEC
  • Hosted in Amsterdam, the Netherlands - cloud based server
DNSCrypt server IPv4
  • Use meganerd in your dnscrypt-proxy configuration
  • Or use the following DNS stamp:

sdns://AQcAAAAAAAAADTk1LjE3OS4xMzEuODIgIRiZQdNmDJj8zSxSbb1qzEEAU3Pjo0sVBjpJdICkfj4hMi5kbnNjcnlwdC1jZXJ0LnNub2tlLm1lZ2FuZXJkLm5s

Anonymized DNSCrypt relay IPv4
  • Use anon-meganerd in your dnscrypt-proxy configuration
  • Or use the following DNS stamp:

sdns://gQ05NS4xNzkuMTMxLjgy

DNSCrypt server IPv6
  • Use meganerd-ipv6 in your dnscrypt-proxy configuration
  • Or use the following DNS stamp:

sdns://AQcAAAAAAAAAGFsyYTA1OmY0ODA6MTQwMDoyYjAwOjoxXSAhGJlB02YMmPzNLFJtvWrMQQBTc-OjSxUGOkl0gKR-PiEyLmRuc2NyeXB0LWNlcnQuc25va2UubWVnYW5lcmQubmw

Anonymized DNSCrypt relay IPv6
  • Use anon-meganerd-ipv6 in your dnscrypt-proxy configuration
  • Or use the following DNS stamp:

sdns://gRhbMmEwNTpmNDgwOjE0MDA6MmIwMDo6MV0

DNS over HTTPS (DoH) server IPv4
  • Use meganerd-doh-ipv4 in your dnscrypt-proxy configuration
  • Or use https://snoke.meganerd.nl/dns-query as your DoH server
  • Or use the following DNS stamp:

sdns://AgcAAAAAAAAADTk1LjE3OS4xMzEuODIgRE69Z7uD-IB7OSHpOKyReLiCvVCq2xEjHwRM9fCN984Rc25va2UubWVnYW5lcmQubmwKL2Rucy1xdWVyeQ

DNS over HTTPS (DoH) server IPv6
  • Use meganerd-doh-ipv6 in your dnscrypt-proxy configuration
  • Or use https://snoke.meganerd.nl/dns-query as your DoH server
  • Or use the following DNS stamp:

sdns://AgcAAAAAAAAAGFsyYTA1OmY0ODA6MTQwMDoyYjAwOjoxXSBETr1nu4P4gHs5Iek4rJF4uIK9UKrbESMfBEz18I33zhFzbm9rZS5tZWdhbmVyZC5ubAovZG5zLXF1ZXJ5