You can now enable support for the privacy-focused DNS-over-HTTPS (DoH) protocol in Google Chrome using a command-line argument.
The procedure is complicated, but this step-by-step guide can help users set up DoH support in Chrome, and make sure it’s up and running correctly.
What is DNS-over-HTTPS and how does it work?
DNS-over-HTTPS is a relatively new web protocol, being around for only two years.
It works just like the original DNS protocol, meaning its main purpose is to take a domain name (e.g. zdnet.com) that a user types in a browser and send a query to a DNS server to learn the numerical IP address of the web server that hosts that website.
But while the classic DNS protocol makes this request in plaintext, for everyone to see, DoH packages its DNS queries as encrypted HTTPS traffic.
The primary benefit of DoH is that the protocol hides DNS requests and responses in the giant stream of HTTPS traffic that moves across the internet each second. This means third-party observers can’t look at DNS requests to guess what a user might be trying to access.
This design makes DoH a protocol useful for bypassing DNS-based blocklists, as there won’t be any DNS traffic to filter.
Mozilla has already rolled out support for the DoH protocol a few years back. Currently, enabling DoH support in Firefox is as easy as pushing a few buttons. See our previous how-to guide.
On the other hand, enabling DoH in Chrome isn’t as easy, as Google is currently a little bit behind with supporting the protocol. DoH works just fine in Chrome, but there’s no user interface for enabling or configuring it.
How to enable and test DoH in Chrome
To enable DoH support in Chrome, users would have to use a so-called command-line argument (or command-line flag), which is a set of additional instructions that are passed to the Chrome executable at start-up, to enable in-dev features.
Step 1: Find your Chrome shortcut. This may be on your taskbar, desktop, start menu, or somewhere else on your file system.
Step 2: Right-click on the Chrome shortcut and select the Properties option.
Step 3: In the Target field, add the following text at the end of the shortcut path and hit Save. [Source]
–enable-features=”dns-over-https<DoHTrial” –force-fieldtrials=”DoHTrial/Group1″ –force-fieldtrial-params=”DoHTrial.Group1:server/https%3A%2F%2F22.214.171.124%2Fdns-query/method/POST
The above text will configure Chrome to use the Cloudflare DoH server. Users can select any other DoH server from this list.
Step 4: If Chrome is already running, restart it. Otherwise, start Chrome.
Step 5: To test if DoH support is working in Chrome, access https://126.96.36.199/help. On the right of “Using DNS over HTTPS (DoH)” the site should return “Yes.”