Google Public DNS servers that sit at IP addresses 220.127.116.11 and 18.104.22.168, are now able to handle the more secure DNS-over-TLS specification. Domain Name System (DNS) is the distributed, phone book-like method for converting domain names into IP addresses.
Google announced that their public Domain Name System (DNS) service now comes with support for the DNS-over-TLS security protocol which wraps DNS queries and answers using the Transport Layer Security (TLS) protocol.
“Starting today, users can secure queries between their devices and Google Public DNS with DNS-over-TLS, preserving their privacy and integrity,” the company wrote in a blog post. “We implemented the DNS-over-TLS specification along with the RFC 7766 recommendations to minimize the overhead of using TLS. These include support for TLS 1.3 (for faster connections and improved security), TCP fast open, and pipelining of multiple queries and out-of-order responses over a single connection.”
DNS resolvers are the ones working restlessly in the background to convert domain names such as Techunzipped.com to their corresponding IP address the web browsers use to connect to that specific website’s web server.
According to Google’s announcement, DNS-over-TLS is available for Android 9 Pie users starting today.
Android 9 (Pie) device users can use DNS-over-TLS today. For configuration instructions for Android and other systems, please see the documentation. Advanced Linux users can use the stubby resolver from dnsprivacy.org to talk to Google’s DNS-over-TLS service.