Ad-free. Private. Secure.

A hardened DNS resolver engineered for privacy and security.
Ad-blocking, malware protection, and zero-log operation by design.

Copied to clipboard!

https://dnsbunker.org/dns-query h3://dnsbunker.org/dns-query

dnsbunker.org

quic://dnsbunker.org

DoH Stamp: sdns://AgMAAAAAAAAADjE1Mi41My4yMDcuMTkxAA1kbnNidW5rZXIub3JnCi9kbnMtcXVlcnk

DoT Stamp: sdns://AwMAAAAAAAAADjE1Mi41My4yMDcuMTkxAA1kbnNidW5rZXIub3Jn

How to Use on Your Device

Android (9+): Go to Settings > Network & Internet > Private DNS
Set hostname to: dnsbunker.org

Uses DNS over TLS (DoT)

Windows: Use YogaDNS or native settings.
DoH: https://dnsbunker.org/dns-query

Supports DoH, DoH3, DoT, and DoQ

Linux: Use systemd-resolved, stubby or dnscrypt-proxy.
IP: 152.53.207.191

Supports DoH, DoT, and DoQ

iOS (14+) & macOS: Deploy mobile configuration securely:
Deploy Config Profile

Routers: Set upstream resolver:
DoT: dnsbunker.org
DoH: https://dnsbunker.org/dns-query

Why it matters: Exposes traffic to ISP or third parties even with encryption.

How to check:

DNSBunker IPs: 152.53.207.191 2a00:11c0:5f:362c::

Tip: If you see other IPs, your network might be leaking through fallbacks.

Only following Filters are in use:

Did you encounter breakage? Does something not work? Or did you find something which should be blocked?

Please report any issues to Hagezi's repository!

Click here to report

EDNS Client Subnet (ECS): Ignored

QNAME Minimization: Preferred

DNSSEC Validation: Enforced

Content Filtering: Blocks ads, trackers, malware

Update Frequency: Hourly

Block Response: Null (TTL 300s)

Google Pre-caching: NXDOMAIN

Apple Private Relay: NXDOMAIN

Mozilla DoH Canary: NXDOMAIN

No Logging: GDPR-compliant, zero data retained

Location: Nuremberg, Germany