EcoVPN Help Centre
Private DNS Routing

Private DNS Routing

EcoVPN routes name resolution traffic through encrypted tunnels using DNS-over-TLS or DNS-over-HTTPS protocols. This ensures all DNS queries remain private, tamper-resistant, and jurisdictionally scoped.

Available Resolver Options

  • EcoVPN Node Resolver: Private DNS endpoint tied to your tunnel jurisdiction
  • Third-Party DNS: Sponsor-approved options such as Quad9, Cloudflare, or encrypted custom resolver
  • Self-Hosted DNS: Tier 3 deployment - host your own resolver inside EcoVPN infrastructure

DNS Protocols Supported

  • DoT (DNS-over-TLS): TLS 1.3 handshake, endpoint validation, encrypted port 853
  • DoH (DNS-over-HTTPS): Encrypted HTTP/2 tunneling with endpoint trust alignment
  • Legacy DNS Blocking: Hostile endpoint suppression via tunnel filtering rules

Configuring DNS Settings

  • Edit your `.conf` file to reflect desired resolver IP or DoH URI
  • Ensure domain resolution occurs inside the tunnel - avoid local system leaks
  • Use sponsor-provided resolver list for enhanced privacy scoring

Best Practices

  • Use only encrypted resolvers - never public UDP DNS
  • Verify resolver behaviour using tools like dig, drill, or dnsleaktest.com
  • Request Tier 2 or 3 deployment if your resolver needs custom filtering logic

“Private DNS keeps your browsing private and secure, every website request stays inside the tunnel.”

Didn't find an answer?

Our team is just a ticket away and ready to answer your questions

Create A Support Ticket