Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/ruchernchong/cloudflare-mobile-config
iOS/iPadOS & macOS Encrypted DNS Profile
https://github.com/ruchernchong/cloudflare-mobile-config
cloudflare cloudflare-dns dns dns-over-https dot encrypted-dns ios ipados macos tls
Last synced: about 10 hours ago
JSON representation
iOS/iPadOS & macOS Encrypted DNS Profile
- Host: GitHub
- URL: https://github.com/ruchernchong/cloudflare-mobile-config
- Owner: ruchernchong
- Created: 2020-09-17T10:41:44.000Z (over 4 years ago)
- Default Branch: main
- Last Pushed: 2023-03-23T16:12:56.000Z (almost 2 years ago)
- Last Synced: 2025-01-18T02:40:39.694Z (3 days ago)
- Topics: cloudflare, cloudflare-dns, dns, dns-over-https, dot, encrypted-dns, ios, ipados, macos, tls
- Homepage:
- Size: 852 KB
- Stars: 3
- Watchers: 3
- Forks: 2
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# iOS/iPadOS & macOS Encrypted DNS Profile
## Update (18 Feb 2021)
[AdGuard for iOS](https://apps.apple.com/app/apple-store/id1047223162) has been updated with native DNS support. You are recommended to install the AdGuard update and use the feature.
As such, this project will go into read-only mode with immediate effect and the configuration is still available for download for macOS usage.
## Disclaimer
**BY AGREEING TO USE THE FOLLOWING CONFIGURATION, YOU ARE AWARE OF THE RISKS, DANGERS, AND THAT THIS SETTING SHALL NOT BEAR RESPONSIBILITY FOR ANY DAMAGES DONE TO YOUR DEVICES.**
## Background
[Apple adds support for encrypted DNS (DoH and DoT)](https://www.zdnet.com/article/apple-adds-support-for-encrypted-dns-doh-and-dot/)
More info: https://developer.apple.com/videos/play/wwdc2020/10047/
The two main or most popular encrypted DNS protocols are:
1. [DoH (DNS-over-HTTPS)](https://en.wikipedia.org/wiki/DNS_over_HTTPS)
2. [DoT (DNS-over-TLS)](https://en.wikipedia.org/wiki/DNS_over_TLS)## Motivation
Currently, for iOS users, a VPN profile is needed to run such encrypted DNS over the mobile network (3G/4G/LTE/5G). With the support from Apple using the profiles, it is now possible to run them natively without any VPN profile.
## Requirements
1. iOS 14 and later
2. iPadOS 14 and later
3. macOS Big Sur and later## Usage
Download the mobile config profile using the Safari browser on the respective platforms and install the profiles. **Do note that the profile is unsigned and the settings page will display it as a warning.**
## Outcome
After the profile has been installed, you may verify if the encrypted DNS is working at [https://1.1.1.1/help](https://1.1.1.1/help).
You should expect the following:
#### Debug Information
| | |
| ------------------------ | ---------- |
| Connected to 1.1.1.1 | Yes |
| Using DNS over TLS (DoT) | Yes |
| AS Name | Cloudflare |#### Connectivity to Resolver IP Addresses
| | |
| ------- | --- |
| 1.1.1.1 | Yes |
| 1.0.0.1 | Yes |![](<./Cloudflare%20DoT%20(Desktop).png>)
![](<./Cloudflare%20DoT%20(Mobile).jpeg>)## Known issues
As of iOS 14.2 RC, the DNS over TLS is breaking Safari in-app browser. Should you face with pages not loading properly in any of the in-app browsers, the temporary workaround is to remove the profile.
## Credits
- [Reddit - How To Set Up Cloudflare DNS over TLS (Secure DNS)](https://www.reddit.com/r/MacOSBeta/comments/i21e59/how_to_set_up_cloudflare_dns_over_tls_secure_dns/)