Change Your Routerβs DNS β Faster, Private, and Free Forever
Change Your Routerβs DNS β Faster, Private, and Free ForeverYour ISP reads every website you visit. A 2-minute router change fixes that for every device in your home.
Every DNS request you make goes to your ISP by default β they see every domain you visit, every time, and can log, sell, or throttle it.
DNS is the internetβs phone book β it turns βgoogle.comβ into an IP address your device can connect to. Your ISP controls which phone book you use by default. Changing your routerβs DNS takes 2 minutes and instantly applies to every phone, laptop, TV, and smart device on your network. No apps. No subscriptions. No accounts.
π What Is DNS and Why Does It Matter?
Every time you type a website address, your device asks a DNS server: βWhatβs the IP for this domain?β Your ISP answers that question by default β and logs the answer.
| What Your ISP Sees | What It Means |
|---|---|
| Every domain you visit | Full browsing history β not just URLs, but every site every device touches |
| Timestamps | Exactly when you visit what |
| All devices on your network | Every phone, TV, gaming console, smart home device |
| Sellable data | Many ISPs sell anonymized DNS logs to advertisers |
Changing DNS doesnβt hide your IP address β for that you need a VPN. But it stops your ISP from seeing your domain requests, speeds up browsing, and can block malware before it even loads.
β‘ The DNS Servers β Complete List With Addresses
Cloudflare β Fastest + Privacy Focused
| IPv4 | IPv6 | |
|---|---|---|
| Primary | 1.1.1.1 |
2606:4700:4700::1111 |
| Secondary | 1.0.0.1 |
2606:4700:4700::1001 |
| Malware blocking | 1.1.1.2 / 1.0.0.2 |
β |
| Family (adult filter) | 1.1.1.3 / 1.0.0.3 |
β |
Fastest DNS globally β 4.98ms average. No query logging. Annual KPMG audit to verify privacy claims. Free.
Google Public DNS β Most Reliable Uptime
| IPv4 | IPv6 | |
|---|---|---|
| Primary | 8.8.8.8 |
2001:4860:4860::8888 |
| Secondary | 8.8.4.4 |
2001:4860:4860::8844 |
Extremely stable. 100% uptime track record. Fast globally. Google does log queries for security analysis β tradeoff to be aware of.
Quad9 β Best for Security + Privacy
| IPv4 | IPv6 | |
|---|---|---|
| Primary | 9.9.9.9 |
2620:fe::fe |
| Secondary | 149.112.112.112 |
2620:fe::9 |
| Unfiltered (no blocking) | 9.9.9.10 |
2620:fe::10 |
Swiss non-profit. Blocks malicious domains using threat intelligence from 20+ cybersecurity companies. Strict no-logging policy. Operates under Swiss privacy law. 20β25ms average globally.
Surfshark DNS β Privacy First, No Logs
| IPv4 | IPv6 | |
|---|---|---|
| Primary | 194.169.169.169 |
2a09:a707:169:: |
Free for everyone β no Surfshark subscription needed. Never logs or tracks queries. Supports UDP, TCP, TLS, HTTPS, QUIC protocols. Good for privacy-focused setups.
OpenDNS β Best Parental Controls + Filtering
| IPv4 | |
|---|---|
| Primary | 208.67.222.222 |
| Secondary | 208.67.220.220 |
| FamilyShield (auto adult block) | 208.67.222.123 / 208.67.220.123 |
Owned by Cisco. Resolves 620 billion queries/day. 100% uptime since 2006. Free tier includes anti-phishing and configurable content filtering. Dashboard to customize block categories.
AdGuard DNS β Built-In Ad Blocking
| IPv4 | IPv6 | |
|---|---|---|
| Default (ad + tracker blocking) | 94.140.14.14 |
2a10:50c0::ad1:ff |
| Secondary | 94.140.15.15 |
2a10:50c0::ad2:ff |
| Family (adult + malware + ads) | 94.140.14.15 |
2a10:50c0::bad1:ff |
| Unfiltered | 94.140.14.140 |
2a10:50c0::1:ff |
Blocks ads and trackers at DNS level β for every device on your network without installing anything. Free. Supports DoH, DoT, DoQ, DNSCrypt.
NextDNS β Most Customizable (Power Users)
| IPv4 | |
|---|---|
| Primary | 45.90.28.0 |
| Secondary | 45.90.30.0 |
300,000 free queries/month then $1.99/month unlimited. Per-device settings, custom blocklists, analytics dashboard β basically Pi-hole in the cloud without self-hosting. Best for families and power users who want full control.
CleanBrowsing β Best for Families
| Filter | Primary | Secondary |
|---|---|---|
| Family (adult + proxy + mixed) | 185.228.168.168 |
185.228.169.168 |
| Adult (adult content only) | 185.228.168.10 |
185.228.169.11 |
| Security (malware only) | 185.228.168.9 |
185.228.169.9 |
Free. Enforces Google/YouTube/Bing SafeSearch automatically. Blocks adult content, proxies, and VPN bypass attempts. Best set-and-forget family filter.
π Which DNS Should YOU Use?
| Your Priority | Best Pick | Why |
|---|---|---|
 Raw speed |
Cloudflare 1.1.1.1 | Fastest globally β 4.98ms average, wins 72% of locations tested |
| Maximum privacy |
Quad9 | Swiss non-profit, Swiss law, strict no-log, malware blocking included |
| Malware + phishing blocking |
Quad9 or Cloudflare 1.1.1.2 | Blocks known bad domains before your browser loads them |
 Block ads for whole house |
AdGuard DNS | Ad/tracker blocking at DNS level β no app installs on any device |
 Family / kids network |
CleanBrowsing Family or OpenDNS FamilyShield | Adult content blocked, SafeSearch enforced, no config needed |
 Full control + analytics |
NextDNS | Per-device rules, logs, custom lists β Pi-hole without the hardware |
 Simple privacy upgrade |
Surfshark DNS | Free, no account, no logs, set and forget |
| Most trusted/stable |
Google 8.8.8.8 | 100% uptime since forever β if everything else fails, this works |
π§ How to Set DNS on Your Router β Step by Step
Setting it on your router means every device in your home (phones, TVs, laptops, consoles, smart home devices) gets the new DNS automatically. You only do this once.
Step 1 β Open Your Router Settings
Open a browser and go to your routerβs admin panel. Common addresses:
192.168.1.1
192.168.0.1
192.168.1.254
10.0.0.1
Not sure? On Windows: open Command Prompt β type ipconfig β look for Default Gateway. Thatβs your routerβs IP.
Step 2 β Log In
Username and password are usually printed on the bottom of your router. Common defaults: admin / admin or admin / password. Check your routerβs label first.
Step 3 β Find DNS Settings
Look under one of these menu sections depending on your router brand:
Internet β DNS
WAN Settings β DNS
Advanced β DNS
Network β WAN β DNS Server
Step 4 β Enter Your DNS Addresses
Replace whatever is there with your chosen DNS. Example using Cloudflare:
Primary DNS: 1.1.1.1
Secondary DNS: 1.0.0.1
Step 5 β Save and Reboot
Click Save. Reboot your router if prompted. Done β every device on your network now uses the new DNS.
π§ How to Set DNS Per Device (Without Router Access)
If you donβt control the router (rental, office, shared network), set DNS per device instead.
Windows 10/11
Control Panel β Network & Internet β Network and Sharing Center β Change adapter settings β Right-click connection β Properties β Internet Protocol Version 4 (TCP/IPv4) β Properties β Use the following DNS server addresses
macOS
Apple Menu β System Settings β Network β Select connection β Details β DNS tab β Click + β Add addresses
Android
Settings β Network & Internet β Private DNS β Enter hostname (for DoT):
Cloudflare: one.one.one.one
Quad9: dns.quad9.net
AdGuard: dns.adguard.com
NextDNS: your-id.dns.nextdns.io
iOS
Settings β Wi-Fi β Tap (i) next to network β Configure DNS β Manual β Add Server
β οΈ Why Your ISP's Default DNS Is a Problem
| ISP DNS Problem | Why Itβs a Problem |
|---|---|
| Full browsing log | Every domain every device visits β logged with timestamps |
| Sold to advertisers | ISPs in many countries legally sell anonymized DNS data |
| Slower than alternatives | ISP DNS servers are rarely optimized β Cloudflare is 3β10x faster |
| No malware blocking | ISP DNS resolves every domain including malicious ones |
| DNS hijacking | Some ISPs redirect failed lookups to ad-filled search pages |
| No encryption by default | Plain DNS (Do53) is unencrypted β anyone on the network can see it |
Changing to a public DNS provider costs nothing and takes 2 minutes. Your ISP still sees your IP connections β but not which domains youβre resolving.
Quick Hits
| Want | Do |
|---|---|
| Fastest DNS, no questions |
β 1.1.1.1 / 1.0.0.1 β Cloudflare, set it and forget it |
| Best privacy + malware blocking |
β 9.9.9.9 / 149.112.112.112 β Quad9, Swiss non-profit |
| Block ads on every device |
β 94.140.14.14 / 94.140.15.15 β AdGuard DNS |
| Family-safe network |
β 185.228.168.168 / 185.228.169.168 β CleanBrowsing Family |
| Full control + logs + per-device |
β NextDNS β free up to 300k queries/month |
 Test what DNS youβre using now |
β dnsleaktest.com β run Standard Test |
Your ISPβs DNS knows every site you visit. A 2-minute router change means they donβt.
!