dnscrypt.one | DNSCrypt resolver and relay in Germany

Non-logging, non-censoring, DNSSEC-capable DNSCrypt resolver and relay in Germany

View the Project on GitHub

What is DNSCrypt

Most applications on your computer, mobile devices and connected gadgets heavily use DNS, a mandatory protocol to communicate over the Internet.
Unfortunately, the security of that important protocol could be vastly improved. Encryption is nonexistent, and authentication mechanisms exist, but are criticized and haven’t received much adoption.

DNSCrypt is a protocol that encrypts, authenticates and optionally anonymizes communications between a DNS client and a DNS resolver. It prevents DNS spoofing, uses cryptographic signatures to verify that responses originate from the chosen DNS resolver and haven’t been tampered with.
It is an open specification, with free and open source reference implementations, and it is not affiliated with any company nor organization.

Features of dnscrypt.one
How to connect

Connecting to dnscrypt.one requires a DNSCrypt client to be installed on a computer, device or router.

Names, IP address and status

Server name: dnscrypt.one
Provider name: 2.dnscrypt-cert.dnscrypt.one

Anonymized DNS relay: anon-dnscrypt.one

Protocol, port: UDP and TCP, 443

Status and uptime

Test sites

E-Mail: op2erator@dnscrypt.one (remove the number)

1 The operator would like to make it clear that there is no interest whatsoever in the surfing behaviour and online activities of users. The resolver/relay neither collects any personal data nor gathers information a device sends to or an user enters on websites.