HostuxDNS

Firefox has native support for DNS over HTTPS. Once configured, all DNS queries made by Firefox are sent encrypted to the resolver you specify. Other applications on the same system are not affected.

Configuration takes about two minutes. No extension or add-on is needed.

1. Open Firefox and go to Settings (hamburger menu > Settings, or type about:preferences in the address bar).
2. Scroll down to the Privacy & Security section.
3. Scroll to DNS over HTTPS.
4. Select Max Protection (recommended) or Increased Protection.
5. Under Choose provider, select Custom.
6. Enter one of the following:
   • Standard: https://dns.hostux.net/dns-query
   • With ad and tracker blocking: https://dns.hostux.net/ads
7. Close settings. The change takes effect immediately.

Mozilla documentation on DNS over HTTPS

Max Protection

Firefox only uses the DoH resolver you configured. If it is unreachable, DNS fails rather than falling back to the system resolver. This is the most private option.

Increased Protection

Firefox uses the DoH resolver by default but falls back to the system resolver if DoH fails. Less strict, but more resilient on unreliable networks.

Off

Firefox uses the system DNS resolver, which is unencrypted by default.

For scripted or policy-based deployment, you can set these preferences directly in about:config: