dnscrypt-proxy is a flexible DNS proxy. It runs on your computer or router, and can locally block unwanted content, reveal where your devices are silently sending data to, make applications feel faster by caching DNS responses, and improve security and confidentiality by communicating to upstream DNS servers over secure channels.
example-dnscrypt-proxy.tomlconfiguration file adjusted to your needs as
dnscrypt-proxyapplication. Change your DNS settings to the configured IP address and check that everything works as expected. A DNS query for
resolver.dnscrypt.infoshould return one of the chosen DNS servers instead of your ISP’s resolver.
With administrator privileges, type
dnscrypt-proxy -service install to register dnscrypt-proxy as a system service, and
dnscrypt-proxy -service start to start it. On Windows, this is not even required: you can just double-click on
server-install.bat to install the service. Done. It will automatically start at boot.
This setup procedure is compatible with Windows, Linux (systemd, Upstart, SysV), and macOS (launchd).
Other commands include
restart (useful after a configuration change) and
The following command adds the required attributes to the dnscrypt-proxy file so that it can run as a non-root user:
sudo setcap cap_net_bind_service=+pe dnscrypt-proxy