For Stubby to re-send outgoing DNS queries over TLS the recursive resolvers configured on your machine must be changed to send all the local queries to the loopback interface on which Stubby is listening. It
In most cases your system will use the 'default' DNS servers that are provided by DHCP and using the two Powershell comands will be all you need. If you want to double check what servers you use then follow the instructions below to inspect your system settings. If you have reason to think your system uses custom servers it might be useful to note your existing default nameservers before making this change so you can use the same instructions to reset them!
To change set you nameservers to use Stubby
- From Windows search box type 'cmd' and on the 'Command prompt' option that appears right click and select 'run as Administrator'
In the command prompt window that appears type
PowerShell -ExecutionPolicy bypass -
to switch the system DNS resolvers to use Stubby.
Use the same command but with "C:\Program Files\Stubby\stubby_resetdns_windows.ps1" instead to switch back to the default DNS nameservers.
If you encounter problems reverse this change to restore your default settings (no DNS Privacy) . by running
- We are aware of occasional issues when Windows sleeps and resumes when stubby must be restarted to work correctly.
- The '-h' output of stubby.exe shows the wrong path for the installed configuration file. An issue has been opened for this.
If you need to manually inspect or change your system revolvers on Windows through the GUI then do the following: