Configure Ubiquiti to use 1.1.1.1 as DNS server

Subscribe to my newsletter and never miss my upcoming articles

Recently, Cloudflare launched the privacy conscious (and very fast) DNS service 1.1.1.1. I want to use it to resolve all my DNS needs. Setting this up via my Ubiquiti network was super easy.

All I had to do was go to my CloudKey controller that's registered in Unifi cloud portal. Once logged in, I went to Settings (icon in the lower left part of the screen), navigate to the Networks tab. Select the LAN to upgrade to the 1.1.1.1 DNS service. There is a setting named DHCP Name Server that is set to Auto. Set it to Manual and enter the two DNS server addresses: 1.1.1.1 and 1.0.0.1.

1-main-screen.jpg

2-network-tab.jpg

3-dhcp-settings.jpg

All that stands between me and the awesome 1.1.1.1 DNS service is a simple reboot of all network devices. Enjoy the new DNS service, although in practice you won't notice all that much. Except improved privacy of course.

Update: Not all traffic is safe yet, because at this moment Unifi products don't use DNS-over-HTTPS (DoH). There is a feature request going to get the Unifi Security Gateway to communicate with DNS servers over DoH if it's supported by the DNS Resolver. 1.1.1.1 does support DoH, but Unifi lacks support at this moment. If you want to use DoH, the "easiest" way is to host your own DNS Server and configure that to talk to 1.1.1.1 over DoH. You can find a guide on Scott Helme's blog.

Comments (3)

Chris's photo

MI would rather configure the DNS at the WAN side of the USG. This way all LAN networks use the Unifi DNS settings.

Ken Bonny's photo

I'm not the best with networks, could you give me an idea how I would do this?

Chris's photo

Ken Bonny

Instead of going viat he Networks menu, change the setting in the Internet menu. Select Advanced settings and go to DNS server.