Skip to content
English - United States
Request Support My Tickets
Go to Dashboard
  • There are no suggestions because the search field is empty.

Configuring Windows DNS Server to use Lumiun DNS via DoH

This configuration will cause the Windows Server DNS Server to forward DNS requests to the Acrylic service, which in turn will forward the requests using the DNS-over-HTTPS protocol to the Lumiun DNS servers. This configuration is useful for a network with an internal domain managed by Active Directory (AD).

  1. Get the Acrylic software installer at the following link: Download Acrylic DNS Proxy

  2. Install Acrylic on Windows Server.

  3. Search for the Acrylic UI shortcut in the Windows Start menu and run it.

  4. In the Acrylic management interface, go to the File  → Open Acrylic Configuration menu.

  5. Remove all old content from the configuration and add only the following - Change abcd1234 to your site ID, and also change dns_server_1 to your site's respective DNS server. All of this information can be found on the sites page.

    [GlobalSection]

    PrimaryServerDoHProtocolPath=abcd1234

    PrimaryServerAddress=dns_server_1
    PrimaryServerPort=443
    PrimaryServerProtocol=DOH
    PrimaryServerDoHProtocolHost=doh.ldns.io
    PrimaryServerDoHProtocolConnectionType=System
    PrimaryServerDoHProtocolReuseConnections=Yes
    PrimaryServerDoHProtocolUseWinHttp=Yes
    SinkholeIPv6Lookups=No
    ForwardPrivateReverseLookups=No
    AddressCacheFailureTime=1
    AddressCacheNegativeTime=10
    AddressCacheScavengingTime=5
    AddressCacheSilentUpdateTime=4
    AddressCachePeriodicPruningTime=180
    AddressCacheInMemoryOnly=Yes
    AddressCacheDisabled=No
    LocalIPv4BindingAddress=127.0.0.2

    [AllowedAddressesSection]
    IP1=127.*

  6. Save the new configuration via the FileSave menu or by pressing Ctrl+s.

  7. Restart the Acrylic service via the ActionsRestart Acrylic Service menu.

  8. Close the Acrylic management window.

Configure Windows DNS Server Forwarders

  1. Search for the DNS shortcut in the Windows Start menu and run it.
  2. In DNS management, click on the server name and then access Forwarders.
    1. In the Forwarders window, click Edit.

      • Remove all existing forwarders and add only one: 127.0.0.2

      • Change the timeout to 5

      • Click OK, then OK again

    That's it! You can now view reports on your Lumiun DNS dashboard and also define policy rules.