so for instance, within an admin Powershell, here's how you'd add the Mozilla-Cloudflare DNS to Windows:
```pwsh
Add-DnsClientDohServerAddress -ServerAddress '2a06:98c1:52::4' -DohTemplate 'https://mozilla.cloudflare-dns.com/dns-query'; -AllowFallbackToUdp $False -AutoUpgrade $True
Add-DnsClientDohServerAddress -ServerAddress '2803:f800:53::4' -DohTemplate 'https://mozilla.cloudflare-dns.com/dns-query'; -AllowFallbackToUdp $False -AutoUpgrade $True
Add-DnsClientDohServerAddress -ServerAddress '162.159.61.4' -DohTemplate 'https://mozilla.cloudflare-dns.com/dns-query'; -AllowFallbackToUdp $False -AutoUpgrade $True
Add-DnsClientDohServerAddress -ServerAddress '172.64.41.4' -DohTemplate 'https://mozilla.cloudflare-dns.com/dns-query'; -AllowFallbackToUdp $False -AutoUpgrade $True
```
here's how you would apply it to all networks:
```pwsh
foreach ($i in (Get-NetIPInterface -AddressFamily IPv6).InterfaceIndex) { Set-DnsClientServerAddress -InterfaceIndex $i -ServerAddresses ('2a06:98c1:52::4', '2803:f800:53::4') }
foreach ($i in (Get-NetIPInterface -AddressFamily IPv4).InterfaceIndex) { Set-DnsClientServerAddress -InterfaceIndex $i -ServerAddresses ('162.159.61.4', '172.64.41.4') }
```
and here's how you would enforce it:
```pwsh
if (!(Test-Path -Path Registry::'HKLM\Software\Policies\Microsoft\Windows NT\DNSClient')) { New-Item –Path Registry::'HKLM\Software\Policies\Microsoft\Windows NT\' –Name DNSClient }
Set-ItemProperty -Path Registry::'HKLM\Software\Policies\Microsoft\Windows NT\DNSClient\' -Name DoHPolicy -Value 3 -Type DWord -Force
```
Xerz 💗
npub1s7…2ujeh
2026-02-02 11:16:05 UTC
in reply to nevent1q…77pq
Author Public Key
npub1s7d5rapesxy9lcktyytt25sfld2776x4v32hx6ylql0qnzv92ayqe2ujehSeen on
wss://relay.momostr.pinkPublished at
2026-02-02 11:16:05 UTCEvent JSON
{
"id": "671113a17f86034e4c24bd0246d58a6617d89a36cbaa0d7881ea7714f1e9f3f4",
"pubkey": "879b41f43981885fe2cb2116b55209fb55ef68d5645573689f07de0989855748",
"created_at": 1770030965,
"kind": 1,
"tags": [
[
"e",
"af1407d2c481dfa2d3e5523f71d3f2773eaf1add7a74591bf5c47b07630cfdb7",
"",
"reply",
"879b41f43981885fe2cb2116b55209fb55ef68d5645573689f07de0989855748"
],
[
"e",
"c406f92fdb13bde6033c070303770844752fd8e0a41b22c2ef7d3646471b0979",
"",
"root",
"879b41f43981885fe2cb2116b55209fb55ef68d5645573689f07de0989855748"
],
[
"p",
"879b41f43981885fe2cb2116b55209fb55ef68d5645573689f07de0989855748"
],
[
"proxy",
"https://fedi.xerz.one/objects/213f1ca5-c548-4fd0-9620-b4a53a43b556",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://fedi.xerz.one/objects/213f1ca5-c548-4fd0-9620-b4a53a43b556",
"pink.momostr"
],
[
"-"
]
],
"content": "so for instance, within an admin Powershell, here's how you'd add the Mozilla-Cloudflare DNS to Windows:\r\n\r\n```pwsh\r\nAdd-DnsClientDohServerAddress -ServerAddress '2a06:98c1:52::4' -DohTemplate 'https://mozilla.cloudflare-dns.com/dns-query' -AllowFallbackToUdp $False -AutoUpgrade $True\r\nAdd-DnsClientDohServerAddress -ServerAddress '2803:f800:53::4' -DohTemplate 'https://mozilla.cloudflare-dns.com/dns-query' -AllowFallbackToUdp $False -AutoUpgrade $True\r\nAdd-DnsClientDohServerAddress -ServerAddress '162.159.61.4' -DohTemplate 'https://mozilla.cloudflare-dns.com/dns-query' -AllowFallbackToUdp $False -AutoUpgrade $True\r\nAdd-DnsClientDohServerAddress -ServerAddress '172.64.41.4' -DohTemplate 'https://mozilla.cloudflare-dns.com/dns-query' -AllowFallbackToUdp $False -AutoUpgrade $True\r\n```\r\n\r\nhere's how you would apply it to all networks:\r\n\r\n```pwsh\r\nforeach ($i in (Get-NetIPInterface -AddressFamily IPv6).InterfaceIndex) { Set-DnsClientServerAddress -InterfaceIndex $i -ServerAddresses ('2a06:98c1:52::4', '2803:f800:53::4') }\r\nforeach ($i in (Get-NetIPInterface -AddressFamily IPv4).InterfaceIndex) { Set-DnsClientServerAddress -InterfaceIndex $i -ServerAddresses ('162.159.61.4', '172.64.41.4') }\r\n```\r\n\r\nand here's how you would enforce it:\r\n\r\n```pwsh\r\nif (!(Test-Path -Path Registry::'HKLM\\Software\\Policies\\Microsoft\\Windows NT\\DNSClient')) { New-Item –Path Registry::'HKLM\\Software\\Policies\\Microsoft\\Windows NT\\' –Name DNSClient }\r\nSet-ItemProperty -Path Registry::'HKLM\\Software\\Policies\\Microsoft\\Windows NT\\DNSClient\\' -Name DoHPolicy -Value 3 -Type DWord -Force\r\n```",
"sig": "6dda4521bc0aec22e1a69ea5e527b2f5184870add8432b1f09cb1f5848794ee5838ef0b555fe61a4019c14f83cfefd68a50d8b6d9357674572e769cbd60705f3"
}