DNS Leak Test
Checks if your VPN is leaking DNS queries to your ISP — even when your traffic appears encrypted.
🔒
What is a DNS leak?
When your DNS queries bypass your VPN tunnel and go to your ISP's DNS servers, revealing every site you visit.
🌐
Why it matters
Even with a VPN your ISP can log your browsing if DNS leaks. Fix it by using your VPN's DNS servers.
🛡️
How to fix it
Use a VPN with built-in DNS leak protection, or set your DNS to 1.1.1.1 (Cloudflare) or 9.9.9.9 (Quad9).
Frequently Asked Questions
What is a DNS leak?
A DNS leak occurs when your device sends DNS queries (website lookup requests) outside the VPN tunnel, directly to your ISP's DNS server. Your ISP can then see every domain you visit even though your traffic is encrypted by the VPN.
How does this test work?
Our test queries several public DNS lookup services from your browser and checks which DNS resolver your queries are routed through. If the resolver belongs to your ISP rather than your VPN provider, you have a DNS leak.
What DNS should I use to prevent leaks?
Use your VPN's built-in DNS servers (the VPN app configures this automatically when working correctly). Alternatives: Cloudflare 1.1.1.1, Google 8.8.8.8, or Quad9 9.9.9.9 — all support DNS over HTTPS which prevents interception.