Zero Trust DNS support is coming to the next Windows 11 version

Microsoft has revealed its interest in enhancing the security of the Windows OS family products by introducing a new feature in a future version of Windows. There is a private preview of Zero Trust DNS that is designed for businesses to only connect their computers to approved networks.

Zero Trust DNS Client Banner

In 2020, the company launched the Zero Trust Network Security Model Deployment Center for Business, which requires every network access request to be authenticated, authorized, and encrypted.

The private preview of Zero Trust DNS utilizes the Windows DNS client and the Windows Filtering Platform (WFP). Once enabled, Windows will block all outgoing IPv4 and IPv6 traffic except for connections to security DNS servers, as well as DHCP, DHCPv6, and NDP traffic necessary for discovering network connection information.

The aim of Zero Trust DNS is to allow administrators to block any network traffic in which the domain name cannot be identified. According to the company, Windows Insiders will soon be able to test it with upcoming builds.

The official announcement is here.

Support us

Winaero greatly relies on your support. You can help the site keep bringing you interesting and useful content and software by using these options:

If you like this article, please share it using the buttons below. It won't take a lot from you, but it will help us grow. Thanks for your support!


Author: Sergey Tkachenko

Sergey Tkachenko is a software developer who started Winaero back in 2011. On this blog, Sergey is writing about everything connected to Microsoft, Windows and popular software. Follow him on Telegram, Twitter, and YouTube.

Leave a Reply

Your email address will not be published.

Using Telegram? Subscribe to the blog channel!
Hello. Add your message here.