This took a bit of trial and error so documenting in the hope this helps someone.
Since Android P it possible to use a Private DNS which means we can now use an ad blocking DNS server without needing to use a VPN or root our Android devices. The only 'issue' is that this requires DNS-over-TLS which seems quite nascent at the time (Aug 2018). Fortunately for us blahdns offers a DNS-over-TLS ad blocking DNS server.
To configure this:
Settings > Network & Internet > Advanced > Private DNS > Private DNS provider hostname: blah.de.blahdns.com
- (this step may or may not be needed)
Chrome seems to use its own DNS resolver rather than the system one, so head to
chrome://flags/#enable-async-dns
, disable the option, and restart Chrome. If you want you can also head tochrome://net-internals/#dns
and clickClear host cache
to flush whatever DNS entries were cached already.
correct domain name is: dot-de.blahdns.com