DNSFilter
Roadmap
Feedback
Changelog

Changelog

Follow up on the latest improvements and updates.

RSS

improved

fixed

Windows Roaming Client

RC Release Channels

7/16 July 16 - Windows Roaming Client v2.2.0 Beta

A new version of the Windows Roaming Client, v2.2.0 Beta, is now available via the Beta channel. This release supersedes the v2.1.0 Beta, incorporating feedback from beta users and adding key improvements to ensure better compatibility and reliability across various environments.
This version can be downloaded from the dashboard
Deployments → Roaming Clients → Install Guide
, or by selecting the
Install Guide
from the Control Center in the
Roaming Client Management
dashboard.
For more details on Release Channels and the current versions available for both Beta and Production channels, check out our help docs.
🔁 Recap of v2.1.0 Beta
  • 🧰 Support for ARM64-based Windows devices
  • 🌐 IPv6 compatibility, enabled by default
  • 🛡️ Introduction of the Service Manager for auto-healing and service monitoring
  • 🧹 Built-in cleanup of outdated registry settings
  • 🪲 Stability improvements during DNSFilter API downtime
👉 View the full v2.1.0 Beta changelog
----------------------------------------------
✨What's New in v2.2.0 Beta
💽 Smarter .NET 8 Dependency Handling
  • The installer now detects and installs missing .NET 8 dependencies automatically, reducing manual setup steps and avoiding install-time errors.
🛠️Improvements
🧩 Better Compatibility with Windows Defender
  • Updated the installer to better align with Windows security settings, reducing the chance of being flagged in environments with stricter protection enabled.
🪲 Bug Fixes
🌐 Local Domain Resolution
  • Fixed an issue where the client failed to fall back to a secondary DNS suffix for local domain lookups.
🤓 Dad Joke
What did the tectonic plate say after bumping into another? Sorry, my fault! ⛰️

new

improved

fixed

iOS Roaming Client

RC Release Channels

7/16 July 16 - iOS Roaming Client v1.4.3

A new version of the iOS Roaming Client is now available in the App Store and will begin rolling out to devices via auto-update today.
This release includes several improvements to reliability, registration behavior, and compatibility with modern iOS environments.
What's New
🏷️
Tag-Based RC Management
iOS devices can now include pre-set tags in their configuration profiles, allowing better grouping and management from the DNSFilter Dashboard.
See iOS Roaming Client Deployment Guide
📦
Built with iOS 18 SDK
The app has been rebuilt with the iOS 18 SDK (Xcode 16+), aligning with Apple’s upcoming April 2025 requirement for App Store submissions.
🛠️
Improvements
🔍
Improved Local Domain Handling
Updated how the client handles local network zones like pc-printer-discovery-1, resolving issues where AirPrinters and similar devices were not discoverable. This was due to limitations in handling certain UDP-based DNS responses, which are now properly managed.
🌐
Reduced DNS Latency on iPads
Optimized memory usage to prevent background extension terminations that were impacting DNS resolution for some platforms.
🪲
Bug Fixes
  • Fixed an issue where extra spaces in the site key could cause devices to show as uninstalled or create new registrations unexpectedly
  • Fixed registration instability triggered by iOS updates, preventing duplicate entries in the Dashboard
  • Fixed an issue causing validation failures for certain allowlist domains when the client was active

new

improved

Web App

API

2025-07-08 - Application and API Update

✨ New Features & Improvements ✨
Updated Sites Functionality
We've given the Sites section in your DNSFilter dashboard a complete makeover! This update brings a fresh look that's easier on the eyes and introduces powerful new features:
Sleek New Design: The Sites section now boasts a modern, streamlined look that matches the rest of your dashboard experience.
Enhanced Organization for Multi-Tenant Accounts: If your are an MSP or Multi-tenant user , you'll appreciate our new global site management capabilities, making it easier to oversee and manage you sites across all your organizations. You now have the ability to manage and search through all sites across all your organizations from a single page, enabling you to manage your vast word
Improved Search: Quickly find if a specific IP is in use across all your sites. If it is, easily determine what site it is currently associated with
Optimized Workflows: Adding, editing, and tracking your sites is now more efficient, especially for organizations with many sites and IP addresses, ensuring smooth performance.

new

improved

fixed

Chrome Extension

RC Release Channels

Beta

7/2 July 2 - ChromeOS Extension v3.1.0 Beta

We’ve rolled out a brand-new Chrome extension built on Manifest V3, packed with improvements for ChromeOS users.
⚠️
Beta Access: Important!
⚠️
This update is currently available as a Beta Release and
requires support enablement
.
To get started:
  1. Contact DNSFilter Support to enable beta access on your account
  2. Follow the provided custom installation link and setup instructions provided by Support
💬 We’re actively gathering feedback—so if you’re testing the beta, let us know what you think!
What’s New
🔐
Modernized Extension with DoH Support
Built on Google’s Manifest V3 standard, this update brings:
  • Encrypted DNS-over-HTTPS (DoH) for more secure browsing
  • Streamlined UI with clearer status indicators
  • Improved device identification in the dashboard
  • More detailed debug logs for support and troubleshooting
🛠️
Improvements
🎨
User Interface Enhancements
  • Light/Dark Mode that matches your Chrome theme
  • Refreshed icons and ChromeOS branding
  • New “Additional Details” section with advanced diagnostics
🏢
Simplified Admin Deployment
  • DoH Template Builder available in the DNSFilter dashboard for easy Google Workspace integration
  • The new version is now available through a Custom URL link for beta testing and feedback
🐞
Bug Fixes
  • Fixed: Client IDs were mismatching during deployment
  • Fixed: Blocked domains sometimes didn’t display properly until reboot
  • Fixed: Users on shared devices can now switch networks seamlessly

improved

new

Relay

6/25 June 25 - Relay v1.3.0

A new version of the
DNSFilter Relay
is now available! You can download updated binaries from the DNSFilter Dashboard (
Deployments → Relay → Install
) or refer to our Help Docs.
Docker images will begin auto-updating to v1.3.0 in the coming weeks.
Note: Older Ubuntu distributions may require manual update
instructions here
.
What's New
🔧
Custom DNS Support for Registration
The Relay can now use custom DNS servers when registering or validating with the remote API. This makes deployments more reliable in restricted or non-standard DNS environments.
🛠️
Improvements
💾
Improved File Handling Reliability
New failover mechanisms have been added to ensure file saving remains reliable across unexpected interruptions or edge cases.
🛡️
Security & Package Updates
Core packages have been updated and security improvements implemented, addressing vulnerabilities identified through Docker Hub scans and dependency audits.

fixed

improved

Active Directory Sync Tool

6/23 June 23 Active Directory Sync Tool v3.7.1

A new version of the Active Directory Sync Tool is now available from the DNSFilter dashboard. This update is recommended for users syncing large on-premises Active Directory environments.
What's New
🌳 Improved OU Tree Sync for Large Environments
The AD Sync Tool now batches large OU trees into smaller subtrees during sync, solving issues where partial trees appeared due to API timeouts. This ensures the full organizational hierarchy is captured, even in complex AD setups.
📄 Full OU Visibility in Configurator
The configurator previously displayed only the first 1000 Organizational Units due to a paging limit. Pagination is now implemented correctly, allowing all OUs to be browsed and selected as expected.

improved

Windows Roaming Client

RC Release Channels

Beta

5/29 May 29 - Windows Roaming Client v2.1.0 Beta

A new version of the Windows Roaming Client, v2.1.0 Beta, is now available via the Beta channel. This version can be downloaded from the dashboard
Deployments → Roaming Clients → Install Guide
, or by selecting the
Install Guide
from the
Control Center
in the
Roaming Client Management
dashboard.
For more details on Release Channels and the current versions available for both Beta and Production channels, check out our help docs.
What's New in Windows Roaming Client v2.1.0
🧰 ARM64 Architecture Support
You've asked for it, you've got it! With version 2.1.0 Beta, we now have a separate build to support devices that run ARM64-based architecture. This tandem approach ensures that protection can extend to devices outside of the x64 Windows architecture.
🌐 IPv6 Support
We’ve added full
IPv6 support
to the Windows Roaming Client. This means better compatibility and future-proofing as internet providers and networks increasingly rely on IPv6. DNS queries from IPv6-enabled devices will now route properly through DNSFilter, just like IPv4.
Where previous versions had provision for enabling IPv6 through a registry modification, this version tries IPv6 by default first.
🛡️ Improved Stability & Self-Healing with the Service Manager
This release introduces a new
Service Manager
that monitors and protects the Roaming Client in real time. Here’s what it does for you:
  • Monitors health automatically:
    It checks in every 5 minutes to make sure the Roaming Client is running as expected.
  • Restarts services if needed:
    If something goes wrong (like a service unexpectedly stops), Service Manager will try to restart it immediately—no action needed from you.
  • Self-repairs and verifies installations:
    It helps ensure upgrades and installations are smooth and that everything’s configured properly.
  • Runs as a Windows service:
    Seamless operation in the background with better support for enterprise environments.
  • Now included in the installer:
    Service Manager is packaged with the standard installer, making setup easier.
You can think of this as a built-in safety net—if the client goes down, it’ll get itself back up again.
🧹 Smarter Startup with Built-in Cleanup
We’ve added a feature to clean up leftover or outdated registry settings automatically when the Roaming Client starts. This helps avoid issues caused by old configurations and keeps the app running clean.
🪲 Bug Fixes
Better Handling of API Errors
If there's a temporary issue with the DNSFilter API, the Roaming Client will now retry instead of shutting down. This ensures more consistent service.
Startup Reliability During API Downtime
The client now starts and registers correctly even if there’s a temporary issue reaching DNSFilter’s servers.

new

improved

Mac Roaming Client

RC Release Channels

5/28 May 28 - MacOS Roaming Client v2.2.0 Production

A new version of the MacOS Roaming Client is now available via the Production channel.
This version can be downloaded from the dashboard
Deployments → Roaming Clients → Install Guide → MacOS.
Auto-update will push out the new release to RCs in the Production Release Channel incrementally over the next week or two. Please refer to our release status page for the latest available versions in both Beta and Production channels.
⚠️ Important Note:
Existing customers running older MacOS Roaming Client versions should have received an email to advise on prerequisite mobileConfig installation via MDM to avoid spurious dialog box appearances on endpoints.
More information >>
New / Enhanced Features
🛠️ System Extension / DNS Proxy
The new 2.x codebase now leverages a system extension and DNS proxy on the endpoint. This enhances security and performance. As noted above, installation of two mobileConfig profiles on the endpoint is a strongly suggested prerequisite as failing to do so will result in the end user receiving two dialog boxes asking for permission to run the extension and proxy.
🔁 Improved Connection Handling After TLS Errors
We fixed an issue where the macOS client wouldn’t retry regular (non-TLS) connections after a secure (TLS) connection failed. This could lead to delays or missed DNS requests. The client now handles retries more reliably to maintain smooth operation.
⚙️ Reliable Configuration Updates
The macOS extension now correctly re-reads its configuration file and applies fallback settings if some values are missing. This ensures the extension behaves consistently during startup and while running.
🧹 Uninstall Script Improvements
We updated the macOS uninstall script to better handle data privacy settings. It now properly reads and filters the necessary configuration details, making the uninstall process cleaner and more accurate.

improved

fixed

Web App

API

5/27 May 27 - App / API Cumulative Product Update

We've been hard at work making a lot of under the hood improvements to the DNSFilter dashboard and underlying REST API. Since our last update, the following items of note have been completed:
✨ What's New
New Alert for Large Cleanup Jobs
When starting large Roaming Client (RC) cleanup tasks, users will now see a message letting them know it may take time. These jobs run in the background and won’t disrupt other activity.
New “Content Server” Category Option
The Domain Report interface now includes a new “Content Server” choice under “Proposed Category,” offering more precise domain categorization.
Query Log Export Changes
Exporting query logs is now more reliable. A new 50,000-line limit has been added, with helpful tooltips explaining how to work with larger datasets. We recommend use of our Data Export functionality to automatically export query logs to your SIEM or S3 bucket of choice.
API Key Management
We’ve streamlined API key management by limiting the number of keys shown to five and removing unnecessary paging.
More Accurate RC Cleanup Status
RC cleanup no longer leaves “All” or “Protected” status counts out of date—they’ll now reflect accurately.
Faster Profile Update Visibility
Changes to your user profile will now show up immediately—no need to refresh or navigate away.
Updated Uninstall Notifications
Suborg-level uninstall alerts now show “Include Organization Admins” for better clarity. Previous text has been cleaned up.
🪲 Notable Bug Fixes
Billing Page Performance Boost:
Cleaned up unnecessary calls to speed up billing page loads.
User Downgrade Fix:
Permissions now apply correctly when downgrading from super admin to admin.
MSP Suborg Restrictions
: You can no longer add sub-orgs to canceled MSP accounts.
Fixed Chrome RC Sidebar Bug:
Suborg menus now display correctly after being promoted to an MSP.
Pagination Improvements:
Filter changes now return you to the first page, and page counts are shown clearly in the RC Management and Query Logs.
Fixed Category Filter Overflow:
Multiple category filters no longer cause issues with the grid layout.
🔒 Privacy & Security Enhancements
**Query Log Privacy Reinforced:88 When PII Limitation is enabled, you can no longer drill into RC-specific query logs.
Multi-Factor Auth Recovery Code Improvements:
Users can no longer skip the final step of saving new recovery codes.
🧰 Behind-the-Scenes Improvements
These changes help keep everything running smoothly:
  • Enhanced rate limiting for certain APIs
  • Updated license card designs and compliance indicators
  • Backend code cleanup and security patches
  • New APIs and endpoints for license and org management
  • More robust error handling for exports, MFA, and user updates
  • Better roaming client syncing behavior to avoid unnecessary updates
  • Database version upgrades for backend systems
- Improved filtering, validation, and export functions across several pages

improved

fixed

Active Directory Sync Tool

5/21 May 21 - Active Directory Sync Tool v3.6.0

A new version of the Active Directory Sync Tool, version 3.6.0 has been released and is available from the DNSFilter dashboard. DNSFilter recommends that users of existing Active Directory Sync Tools perform a manual upgrade to this version when practical.
What's New
🎨 Updated Branding in "About" Screen
The "About" section in the AD Sync Tool now displays the refreshed DNSFilter logo along with the current release date for improved clarity and brand consistency.
✅ Better Sync Recovery After Errors
We improved how the AD Sync Tool handles errors when fetching group users. Previously, certain errors would force the tool to restart the entire sync job, sometimes leaving data incomplete. The tool now recovers more gracefully, allowing the sync process to complete without unnecessary resets.
🔧 Compatibility Enhancements in Version 3.6.0
This release includes several updates to improve compatibility and ensure smoother integration with a wider range of directory environments.
Load More