DoT (DNS over TLS) is a protocol that encrypts DNS queries using TLS (Transport Layer Security). It allows name service queries to travel over a separate, encrypted connection, preventing outsiders from seeing what websites a user is trying to access. DoT uses port 853 and provides strong privacy protection, especially on mobile devices and routers.