Improve network security with DNS Server

Network administration - Using other DNS providers, such as OpenDNS or Public DNS provided by Google, can improve performance and increase system security. This is a time-consuming issue to consider, compare and find the best option for the network you are using.

Domain Name System (DNS) is what we all use and depend on, but it is something that has not really received much attention; If you have time to research the various options, you will definitely improve the performance and security of your network.

Before I introduce how to improve this security, I want to show you some brief explanations of what DNS is. Think of a phone book log; It allows you to search someone's phone number as long as you know the person's name. DNS also does the same thing with computers. For example, if you type 'google.com', DNS will translate that name into a series of numbers, this number is called an IP address and functions like a phone number. In this case, google.com 'phone' number is 74.125.95.104.

Improve network security with DNS Server Picture 1

The entire Internet infrastructure has a lot of address books or DNS root servers and is located in strategic locations around the world, these servers and address books are maintained by some public providers. , semi-public and private.

As you can imagine, entries that can be 'poisoned' or Internet traffic can be misdirected to a fake domain, which can be done by some organizations that may be good or bad. . This is what happened in 2008, when an Internet provider in Pakistan blocked access to all of YouTube's pages with the aim of wanting the people of the country to see only the videos they controlled. This is a list of DNS attacks that you can find at Google.com.

Unlike phone numbers, when setting up your network, you will not normally be able to deeply estimate DNS settings. With DSL or cable modems, the way we still do is to simply connect and the modem will automatically receive DNS settings from the phone company DNS server or DSL service provider, so You may not know what your IP address is unless you perform a specific test. If you are running a large enterprise network, you will normally have a dedicated DNS server to provide this service.

What I want to show you is that there are a number of other providers, such as OpenDNS, Google's Public DNS or a lot of providers listed. Why need to care about choosing a suitable supplier? There are two reasons: better browsing performance and more reliable security, these are two essential reasons to protect you from phishing and being infected by malware.

Evaluating which DNS provider will give your users better performance is a problem. A lot of things depend on how you connect to your ISP, where you live and where your destination is located here on the Internet.

Before choosing your DNS provider, you need to use Java program to test your DNS speed with Google and OpenDNS. For more information, you can refer to Browser Mob Blog for more about Java tools; TechSutra or Habitually Good (for OpenDNS and OpenDNS).

You can change your DNS settings for each computer or for the entire network, typically at a DHCP server or a cable modem or router. Any provider offers their free services, and some, such as OpenDNS, offer a lot of services other than the main content mapping IP addresses.

Here are some instructions for changing DNS settings. The whole process, from reading the instructions to execution changes, only costs you a few minutes.

There are quite a few interesting things about using these providers. The first is that you can block certain domains, this feature helps you avoid some unpleasant unpleasant statements.

Both OpenDNS and Google are deeply investigating locking of exploited domains, so you can avoid the pitfalls set by hackers.

You can also get better DNS services, because these service providers have servers that can be used to make domain transfers faster than other servers on the Internet in general. They also catch general domain errors, such as when typing in a browser a certain URL and making an error, then Google and OpenDNS can direct you to the location you intended.

Obviously this is only the first step in protecting your DNS resources. If you are really interested and want to learn more about this issue, then this is an address you can refer to.