Improve network security with DNS Server
Network administration - Using other DNS providers, such as OpenDNS or Public DNS provided by Google, can improve performance and increase system security. This is a time-consuming issue to consider, compare and find the best option for the network you are using.
Domain Name System (DNS) is what we all use and depend on, but it is something that has not really received much attention; If you have time to research the various options, you will definitely improve the performance and security of your network.
Before I introduce how to improve this security, I want to show you some brief explanations of what DNS is. Think of a phone book log; It allows you to search someone's phone number as long as you know the person's name. DNS also does the same thing with computers. For example, if you type 'google.com', DNS will translate that name into a series of numbers, this number is called an IP address and functions like a phone number. In this case, google.com 'phone' number is 74.125.95.104.
The entire Internet infrastructure has a lot of address books or DNS root servers and is located in strategic locations around the world, these servers and address books are maintained by some public providers. , semi-public and private.
As you can imagine, entries that can be 'poisoned' or Internet traffic can be misdirected to a fake domain, which can be done by some organizations that may be good or bad. . This is what happened in 2008, when an Internet provider in Pakistan blocked access to all of YouTube's pages with the aim of wanting the people of the country to see only the videos they controlled. This is a list of DNS attacks that you can find at Google.com.
Unlike phone numbers, when setting up your network, you will not normally be able to deeply estimate DNS settings. With DSL or cable modems, the way we still do is to simply connect and the modem will automatically receive DNS settings from the phone company DNS server or DSL service provider, so You may not know what your IP address is unless you perform a specific test. If you are running a large enterprise network, you will normally have a dedicated DNS server to provide this service.
What I want to show you is that there are a number of other providers, such as OpenDNS, Google's Public DNS or a lot of providers listed. Why need to care about choosing a suitable supplier? There are two reasons: better browsing performance and more reliable security, these are two essential reasons to protect you from phishing and being infected by malware.
Evaluating which DNS provider will give your users better performance is a problem. A lot of things depend on how you connect to your ISP, where you live and where your destination is located here on the Internet.
Before choosing your DNS provider, you need to use Java program to test your DNS speed with Google and OpenDNS. For more information, you can refer to Browser Mob Blog for more about Java tools; TechSutra or Habitually Good (for OpenDNS and OpenDNS).
You can change your DNS settings for each computer or for the entire network, typically at a DHCP server or a cable modem or router. Any provider offers their free services, and some, such as OpenDNS, offer a lot of services other than the main content mapping IP addresses.
Here are some instructions for changing DNS settings. The whole process, from reading the instructions to execution changes, only costs you a few minutes.
- OpenDNS
- Google Public DNS
There are quite a few interesting things about using these providers. The first is that you can block certain domains, this feature helps you avoid some unpleasant unpleasant statements.
Both OpenDNS and Google are deeply investigating locking of exploited domains, so you can avoid the pitfalls set by hackers.
You can also get better DNS services, because these service providers have servers that can be used to make domain transfers faster than other servers on the Internet in general. They also catch general domain errors, such as when typing in a browser a certain URL and making an error, then Google and OpenDNS can direct you to the location you intended.
Obviously this is only the first step in protecting your DNS resources. If you are really interested and want to learn more about this issue, then this is an address you can refer to.
You should read it
- Use OpenDNS to protect corporate networks
- How do Private Network and Public Network on Windows differ?
- Increase computer security through DNS server
- Network basics: Part 3 - DNS Server
- Three simple and economical ways for network protection
- Introducing Exchange Server 2019, how to install Exchange Server 2019
- How to check for simple Linux server performance
- How to secure SSH server
May be interested
- Network basics: Part 3 - DNS Servera dns server is a server that contains a database of public ip addresses and hostnames associated with them. in most cases, the dns server is used to resolve or translate those common names into ip addresses as required.
- HOW TO INSTALL ISA SERVER ENTERPRISE 2000main functions of the product: - protection of the network against internet attacks - allowing clients inside the internal network to access controlled services outside the internet. installation instructions on windows 2000/2003 server: - isa server 2000 installation server must be a clean server, which means that you should not deploy other network services that are not recommended. this will help set up a system with high safety. services should not be installed together with isa server 2000:
- How to secure SSH serversecure ssh connection helps you protect linux system and data. system administrators and home users also need to keep computers accessible from the public internet. here are 10 easy ways to help protect your ssh server.
- Wireless network traffic security - Part 5in the next part of this article series, i will show you some of the wireless network security options in windows server 2008 operating system.
- Learn the new Network Policy Server feature in Windows Server 2008although we are familiar with the concepts and terms related to microsoft's network access protection (nap) and cisco nac technologies, we still have to consider the new network policy server feature of windows server. 2008. our interest the windows 2008 network policy server (nps) is able to use radius t
- What is the future of server virtualization?server virtualization can help combat poor server performance, make better use of computing capabilities, limit energy consumption and improve data center flexibility.
- Top 10 security improvements in Windows Server 2019this new version of windows server provides some significant security updates compared to the windows server 2016 version, including ransomware monitoring tools and other malware.
- Protect computer network with Bastion host (fortress server) in just 3 stepsdo you have computers on your local network that need to be accessed from outside? using the bastion host - as the gatekeeper - the gatekeeper for your network can be a good solution.
- Overview of Windows Server 2008 Firewall with advanced security features (continued part 3)in this article, i will show you how to create an ipsec isolation domain policy in a simple network, create a quarantine domain rule for servers and clients that require security (authentication), configure the server to use ping connections sent to them to check the newly created rule.
- Most cyber attacks focused on these 3 TCP ports onlysmall and medium-sized businesses can fully protect themselves from most cyber attacks by increasing defenses against ports that are most often targeted by malicious actors.