DNS LEAK PROTECTION - A Complete Guide

A DNS leak is a flaw with the network configuration that outcomes in the loss of security by sending DNS queries over unsecure connections as opposed of using the VPN association.

The weakness permits an ISP, and eavesdroppers, to perceive what sites a user might visit. This is predictable since the browser's DNS requests are sent to the ISP DNS server straightforwardly, and not through the VPN.

How to prevent DNS Leak

Change DNS Server settings

If your default DNS server is one that was appointed by your ISP, one of the simplest approaches to shield them from seeing what you're doing on the internet is to change your DNS server. Regardless of whether you aren't stressed over DNS leak, changing your default DNS server may be a smart thought, as it may bring about quicker Internet speeds.

For selecting a custom DNS server other than ISP’s DNS server, you could choose from the many common ones such as openDNS and Google DNS. You may also select lesser known but general ones such as Norton DNS, Comodo Secure DNS and others.

Here are the IPs for DNS servers so that you could easily enter these sets while changing settings of your browser, devices or operating systems.

Service OpenDNS Google Public DNS Norton ConnectSafe Comodo Secure DNS
Primary IP 208.67.222.222 8.8.8.8 199.85.126.108.26.56.26
Secondary IP 208.67.220.220 8.8.4.4 199.85.127.108.20.247.20

Use a VPN with DNS Leak Protection

Some VPNs accompany a component that will screen your DNS requests to ensure that they'rerouting through the VPN rather than straightforwardly to your ISP. To check whether your VPN has this security, open the settings; you should see an option that will check for and avert DNS leaks.

DNS Leak Protection in Browsers

Chrome – An extension, free of cost is available for installation. It will fix the issues you are facing.

Firefox – A bit of work needs to be done here but it is worth the security you need. On the address bar in Firefox, type: “about: config”. A page will appear where you will have to enter “media.peerconnection.enabled” onto the search bar. When it will appear, set the entry to ‘false’. It’s done.

Opera – DNS leak can be assured in Opera by blocking WebRTC. Follow the steps listed:-

  1. Go to the extensions gallery.
  2. Enter “WebRTC control”, the plugin name in the search box.
  3. Click on the plugin.
  4. Click on Add to Opera.
  5. Enable the plugin which will turn from blue to black.

DNS Leak Protection in Operating Systems

Windows:-

  1. Go to your system control panel.
  2. From ‘Network and Internet’, select “View network status and tasks”.
  3. Click on “Network and Sharing Center”, and then select “Change adapter settings”.
  4. A window listing all your network adapters will appear. There, select your main network adapter , right-click and then click on “Properties”.
  5. In the properties of your network adapter, select on Internet Protocol Version 4 (TCP/IPv4 and click on “Properties”.

  6. You’re now viewing the advanced properties of the TCP/IPv4 settings. Don’t alter anything in the upper field related to IP, Subnet or Gateway.

  7. Select “Use the following DNS server addresses:” and enter 2 DNS servers of your choice. If you’re using HMA Pro VPN, it’s recommended to use OpenDNS.

OpenDNS: 208.67.222.222 + 208.67.220.220

GoogleDNS: 8.8.4.4 + 8.8.8.8

Select on “Ok”. It’s done, it’s over.

MacOS:-

  1. On your desktop, click the Mac Apple, and select “System Preferences”.
  2. System Preferences window will appear. Select “Network”.
  3. For WiFi:-

    • Choose “WiFi” from the left-hand side. Select “Advanced” . Choose “DNS” tab and click on the “+” to add new DNS servers.
    • After doing that, click on the OK button and click on “Apply” for the DNS changes to affect. That’s all that needs to be done.

    For Ethernet:-

    • You’ll view the Network center. Select your Ethernet adapter in the left and click “Advanced...”
    • lick on the “DNS” tab and add DNS servers by clicking on the “+” button.
    • Add the desired DNS servers:

    OpenDNS: 208.67.222.222 + 208.67.220.220

    GoogleDNS: 8.8.4.4 + 8.8.8.8

  4. Click on the OK button.
  5. In the network center, you will see the DNS servers you recently added right next to “DNS server:”
  6. Click on ‘Apply’ at the bottom right to save your tasks.

Linux:-

  1. Navigate to Network Connections in the top right corner of your desktop screen and click on Edit Connections.
  2. Find your active network connection. After selecting it, click the “Edit” button.
  3. Go to the IPv4 Settings tab and change the method from Automatic (DHCP to Automatic (DHCP addresses only.
  4. Enter the DNS server shown below. After you’re done, click the Save button.
  5. Close the window to confirm the changes done and click on close.
  6. In case, click on Enable Networking option to disable it and select it once again to re-enable it. Thus, all necessary changes can take place.

By following all the steps listed for each of the popular operating systems used on earth, you can assure that your DNS does not get leaked. One thing is common in all of them; that is to change your DNS settings.

DNS Leak Protection In Devices

The change of DNS server in the router would affect the DNS request to all the devices which are connected to it. It is an easy way to change the entire network settings instead of every device’s setting individually. However, it is necessary that your devices are set up for DHCP which means they access router for DNS server information.Your DNS server is usually set up to the ISP’s DNS server and to change this, you need to access your router’s web interface. Every router has their specific way to access it and you could find instructions in your router’s manual. You can always access your router’s company support site to download the manual.Once you are at the router’s web interface, you will probably find the setup or basic settings page into which there are DNS text fields usually in the DNS Address section. Now set up your DNS servers; primary DNS server and secondary DNS server.

On Smartphone or Tablet

You can change the default DNS server settings into your android phone or tablet but this will apply to a single network only. For instance, if you have changed the settings while connected to your home Wi-Fi than you need to change it again when connected to another network.To change the settings you need to follow certain steps;

  • Open the Wi-Fi network list into the Wi-Fi settings.
  • Now, long press the one you are connected to and then click on ‘modify network’.
  • Press the ‘show advanced options’ and set the ‘IP settings’ to static.
  • Finally, you will be allowed to change the DNS server.

Unfortunately, when you change the IP settings to static, you can’t use DHCP on the network. Yet, you can use the Set DNS app if your phone is rooted. With this app, you can choose a custom DNS for yourself and the app will automatically set this DNS server every time you connect to a new network. Therefore, you don’t need to change manual settings or static IPs.

On iOS (iPhone, iPod, iPad

To change the DNS server settings in iOS you need to connect Wi-Fi to your device.

  • First, go to the app’s Wi-Fi settings and press the blue button on the right side of the network you are connected to.
  • Now, press the ‘configure DNS’ button at the bottom of settings.
  • Select the ‘manual’ option there and tap the red button to remove the existing unwanted DNS servers.
  • Finally, enter a custom DNS server into the places.

For iOS manual settings, you will need to change the DNS server setting each time you connect to a new network.