互联网(Internet)隐私是当今世界的一个大问题。确保您的在线安全和隐私有助于保护您和您的设备免受恶意方的侵害。这就是私有DNS的用武之地。
如果您担心自己的在线隐私(your online privacy)并想采取措施增加它,请继续了解什么是私有DNS以及如何在您的设备上配置它。
什么是 DNS?
域名系统(Domain Name System)( DNS )将您搜索的网址(如 online-tech-tips.com,也称为URL或统一资源定位器(Resource Locator))映射到一组 IP 地址,以便通过 Internet 有效地发送数据包。
通常,DNS服务器将执行从URL到 IP 的转换。此过程称为DNS事务,每次访问网站、使用特定应用程序或通过特定平台进行通信时都会发生这些事务。
这些交易,就像域名一样,是未加密的。没有任何隐私机制来保护交易的机密性。这意味着操作员和其他人可以轻松查看和记录它们,当信息存在安全或隐私风险时,这可能是一个严重的问题。
此外,它还可能使您容易受到特定形式的恶意网络攻击(malicious cyberattacks)(如中间人攻击)的影响。
什么是私有 DNS?
有两个新术语可以理解私有 DNS:传输层安全 (TLS)(Transport Layer Security (TLS))和超(Hypert)(Hypert)文本(e)(e)传输协议安全 (HTTPS)(xt Transfer Protocol Secure (HTTPS))(xt Transfer Protocol Secure (HTTPS))。这些协议对发出的任何DNS(DNS)查询进行加密,基于这些协议的DNS被称为DoH(DNS over HTTPS)和DoT(DNS over TLS)。
许多恶意软件、勒索软件和数据盗窃攻击都依赖于DNS安全漏洞。这就是私有DNS的用武之地。DoT和DoH对您的网络和DNS服务器之间的通信进行加密,并防止第三方拦截数据。
您可以使用的其他一些隐私软件包括VPN 和 SmartDNS(VPN and SmartDNS)。
您如何使用私有 DNS?
该过程将因您的设备/平台而异。要启用私有DNS,您需要在设备上配置DNS地址并有权访问包含DoT或DoH功能 的第三方DNS服务器。(DNS)
Cloudflare在 1.1.1.1 或 1.0.0.1提供免费的私有DNS服务,但会记录一些信息,您可以在此处阅读。这个DNS 解析器是完全免费(DNS resolver is completely free)的。其他免费的DNS选项包括OpenDNS 、带有(OpenDNS)Warp的 1.1.1.1和Google。
如何在Windows 10上启用(Windows 10)私有 DNS(Private DNS)
要在Windows 10上使用私有DNS,请按照以下步骤操作:
- 按Windows key + I 打开设置(Settings)。
- 选择网络和互联网(Network & Internet)。
- 在高级网络设置下 选择网络和共享中心。(Network and Sharing Center)
- 从左侧菜单中 选择更改适配器设置。(Change Adaptor Settings )
- 右键单击(Right-click)您当前连接的网络,然后选择Properties。
- 从列表中选择Internet Protocol Version 4 (TCP/IPv4) 并选择Properties。
- 选择使用以下 DNS 服务器地址(Use the following DNS server addresses )并输入您的首选DNS地址。
如何在Android上启用(Android)私有 DNS(Private DNS)
Google在 Android 9 中引入了对 DNS over TLS 的支持(support for DNS over TLS in Android 9),允许您在手机上使用私有DNS。为此,您需要访问私有DNS服务器。转到设置(Settings)。
- 打开设置(Settings)。
- 选择连接(Connections)>更多连接设置(More Connection Settings)。
- 选择私有 DNS(Private DNS)。
- 选择私有 DNS 提供商主机名(Private DNS provider hostname)。
- 输入(Enter)您希望使用的私有DNS服务的地址。(DNS)
注意:(Note:)如果您使用CloudFlare,则URL将为1dot1dot1dot1.cloudfare-dns.com。
如何在 Mac 上启用私有 DNS
要在Mac上启用私有DNS,请执行以下操作:
- 选择苹果菜单(Apple menu)。
- 选择系统偏好设置(System Preferences)>网络(Network)。
- 选择(Select)您当前使用的网络连接,然后单击Advanced。
- 单击DNS,然后选择列表底部的 添加按钮(加号)。(Add)
- 输入(Enter)您要选择 的DNS服务器的IPv4或IPv6地址。
- 选择确定(OK)。
如何在 iPhone 上启用私有 DNS(Private DNS)
要在 iPhone 上使用加密的DNS,请按照以下步骤操作:
- 前往设置(Settings)> Wi-Fi。
- 单击Wi-Fi 连接旁边 的信息(information)图标“ i ”。
- 向下滚动并选择配置 DNS(Configure DNS)。
- 选择手动(Manual)。
- 单击添加服务器(Add Server)。
- 输入(Enter)您希望使用 的私有DNS服务的地址。(DNS)
CloudFlare 的1.1.1.1:更快、更安全的互联网(1.1.1.1: Faster & Safer Internet)应用
您可以在Android(Android)上自动设置私有DNS服务器。CloudFlare 的 1.1.1.1 Faster & Safer Internet等(Safer Internet)应用程序(Apps)会自动将您的设备配置为使用 1.1.1.1 DNS服务器。它也可以在 iPhone 上使用。它被称为1.1.1.1:Apple (1.1.1.1: Faster Internet)Store(Apple Store)中的更快互联网。这是一个免费的应用程序,可以在没有广告的情况下运行。
检查并验证 DNS
设置私有DNS本身并不一定安全。设置备用DNS地址后,检查它以确保连接安全非常重要。您可以使用多种在线工具来执行此操作,包括 Cloudfare 自己的安全检查工具(security check tool)。
这将再次检查您的DNS查询是否已加密、您的浏览器是否支持加密的服务器名称指示(Server Name Indication)( SNI )、您的DNS解析器是否使用域名系统安全扩展(Domain Name System Security Extensions)( DNSSEC ) 以及正在使用 的TLS版本。(TLS)
互联网隐私
公共 DNS(Public DNS)是互联网上最重要的安全问题之一,配置私有DNS可以保护您和您的设备免受互联网上的恶意行为者的侵害。
您使用私有DNS吗?请在下面的评论中告诉我们。
What Is Private DNS and How to Use It
Internet privacy is a big issue in today’s world. Ensuring your ѕecurity and privacy online helpѕ to protect you and yoυr devices from malicious pаrties. This is where private DNS comes in.
If you’re concerned about your online privacy and want to take steps to increase it, stick around to learn what private DNS is and how you can configure it on your devices.
What Is DNS?
The Domain Name System (DNS) maps the web address that you search (like online-tech-tips.com, otherwise called the URL or Unified Resource Locator) to a set of IP addresses so that packets are efficiently sent over the internet.
Generally, a DNS server will perform the translation from URL to IP. This process is called a DNS transaction, and these occur every time you visit a website, use particular applications, or communicate over specific platforms.
These transactions, like the domain names, are unencrypted. There aren’t any privacy mechanisms in place to protect the confidentiality of the transactions. This means that operators and others can easily see and log them, and this can be a serious problem when the information is a security or privacy risk.
Further, it can make you susceptible to particular forms of malicious cyberattacks (like man-in-the-middle attacks).
What Is Private DNS?
There are two new terms to understand private DNS: Transport Layer Security (TLS) and Hypertext Transfer Protocol Secure (HTTPS). These protocols encrypt any DNS queries sent out, and DNS over these protocols are referred to as DoH (DNS over HTTPS) and DoT (DNS over TLS).
Much of the malware, ransomware and data theft attacks rely on DNS security weaknesses. This is where private DNS comes in. DoT and DoH encrypt the communication between your network and the DNS server and prevent third parties from intercepting the data.
Some other privacy software you can use include a VPN and SmartDNS.
How Do You Use Private DNS?
The process will differ depending on your device/platform. To enable private DNS, you need to configure a DNS address on your device and have access to a third-party DNS server that includes DoT or DoH functionality.
Cloudflare offers a free private DNS service at 1.1.1.1 or 1.0.0.1 but logs some information, which you can read about here. This DNS resolver is completely free. Other free DNS options include OpenDNS, 1.1.1.1 with Warp, and Google.
How to Enable Private DNS on Windows 10
To use private DNS on Windows 10, follow the steps below:
- Press Windows key + I to open Settings.
- Select Network & Internet.
- Select Network and Sharing Center under Advanced network settings.
- Select Change Adaptor Settings from the left-hand menu.
- Right-click the network you’re currently connected to and select Properties.
- Select Internet Protocol Version 4 (TCP/IPv4) from the list and select Properties.
- Select Use the following DNS server addresses and enter your preferred DNS address.
How to Enable Private DNS on Android
Google introduced support for DNS over TLS in Android 9, allowing you to use private DNS on your phone. To do this, you will need to have access to a private DNS server. Go to Settings.
- Open Settings.
- Select Connections > More Connection Settings.
- Select Private DNS.
- Select Private DNS provider hostname.
- Enter the address of the private DNS service you wish to use.
Note: If you’re using CloudFlare, the URL will be 1dot1dot1dot1.cloudfare-dns.com.
How to Enable Private DNS on a Mac
To enable private DNS on a Mac, do the following:
- Select the Apple menu.
- Select System Preferences > Network.
- Select the network connection you’re currently using and click Advanced.
- Click DNS then select the Add button (the plus symbol) at the bottom of the list.
- Enter the IPv4 or IPv6 address for the DNS server you wish to choose.
- Select OK.
How to Enable Private DNS on an iPhone
To use encrypted DNS on an iPhone follow the steps below:
- Go to Settings > Wi-Fi.
- Click on the information icon “i” next to your Wi-Fi connection.
- Scroll down and select Configure DNS.
- Select Manual.
- Click Add Server.
- Enter the address of the private DNS service you wish to use.
You can automatically set up a private DNS server on your Android. Apps like CloudFlare’s 1.1.1.1 Faster & Safer Internet will automatically configure your device to use the 1.1.1.1 DNS server. It is also available on iPhone. It’s called 1.1.1.1: Faster Internet in the Apple Store. It’s a free app that functions without ads.
Check and Validate the DNS
Setting up a private DNS is not necessarily secure by itself. Once you’ve set up an alternate DNS address it’s important to check it to ensure that your connection is safe. There are several online tools you can use to do this including Cloudfare’s own security check tool.
This will double-check that your DNS queries are encrypted, whether your browser is supporting encrypted Server Name Indication (SNI), whether your DNS resolver is using Domain Name System Security Extensions (DNSSEC), and which version of TLS is being used.
Internet Privacy
Public DNS is one of the most significant security concerns on the internet, and configuring private DNS can protect you and your devices from malicious actors on the internet.
Do you use private DNS? Let us know in the comments below.