Menu
What's new
By:
Filters Better Search

DNS-based filtering: is it really working?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

V

vrapp

Senior Member
I tried a number of malicious URL's found at https://www.malwaredomainlist.com/mdl.php

With AI Protection/Malicious sites blocking, practically every URL was indeed blocked.

With AI Protection/DNS filtering/enable dns-based filtering = on, not one was blocked. I tried all providers - Yandex, Comodo, Opendns, and Norton. Also tried "router" with Opendns's dns specified at WAN page. So I'm wondering, are they all so inefficient compared to TrendMicro, or something does not work, or I did something wrong?
 
Here it is, with opendns configured.
screenshot.png
 
You might try setting the global mode to Router and then on the WAN page setting the 2 DNS servers to the OpenDNS Home IP addresses ( 208.67.222.222 and 208.67.220.220 ?) and leave everything else as it is and see if that produces the desired effect.
 
Last edited:
I doubt that OpenDNS would be as efficient as Trend Micro's Reputation database.
 
Also one big difference is AiProtection's reputation system works on the whole URL, not just the target server. See this post from Asus's engineer regarding WRS. A DNS can only filter on the hostname, it can't analyze the whole URL.
 
martinr said:
You might try setting the global mode to Router and then on the WAN page setting the 2 DNS servers to the OpenDNS Home IP addresses ( 208.67.222.222 and 208.67.220.220 ?) and leave everything else as it is and see if that produces the desired effect.
Click to expand...

Yes, did that as well: "Also tried "router" with Opendns's dns specified at WAN page". Same result.
 
you might want to catch DNS requests if you want to use DNS filtering. Using RMerlin's firmware and IPTables look at hijacking DNS requests.
 
System Error Message said:
you might want to catch DNS requests if you want to use DNS filtering. Using RMerlin's firmware and IPTables look at hijacking DNS requests.
Click to expand...

I think it's actually even simpler. Run nslookup of a domain hosting known malware using supposedly-protecting dns service. If it returns different IP than google's 8.8.8.8 , then it does protect. I tried that, and they all return the same IP. This makes me wonder what their claim of protecting anybody from anything is based on. If I'm not mistaken, they all have a similar commercial product.
 
You must log in or register to reply here.

Similar threads

B
DNS over Tls is it right?
Replies
2
Views
5K
Yo_2T
Y
C
Solved DNS Filtering not working on Merlin LTS fork
2
Replies
31
Views
4K
john9527
john9527
torstein
Question: AiProtect, is it adding anything of value security-wise?
Replies
8
Views
4K
Yota
Yota
G
AI Protection features downgraded on newer firmware - after 384.6
Replies
4
Views
2K
Gary Atkinson
G
H
A list of noob questions on various filtering options
Replies
3
Views
1K
RMerlin
RMerlin
Similar threads
Thread starter Title Forum Replies Date
S Solved New ISP - WAN Setup - Will not work with custom WAN DNS - dnsmasq.conf Asuswrt-Merlin 1
T Wireguard Client VPN not using DNS Asuswrt-Merlin 14
Preskitt.man DNS Issue?? AX5800 Pro Issue?? Asuswrt-Merlin 2
H DNS-rebind attack detected: farm.plista.com. etc...?? Asuswrt-Merlin 3
plapic DNS Director Asuswrt-Merlin 7
P DNS Director - Proprietary? Asuswrt-Merlin 6
r000t Hardcoded Google DNS IPTABLES rule Asuswrt-Merlin 6
Panic Button Wireguard client optional DNS Server setting Asuswrt-Merlin 2
M RT-AX86U and DNS Privacy over USB WAN Asuswrt-Merlin 0
V Local system fails to register address with DNS server Asuswrt-Merlin 5

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 783 (members: 37, guests: 746)
Top