By salemeni at 2011-08-03 06:46
The Domain Name System (DNS) is a hierarchical naming system built on a distributed database for computers, services, or any resource connected to the Internet or a private network. Most importantly, it translates domain names meaningful to humans into the numerical identifiers associated with networking equipment for the purpose of locating and addressing these devices worldwide.
An often-used analogy to explain the Domain Name System is that it serves as the "phone book" for the Internet by translating human-friendly computer hostnames into IP addresses. For example, the domain name www.example.com translates to the addresses 184.108.40.206 (IPv4) and 2620:0:2d0:200::10 (IPv6).[from Wikipedia ]
This tutorial explains how to use OpenDNS, a great alternative to DNS servers of ISPs, which offer many advantages for the user.
1- OpenDNS on Linux
Open a terminal as root and run the following commands:
If you have a router that is also a DHCP server on your home network or you are on a corporate network, it will then reconfigure it so that it uses the OpenDNS addresses (Primary DNS: 220.127.116.11 and secondary DNS : 18.104.22.168) and it propagates to all machines located on the network.
cp /etc/resolv.conf /etc/resolv.conf.save
echo "nameserver 22.214.171.124" > /etc/resolv.conf
echo "nameserver 126.96.36.199" >> /etc/resolv.conf
More help on configuring OpenDNS is available here:
- To activate or not the correction of typing errors (google.cmo → google.com).
- Create shortcuts based on a single keyword. Once created, users can simply type keywords in the address bar of their browser to get directly to the desired site.
2. Benefits of OpenDNS
In addition to using the DNS service, it is also possible to open an account at OpenDNS, in order to have access to a management console that allows you for example:
- To obtain usage statistics such as number of DNS queries, or clear view of network activity.
- To choose several levels of security: anti-fishing, anti-pornography, or block the illegal networks. It is also possible to block certain areas directly.
Note that when you want to join a domain name that does not exist, you are redirected to an OpenDNS page that serves as a search engine (this is thanks to the ads found on this page OpenDNS earns money).
After several weeks of use, the service seems very reliable (no break) and very secure because they are reacting very quickly to the fault which affected DNS servers lately.
However, contrary to what one can read everywhere, OpenDNS is faster than the DNS of my ISP. Using the dig command lets put this into evidence.
Duration of a DNS query with OpenDNS:
Duration of a DNS query with the DNS of my ISP:
A human user, does not see the difference (7 msec).