Technitium DNS Server | An Open Supply DNS Server For Privateness & Safety
Self host a DNS server for privateness & safety
Block advertisements & malware at DNS stage in your complete community!
Model 11.5.3
Home windows (Setup)
(Home windows 7 SP1 and above)
Home windows / Linux / macOS / Raspberry Pi (arm7)
(.NET 7 Runtime)
Linux / Raspberry Pi Automated Installer / Updater
curl -sSL https://obtain.technitium.com/dns/set up.sh | sudo bash
Official Docker Picture
docker pull technitium/dns-server:newest
What’s New?
Archive
File Particulars
TitleDnsServerSetup.zip
FormatZip File
Dimension2.56 MB
SHA256D7A6279975C202DB5FD707EBAB15DD8C0242C70AA39622409E2E82749CD4EE31
TitleDnsServerPortable.tar.gz
FormatGZiped TAR Archive
Dimension1.79 MB
SHA256E912A8347DC6BA81069D5AA807AD16729499BCA8ECB035B6345D93DD7E02B185
Technitium DNS Server is an open supply authoritative in addition to recursive DNS server that can be utilized for self internet hosting a DNS server for privateness & safety. It really works out-of-the-box with no or minimal configuration and supplies a consumer pleasant internet console accessible utilizing any trendy internet browser.
No one actually bothers about area title decision since it really works mechanically behind the scenes and is complicated to know. Most pc software program use the working system’s DNS resolver that often question the configured ISP’s DNS server utilizing UDP protocol. This fashion works properly for most individuals however, your ISP can see and management what web site you may go to even when the web site make use of HTTPS safety. Not solely that, some ISPs can redirect, block or inject content material into web sites you go to even whenever you use a distinct DNS supplier like Google DNS or Cloudflare DNS. Having Technitium DNS Server configured to make use of DNS-over-TLS, DNS-over-HTTPS, or DNS-over-QUIC encrypted DNS protocols with forwarders, these privateness & safety points might be mitigated very successfully.
Be it a house community or a corporation’s community, having a domestically operating DNS server offers you extra insights into your community and helps to know it higher utilizing the DNS logs and stats. It improves general efficiency since most queries are served from the DNS cache making web pages load sooner by not having to attend for frequent DNS resolutions. It additionally offers you an extra management over your community permitting you to dam domains community huge and in addition means that you can route your DNS visitors securely utilizing encrypted DNS protocols.
Block Adverts At DNS Degree
Technitium DNS Server means that you can configure Block Listing URLs that will get mechanically up to date day by day to dam advertisements in your community. The Fast Add possibility lists in style block lists out there so that you can select from.
Read More: Blocking Internet Ads Using DNS Sinkhole
Technitium DNS Server Block Listing Configuration
Privateness & Safety
Technitium DNS Server helps utilizing DNS-over-TLS, DNS-over-HTTPS, and DNS-over-QUIC protocols for forwarders permitting you to make use of in style public DNS resolvers like Cloudflare, Google & Quad9. These protocols supplies privateness by encrypting your DNS visitors on the community and protects you from man-in-the-middle assaults.
Read More: How To Configure DNS Server For Privacy & Security
Technitium DNS Server Forwarder Configuration
Options
- Works on Home windows, Linux, macOS and Raspberry Pi.
- Docker picture out there on Docker Hub
- Installs in only a minute and works out-of-the-box with zero configuration.
- Block advertisements & malware utilizing a number of block listing URLs.
- Excessive efficiency DNS server based mostly on async IO that may serve hundreds of thousands of requests per minute even on a commodity desktop PC {hardware} (load examined on Intel i7-8700 CPU with greater than 100,000 request/second over Gigabit Ethernet).
- Self host DNS-over-TLS, DNS-over-HTTPS, and DNS-over-QUIC DNS providers in your community.
- DNS-over-HTTPS implementation helps HTTP/1.1, HTTP/2, and HTTP/3 transport protocols.
- Helps DNS over PROXY protocol model 1 and a couple of for each UDP and TCP transports.
- Use public DNS resolvers like Cloudflare, Google, Quad9, and AdGuard with DNS-over-TLS, DNS-over-HTTPS, or DNS-over-QUIC protocols as forwarders.
- Superior caching with options like serve stale, prefetching and auto prefetching.
- Helps working as an authoritative in addition to a recursive DNS server.
- DNSSEC validation help with RSA & ECDSA algorithms for recursive resolver, forwarders, and conditional forwarders.
- DNSSEC help for all supported DNS transport protocols together with encrypted DNS protocols.
- DANE TLSA [RFC 6698] report sort help. This contains help for mechanically producing the hash values utilizing certificates in PEM format.
- SVCB & HTTPS [draft-ietf-dnsop-svcb-https] report sort help.
- URI [RFC 7553] report sort help.
- SSHFP [RFC 4255] report sort help.
- CNAME cloaking function to dam domains that resolve to CNAME that are blocked.
- QNAME minimization help in recursive resolver [RFC 9156].
- QNAME case randomization help for UDP transport protocol [draft-vixie-dnsext-dns0x20-00].
- DNAME report [RFC 6672] help.
- ANAME propriety report help to permit utilizing CNAME like function at zone apex (CNAME flattening). Helps a number of ANAME information at each zone apex and sub domains.
- APP propriety report help that enables customized DNS Apps to immediately deal with DNS requests and return a customized DNS response based mostly on any enterprise logic.
- Assist for options like Cut up Horizon and Geolocation based mostly responses utilizing DNS Apps function.
- Assist for REGEX based mostly block lists with completely different block lists for various consumer IP addresses or subnet utilizing Superior Blocking DNS App.
- Major, Secondary, Stub, and Conditional Forwarder zone help.
- Static stub zone help carried out in Conditional Forwarder zone to pressure a site title to resolve by way of given title servers utilizing NS information.
- Bulk conditional forwarding help utilizing Superior Forwarding DNS App.
- DNSSEC signed zones help with RSA & ECDSA algorithms.
- DNSSEC help for each NSEC and NSEC3.
- Zone switch with AXFR and IXFR [RFC 1995] and DNS NOTIFY [RFC 1996] help.
- Zone switch over TLS (XFR-over-TLS) [RFC 9103] help.
- Zone switch over QUIC (XFR-over-QUIC) [RFC 9250] help.
- Dynamic DNS Updates [RFC 2136] help with safety coverage.
- Secret key transaction authentication (TSIG) [RFC 8945] help for zone transfers.
- EDNS(0) [RFC6891] help.
- EDNS Shopper Subnet (ECS) [RFC 7871] help for recursive decision and forwarding.
- Prolonged DNS Errors [RFC 8914] help.
- DNS64 perform [RFC 6147] help to be used by IPv6 solely purchasers utilizing the DNS64 App.
- Assist to host DNSBL / RBL block lists [RFC 5782].
- Multi-user function based mostly entry with non-expiring API token help.
- Self host your domains by yourself DNS server.
- Wildcard sub area help.
- Allow/disable zones and information to permit testing with ease.
- Constructed-in DNS Shopper with choice to import responses to native zone.
- Helps out-of-order DNS request processing for DNS-over-TCP and DNS-over-TLS protocols [RFC 7766].
- Constructed-in DHCP Server that may work for a number of networks.
- IPv6 help in DNS server core.
- HTTP & SOCKS5 proxy help which might be configured to route DNS over Tor Network or use Cloudflare’s hidden DNS resolver.
- Net console portal for straightforward configuration utilizing any internet browser.
- In-built HTTP API to permit third get together apps to regulate and configure the DNS server.
- Constructed-in system logging and question logging.
- Open supply cross-platform .NET 7 implementation hosted on GitHub.
How To Get Began
- Obtain and set up the DNS server. You need to use the transportable zip/tar.gz file too by extracting and run the DNS Server app.
- Open http://localhost:5380/ in your favorite internet browser.
- The online console will auto login utilizing default username ‘admin’ and password ‘admin’. Do not forget to alter the password to disable auto login!
- Optionally, configure forwarder DNS server IP addresses or URLs in DNS Settings in order that the DNS Server makes use of them to resolve requests as an alternative of doing recursive decision by itself. You might configure any public DNS server like Google DNS, Cloudflare DNS or OpenDNS.
- Configure the DNS server’s IP handle in your community configuration and on different computer systems on the community if wanted. You need to use the built-in DHCP server to assign IP addresses and the DNS servers mechanically in your native community.
- ???
- Revenue!
API Documentation
The DNS server HTTP API permits any third get together app or script to configure the DNS server. The HTTP API is utilized by the online console and thus all of the actions that the online console does might be carried out by way of the API. Learn the HTTP API documentation for full particulars.
Assist Subjects
Learn the newest help topics which accommodates the DNS Server consumer handbook and covers steadily requested questions.
Donate
Make a contribution to Technitium and assist making new software program, updates, and options doable.