Is Your VPN Leaking Your DNS?

Virtual private networks (VPNs) are used for their security and anonymity. One of the most important features is the masked domain name service (DNS). If your DNS ends up getting leaked while using a VPN, it will inadvertently cause your Internet service provider’s (ISP’s) name to show up. The DNS is simply a domain name version of an IP. Your ISP is the company that supplies you with the Internet and it can easily pin-point your geographical location.

DNS

Photo: YellowJ / Shutterstock

How You Can Prevent DNS Leakage

If your VPN is set up right, then you should not have a leaking DNS. However, it is still important to make sure that this is true even if you believe your VPN is working fine.

The best way to go about it is by testing for a leakage.

DNSLeakTest.com is the quickest and easiest way you can find out if your DNS is actually leaking while your VPN is in use. The home page shows the IP address as it’s viewed by the website based on your information. It also shows your city and country. You then have the option of a ‘Standard’ or ‘Extended’ test.

The ‘Standard Test’ performs six queries in a single testing phase. This is usually effective enough to diagnose a DNS leak. This test is preferred as it is very quick to perform and it can be done every single time you activate your VPN. This will assure you that your VPN is always in perfect working order before you start using it.

The ‘Extended Test’ performs 36 queries in total. This is broken down into six phases of six queries, which is basically running the ‘Standard Test’ six times at once. This is more effective as it makes sure that every DNS server is found. This test takes a little longer, about 10 to 30 seconds more than the ‘Standard Test’ but it is worth it if you are very serious with remaining anonymous and secure. It’s essentially the better of the two only if you need clarity of mind.

If your DNS is leaking you can find a private DNS server and follow a DNS changing guide.

Enhance Your Business’s Security with a Private DNS

Personal security can easily be handled by using DNSLeakTest.com before browsing. However, the security measurements for a business network will be much different.

A company’s network can become much more secure by using a private DNS. This will further increase the steps you are taking towards ensuring your privacy. You can even go an extra step beyond this by using two different private DNS providers. Ideally, you will choose a DNS provider that is active with their log purging.

It’s not hard to find free DNS servers but you will want to make sure that the one you choose is a privately operated DNS provider. From the linked website, censurfridns.dk sticks out as they are privately funded DNS servers out of Denmark.

A Quick Look At Private DNS

If you want to ensure that you are not leaking your DNS, then you definitely want to stick with a private DNS provider. A public DNS could have its information leaked because of the internal domain names that are being broadcasted. Basically, all the machines handling these domains could end up exposing their IP addresses.

This is where many end up implementing a split-horizon DNS. This allows access from external, unprotected networks and your internal network to be sectioned from each other. This can be done by separating the hardware or utilizing split-horizon DNS software. To create an example of how this works: sectioning the external and internal DNS servers means that your CEO’s desktop computer, of servers containing sensitive data or unreleased information, etc., cannot be accessed by the public.

These steps may not be necessary if you are not dealing with a corporation or large-scale business. However, they are the added security measures that make a difference in the overall protection of your VPN. As you usually choose to use a VPN service for the additional security they add to your network, it obviously makes sense to go as far as you can to protect your network.

There are endless benefits of the private DNS, such as:

    -Being able to set up sensitive servers, such as a server for your company’s accounting.
    – Being able to set up domain names for every machine, which also allows you to name them based on the employee and purpose of the machine.
    – Being able to block certain websites, such as porn and social media websites, within your private network and redirecting your public-accessed machines to an internal page that simply says “Hey now, get back to work!”
    – Being able to utilize the parent DNS server in the event of your ISP’s DNS getting hacked.

    Keeping yourself and your business protected is very important. This does not stop at just using a free or paid VPN service. You want to make sure that your VPN protection is sufficient based on your privacy requirements. A major step towards ensuring this comes from passing the DNS leak test. If you are worried that your DNS may be leaking, then take the test and follow additional security measurements such as these to ensure that your network is as private as possible.