DNS Settings for WAN

TheLyppardMan

Very Senior Member
My ISP is British Telecommunications PLC (Usually just referred to as BT). As BT offer some security settings, such as content filtering, I am wondering what would be the effect of changing my current DNS settings from Quad9 to either automatic (which would presumably then use BT's DNS) or specifying BT's DNS settings manually (in a similar way that I have specified Quad9 in the screenshot, once I knew what numbers to specifiy). Would both the automatic and manual options work in the same way and would they prevent any users from circumventing what I had set if I kept the settings shown in the second screenshot unchanged? One final thing, would either or both the Trend parental controls continue to work, i.e., the time controls and the content filters, although I would probably switch off the latter if I went for the BT option?
 

Attachments

  • Screenshot - 05_01_2022 , 21_05_03.jpg
    Screenshot - 05_01_2022 , 21_05_03.jpg
    61.7 KB · Views: 71
  • Screenshot - 05_01_2022 , 21_06_21.jpg
    Screenshot - 05_01_2022 , 21_06_21.jpg
    45.6 KB · Views: 70

bbunge

Part of the Furniture
Can not speak for the BT upstream resolvers. To improve your DNS security enable DNSSEC and DoT. Quad9 or another filtering DNS resolver, such as Cloudflare Secure (1.1.1.2 - 1.0.0.2), would be a better option than BT. DNS Filter set to Router is good as any hard coded resolvers in IoT devices will use the router/Quad9 or whatever upstream resolver you choose.
 

Tech9

Part of the Furniture
As BT offer some security settings, such as content filtering,

Your local BT DNS is perhaps the fastest and the features it offers are paid with other DNS providers. Quad9/Cloudflare don't offer any level of control.

If the service you have is the same or similar to the service shown below, I would use it. On-router Parental Controls will continue working as before.

 

AndreiV

Very Senior Member
Your local BT DNS is perhaps the fastest and the features it offers are paid with other DNS providers. Quad9/Cloudflare don't offer any level of control.

If the service you have is the same or similar to the service shown below, I would use it. On-router Parental Controls will continue working as before.


BT are a money pit, they collect/sell DNS data and store user information for the "authorities."
 

AndreiV

Very Senior Member
How do you know this is the case? Have you evidence you can point me to in order to verify your statement?



Look for the "Snoopers Charter " or "Investigatory Powers Act " .

DNS records have been used by many ISP's to earn money which is why so many people use other DNS servers.
 

TheLyppardMan

Very Senior Member
I've just had a look at the Wiki for the IPA and the following paragraph seems quite interesting:-

"In April 2018 the High Court of Justice ruled that the Investigatory Powers Act violates EU law.[6][69] The government had until 1 November 2018 to amend the legislation.[70] On 31 October 2018 The Data Retention and Acquisition Regulations 2018[71] came into force to address this ruling. These regulations increased the threshold for accessing communications data only for the purposes of serious crime (defined as offences which are capable of being sentenced to imprisonment for a term of 12 months or more) and requires that authorities consult an independent Investigatory Powers Commissioner before requesting data. The regulations also included a loophole where rapid approval can be made internally without independent approval but with a three-day expiry and with subsequent review by the independent body. Most debates about the regulations have been about the definition of "serious crime" with many arguing that the threshold should be at three years."

I'll see if I can find anything in BT's terms and conditions about using customers' details to earn money.
 

Tech9

Part of the Furniture
BT are a money pit, they collect/sell DNS data and store user information for the "authorities."

The ISP doesn't need to see your DNS queries to collect your browser history. They see the IP's you connect to. ISP's in all five/fourteen eyes countries store user information, no matter what. If you use VPN, they know which one and the exact server. If you use Tor, you may be monitored more closely. If you run Tor exit node, you may get a visit. Since most of us have nothing to hide, BT free filtering service with user categories looks pretty good to me.
 

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top