Technitium DNS Server

Get a personal local DNS Server for privacy & security

Block Ads at DNS level!

Version 2.0.1 (beta)

Windows
(.NET Framework v4.6.1 or higher)
Windows / Ubuntu Linux / macOS
(.NET Framework v4.6.1 or Mono Framework)
Windows / Ubuntu Linux / macOS
(.NET Core 2.1 or higher)
Open Source
Source code available under GNU GPLv3 Licence on  GitHub
File Details
NameDnsServerSetup.zip
FormatZIP File
Size2.54 MB
SHA1BB15BC98574A2267783808CB29E1CCA400E5921E
SHA256A790E15F0B96D50EF574EB846622DAAEF0B05FA8B7C1F7534ED88290DE1229FA
NameDnsServerPortable.zip
FormatZIP File
Size2.50 MB
SHA1BA6BF45BE04CBD1C78350DD7724DCCD3D10DD036
SHA2560FCE65BD8580DD2CB8AB23127E5FBA19EE8E2689777E84D808DCADC9A65B13DE
NameDnsServerPortable.tar.gz
FormatGZiped TAR Archive
Size1.14 MB
SHA104EF69527073F377C42D07FEBD99E06900CBB0F6
SHA256BE5987DC1386E5DF7A742CEB6050E3AE50F145A62C9E1542D58BC026892A020E
Technitium DNS Server

Technitium DNS Server is an open source tool that can be used for self hosting a local DNS server for privacy & security or, used for experimentation/testing by software developers on their computer. It works out-of-the-box with no or minimal configuration and provides a user friendly web console accessible using any web browser.

Nobody really bothers about domain name resolution since it works automatically behind the scenes and is complex to understand. Most computer software use the operating system's DNS resolver that usually query the configured ISP's DNS server using UDP protocol. This way works well for most people but, your ISP can see and control what website you can visit even when the website employ HTTPS security. Not only that, some ISPs can redirect, block or inject content into websites you visit even when you use a different DNS provider like Google DNS or Cloudflare DNS. Having Technitium DNS Server configured to use DNS-over-TLS or DNS-over-HTTPS forwarders, these privacy & security issues can be mitigated very effectively.

Developers regularly use the hosts file for configuring an IP address for a domain under testing. However, using the hosts file is cumbersome at times and can only be used to resolve domain name to an IP address. With a fully configurable DNS server running on your local machine, you can configure not just simple A records (for IP address) but, also configure other types of records like CNAME or MX etc. This allow you to have more control and power when you want to do testing that simulates the exact configuration that you have running on production.

Applications of using a locally hosted DNS server is limited only by the user's imagination!

Block Ads At DNS Level

Technitium DNS Server allows you to configure Block List URLs that gets automatically updated daily to block ads on your network. The Quick Add option lists popular block lists available for you to choose from.

Read More: Blocking Internet Ads Using DNS Sinkhole

Technitium DNS Server Ad Block List Configuration
Technitium DNS Server Block List Configuration

Privacy & Security

Technitium DNS Server is not configured out-of-the-box for privacy & security since it is your decission to choose which DNS provider to use. You need to decide your DNS provider and configure it to use secure protocol like DNS-over-TLS or DNS-over-HTTPS. The Quick Select option allows you to configure listed forwarders in a click.

Read More: How To Configure DNS Server For Privacy & Security

Technitium DNS Server Forwarder Configuration For DNS-over-HTTPS Protocol
Technitium DNS Server Forwarder Configuration

Features

  • Block Ads using one or more block list URLs.
  • Wildcard sub domain support.
  • Disable/Enable hosted zones for quick switching between staging & production.
  • Built-in DNS Client interface for resolving queries.
  • Import records feature allows to import records of live domain using built-in DNS Client interface.
  • Web console allows access over network using any web browser.
  • Recursive querying support.
  • DNS caching with cache browser interface in web console.
  • Forwarders setup to allow chaining other DNS servers like Google DNS or Cloudflare DNS.
  • Forwarders can be configured to use DNS-over-TLS or DNS-over-HTTPS for privacy and security.
  • Support for HTTP & SOCKS5 proxy allows routing DNS requests via different location.
  • IPv6 network support in DNS server core for querying.
  • Built-in system logs and query logs.
  • Cross platform implementation for running on Linux or macOS using Mono Framework or .NET Core.

How To Get Started

  1. Download and install the DNS server Windows service setup. You can use the portable zip/tar.gz file too by extracting and run the DNS Server app.
  2. Open http://localhost:5380/ on your favourite web browser.
  3. The web console will auto login using default username 'admin' and password 'admin'. Don't forget to change the password to disable auto login!
  4. Add one or more domain names as zones and configure recource records for them. Or, use the DNS Client and quickly import records into local DNS zone!
  5. Use nslookup command or built-in DNS Client to query the server to test it.
  6. If, you are going to use the hosted zones for testing, make sure you set TTL to a lower value like 10 seconds so that the response gets flushed quickly and you can shift quickly between staging & production zones by using the disable/enable zone feature. Use ipconfig /flushdns command on Windows to flush system DNS cache if needed. Note that web browsers do cache DNS responses for a minimum of 60 seconds irrespective of TTL value.
  7. Optionally, add forwarder DNS server IP addresses or URLs in DNS Settings so that the DNS Server uses them to resolve requests instead of root servers to improve response time. You may configure any public DNS server like Google DNS, Cloudflare DNS or OpenDNS.
  8. Configure DNS server IP address in the network configuration allowing the DNS server to be used by the system and other applications. You need to configure DNS server IP address for both IPv4 & IPv6 on the network connection. Try using loopback address '127.0.0.1' for IPv4 and '::1' for IPv6 and check if it works. If, for some reasons, the loopback address does not work, try using the local network IP address instead.
  9. If needed, configure your system firewall to allow inbound traffic to UDP & TCP port 53 so that, other computers or devices on the network can access this DNS Server.
  10. ???
  11. Profit!

Support

For more info, send an email to support@technitium.com. Any feedback or feature requests are welcome.