NextDNS can easily be bypassed on Macbook
Hi all,
Just realised my teenage child has worked out they can go into the macbook air settings and navigate to the wifi network and manually enter a new DNS address to bypass. I might be wrong but I'm sure when I first set NextDNS up this was all locked down. If I set it back to 127.0.0.1 then it starts working again. But they will just revert it back now they know they can.
Is this normal or is something setup wrong. I removed and re-added the profile but still the same.
Thanks,
Aaron.
7 replies
-
That's expected - your only option is to prevent their account on the mac (or create a new account with fewer permissions) from being able to change that setting.
-
The easiest way to bypass the DNS is to use DoH with IP in the browser, i.e. https://1.1.1.1/dns-query. Every primary school pupil knows this trick by now.
-
Thanks John,
Guess the kids are about to hate me even more.
-
Well I setup NextDNS as it covers everywhere, not just when they are on wifi. Otherwise they just hotspot off their phone and bypass it. So sounds like NextDNS isnt as good as i thought. Just feels like a never ending battle
-
False.. "The easiest way to bypass the DNS is not to use the SERVICES!".
- Disable the Apps,
- Change DNS settings from nextDNS to cloudflare DNS, in systemOS or browser
- by Using Proxy or VPN with settings or apps
= means Your Not Using their Configuration and/or Sevices.
You can use RECOMENDED configuration for macOS device by click ON YOUR Apple Conf Prof Generator ---> link. And check the four item, and click Download button, it's only download a file configuration for your Mac. Next follow the instruction ON your Mac.
THIS ONLY FOR HARDENING YOUR NEXTDNS SETUP ON YOUR MAC PC. -
** Extra
My macOS dns setup is automatic DHCP, and trying to block everything on my NextDNS dashboard. You see the result. I use browser FireFox without proxy and other VPN things.
note: "My ISP don't have IPv6 connection, and they/my country have sneaky blocker."
The schema is:
Router -------- auto DHCP Relay --------> my MacOS/Device
Content aside
- 1 mth agoLast active
- 7Replies
- 303Views
-
4
Following