Skip to main content

User Manual

How to ignore your ISP's DNS

Usually, an ISP automatically provides its users with their domain servers (DNS). Still, you may need to stop using these servers and replace them with public DNS or VPN provider addresses in some cases.

Starting with KeeneticOS 3.1, you can enable the option to ignore (disable) DNS servers automatically received from your provider in the web interface. This option is available for connections on 'Wired' page (enabling PPPoE/PPTP/L2TP), 'Wireless ISP', 'DSL connection'.

Let's look at an example. In the router's web interface, click 'More details' on the 'System dashboard' page in the 'Internet' panel. In the 'DNS-servers' line, you can see the DNS addresses automatically received from the ISP, and additional servers specified manually.

ignore-dns-01-en.png

You can find the 'Ignore DNS' option on the 'Wired connections' page. It blocks the use of DNS server addresses received via DHCP for the current connection.

When using an IPoE connection (without authentication) or with authentication via PPPoE/PPTP/L2TP protocol, you can find this setting on the 'Wired' page in the 'IP and DNS settings' section. The settings for WISP and ADSL connections are on the respective 'Wireless ISP' and 'DSL connection' pages.

Click 'Show advanced IP settings' and enable the 'Ignore DNS' option.

ignore-dns-02-en.png

Important

Once you enable 'Ignore DNS' and save the settings, you will automatically reconnect to your ISP (disable and enable the Internet interface).

After disabling DNS, the 'DNS Servers' line on the 'System dashboard' page will no longer display the addresses automatically received from the ISP.

ignore-dns-03-en.png

Important

Different ISPs have various network configurations. Disabling the addresses of the DNS provider may lead to tunnel connection failure (PPPoE/PPTP/L2TP), disruptions in the operation of additional services, and others. Before you ignore the DNS provided by your ISP, make sure that the settings do not include the domain names of the servers that authenticate your connection. If they contain a server address in the domain name format, such as l2tp.aa.net.uk, in this case, you cannot disable DNS on the connection that is used to connect to the authentication server. Usually, it is a 'Wired' connection (ISP), as this will make it impossible to determine the server's address providing access to the Internet.

Tip

If one of the Internet filters (SafeDNS, AdGuard DNS, etc.) is enabled in the router settings, all DNS requests will be sent to the service addresses. In this case, the provider's DNS servers, and additional manually added ones will not be used.

If the router settings use DoT/DoH servers, they are not displayed on the 'System dashboard' page in the 'DNS Servers' line. When the ISP's DNS is disabled, the DoT/DoH service addresses will be used.

You can find more information in the 'Using public DNS servers' article.