Configure pfSense to Use Public DNS Servers
There’s multiple reasons for wanting to use public DNS servers. Your ISP’s DNS servers might be unreliable or slow. Your ISP might redirect invalid domains to advertising pages. And depending on your country, they might even block you from going to certain websites. Or maybe you’re just looking to use DNS servers that support DNSSEC.
Whatever your reason is, configuring the use of public DNS servers in pfSense is quite easy. Read this guide and find out how.
Log into pfSense
Open your web browser and log into your pfSense system
Pick Your DNS Servers
Now you’ll need to decide which DNS servers you’ll be using.
Here’s a few popular open DNS servers:
Cloudflare Primary: 220.127.116.11 Secondary: 18.104.22.168 Features: DNS-over-HTTPS, DNS-over-TLS, Fastest DNS resolver (14ms global average), Client IPs not stored, Logs deleted within 24 hours
Google Primary: 22.214.171.124 Secondary: 126.96.36.199 Features: DNSSEC
Level3 Primary: 188.8.131.52 Secondary: 184.108.40.206
Norton ConnectSafe Primary: 220.127.116.11 Secondary: 18.104.22.168 Features: DNSSEC
Verisign Primary: 22.214.171.124 Secondary: 126.96.36.199
Yandex.DNS Primary: 188.8.131.52 Secondary: 184.108.40.206
If you’re looking for servers which don’t keep logs, take a look at the OpenNIC Public Servers list.
Go to DNS Server Settings
On the menubar, click System and then General Setup
Scroll down to the DNS Server Settings section
Enter in your new DNS servers and then click the Save button to apply your changes
Congratulations! You’ve now configured pfSense to use open DNS servers.
Do you have a favorite DNS server that you use? Do they offer DNSSEC, not keep logs, are reliable and low latency? Let us know in the comments below! We’d love to hear what you’re using.