Tweet
How to protect yourself from Internet Censorship with NxFilter.
Internet Censorship is a major issue these days. It's getting bigger and darker. People want to protect their private information from governments and big-techs. On DNS level, people started using 'DNS over HTTPS' or 'DNS over TLS' for keeping their DNS usage private. However, if you want to hide it from the eyes of big-techs, you might have gone wrong way. Those Secure DNS services are provided mostly by big companies and they are one of your enemies in this battle in the first place.
To avoid of using these public DNS services, you may run your own DNS server for hiding yourself from these public DNS services and you can use NxFilter for that. However, if you still use those public DNS services as the upstream server for NxFilter then it's not perfect yet. It can be better. You can run your own recursive DNS server in your local network and make it the upstream server to your NxFilter. If you don't want to run it on another machine then you can run it on the same machine with NxFilter. In old days, it is possible through its local config file and since v4.3.9.2 you can specify DNS port number when you add a upstream DNS server on 'DNS > Setup'.
For example, you install Unbound or MaraDNS's recursive DNS server and change its DNS port to a non-standard one that is 5353. In this case, you can speicify the port through NxFilter GUI using a colon like '127.0.0.1:5353'. If you are using older versions of NxFilter than v4.3.9.2, you can add 'local_resolver_port = 5353' on /nxfilter/conf/cfg.properties.
Now, you don't use any public DNS services. This is the best option when it comes to keeping your privacy on DNS level.
To avoid of using these public DNS services, you may run your own DNS server for hiding yourself from these public DNS services and you can use NxFilter for that. However, if you still use those public DNS services as the upstream server for NxFilter then it's not perfect yet. It can be better. You can run your own recursive DNS server in your local network and make it the upstream server to your NxFilter. If you don't want to run it on another machine then you can run it on the same machine with NxFilter. In old days, it is possible through its local config file and since v4.3.9.2 you can specify DNS port number when you add a upstream DNS server on 'DNS > Setup'.
For example, you install Unbound or MaraDNS's recursive DNS server and change its DNS port to a non-standard one that is 5353. In this case, you can speicify the port through NxFilter GUI using a colon like '127.0.0.1:5353'. If you are using older versions of NxFilter than v4.3.9.2, you can add 'local_resolver_port = 5353' on /nxfilter/conf/cfg.properties.
Now, you don't use any public DNS services. This is the best option when it comes to keeping your privacy on DNS level.
Comment