The technique of DNS filtering, also known as DNS blocking, is employed for security purposes to prevent access to domain names or IP addresses that are malicious, untrustworthy, or otherwise undesirable. This is achieved by comparing the DNS query made by the user to a list of blocked domains or IP addresses. In case a match is detected, the domain is not resolved, and access is denied.

Implementing DNS filtering can be done by blocking websites based on their IP address or domain name.

  • In the case of IP address blocking, the DNS resolver will attempt to resolve every domain, but if the IP address of the querying device is on the blocklist, the resolver will not return the result.
  • In the case of blocking by domain, the DNS resolver does not even attempt to resolve or look up the IP addresses for particular domain names.

