Setting up GoGuardian DNS
GoGuardian DNS is a DNS internet filtering solution protecting devices at the network level. GoGuardian DNS blocks website URLs that are part of our ML-generated categories available on GoGuardian Admin. Setting up GoGuardian DNS doesn't require any additional hardware or software installs.
NOTE: GoGuardian DNS is a separate product. It is not included with GoGuardian Admin, but policies from GoGuardian Admin can be used for GoGuardian DNS. For sales inquiries, please reach out to your account executive.
Add a Network
The first step in using GoGuardian DNS is to add your network(s). A network is a group of devices that are connected to each other with their addresses mapped to a public IP address. All traffic originating from the network’s public IP address is identified as coming from that network.
- Navigate to Configuration > DNS Networks (admin.goguardian.com/policy/dns)
- Click on the green Create Network button on the right, enter a name for your network then click the Add button
Configure Network Settings
- Click the pencil icon to edit your Network
- Add your network's public IP address(es)
- Note: You must use your public IP addresses, and not local/internal IP addresses. For your list of public IPs, please reach out to your school/district's ISP. Each IP address can only be used once.
- (Optional) Configure the following settings:
- Logs and Statistics: You have the option to turn data collection on/off. If this setting is toggled "off", no data will be collected and the DNS Reporting page will not capture any activity
- Block Suspicious Responses: If enabled, DNS responses carrying IP addresses listed in RFC1918 will be blocked, and it can prevent DNS rebinding attacks. For example, if a domain points to 192.168.1.1, this option would block that request.
After your networks have been added, assign policies to your network to extend filtering to any device that connects to the internet from that network. Policies can be existing policies that you have created within GoGuardian Admin.
Note: DNS filtering supports only policies defined at a domain level (e.g., www.example.com, www.e1.example.com) and categories of websites, and disregards rules with specific paths (e.g., www.example.com/e1)
Point your DNS to GoGuardian DNS Resolvers
Lastly, direct your network traffic to GoGuardian DNS by explicitly changing your DNS settings on your network devices (e.g., firewall or router) to our DNS resolvers:
Tip: Before you change your DNS settings, write down your current DNS server addresses. It’s recommended that you keep these numbers for backup purposes, in case you need to revert to them at a later date.