NextDNS offers an extremely important layer of security to your internet connectivity.
If you are not using some form of enhanced secure DNS protection then your protections is 60-95% lower than what it should be.
Configure NextDNS correctly by following these instructions as a guide.
SECURITY TAB
- Threat Intelligence Feeds – ON (Critical)
- AI-Driven Threat Detection
- Google Safe Browsing – ON (Critical)
- Cryptojacking Protection
- IDN Homograph Attacks Protection – ON
- Typosquatting Protection – ON
- Domain Generation Algorithms (DGAs) Protection – ON
- Block Newly Registered Domains (NRDs) – ON (Critical)
PRIVACY TAB
- NextDNS Ads & Trackers Blocklist – ON
- AdGuard DNS filter – ON
- OISD – ON (Good)
- AdGuard Mobile Ads filter – ON
- AdGuard Tracking Protection filter – ON
- EasyList – ON
- 1Hosts (Lite) – ON (Good – Will require some whitelisting)
- HaGeZi – Multi PRO – ON (Good – Will require some whitelisting)
- Block Disguised Third-Party Trackers – ON
ALLOW LIST
You can watch you logs or check if you get a few websites blocked that shouldn’t be and whitelist them here.
Here are some useful optional ones to whitelist from the start.
- google.com
- microsoft.com
- office.com
- azure.com
- apple.com
- icloud.com
- whatsapp.net
- googleapis.com
- googleadservices.com
- googletagmanager.com
- ubnt.com
- ui.com
- googlesyndication.com
- dns0.eu
- starlink.com
- mwbsys.com
- malwarebytes.com
- mb-cosmos.com
- mbamupdates.com
- threatdown.com
- eset.com
- s3.amazonaws.com
- adobe.com
- adobe.io
- nextcloud.com
- statcounter.com
