Technitium DNS Server
Get a personal local DNS Server for privacy & security.
Block Ads at DNS level!
Technitium DNS Server is an open source tool that can be used for self hosting a local DNS server for privacy & security or, used for experimentation/testing by software developers on their computer. It works out-of-the-box with no or minimal configuration and provides a user friendly web console accessible using any web browser.
Nobody really bothers about domain name resolution since it works automatically behind the scenes and is complex to understand. Most computer software use the operating system's DNS resolver that usually query the configured ISP's DNS server using UDP protocol. This way works well for most people but, your ISP can see and control what website you can visit even when the website employ HTTPS security. Not only that, some ISPs can redirect, block or inject content into websites you visit even when you use a different DNS provider like Google DNS or Cloudflare DNS. Having Technitium DNS Server configured to use DNS-over-TLS or DNS-over-HTTPS forwarders, these privacy & security issues can be mitigated very effectively.
Developers regularly use the hosts file for configuring an IP address for a domain under testing. However, using the hosts file is cumbersome at times and can only be used to resolve domain name to an IP address. With a fully configurable DNS server running on your local machine, you can configure not just simple A records (for IP address) but, also configure other types of records like CNAME or MX etc. This allow you to have more control and power when you want to do testing that simulates the exact configuration that you have running on production.
Applications of using a locally hosted DNS server is limited only by the user's imagination!
- Works on Windows, Linux, macOS and Raspberry Pi.
- Installs in just a minute and works out-of-the-box with zero configuration.
- Block Ads using one or more block list URLs.
- Run DNS-over-TLS and DNS-over-HTTPS DNS service on your network.
- Use public DNS resolvers like Cloudflare, Google & Quad9 with DNS-over-TLS and DNS-over-HTTPS protocols as forwarders.
- Advance caching with features like serve stale, prefetching and auto prefetching.
- Supports working as an authoritative as well as a recursive DNS server.
- CNAME cloaking feature to block domain names that resolve to CNAME which are blocked.
- QNAME minimization support in recursive resolver draft-ietf-dnsop-rfc7816bis-04.
- QNAME randomization support for UDP transport protocol draft-vixie-dnsext-dns0x20-00.
- ANAME propriety record support to allow using CNAME like feature at zone root.
- Primary, Secondary, Stub and Conditional Forwarder zone support.
- Host domain names on your own DNS server.
- Wildcard sub domain support.
- Enable/disable zones and records to allow testing with ease.
- Built-in DNS Client with option to import responses to local zone.
- Supports out-of-order DNS request processing for DNS-over-TCP and DNS-over-TLS protocols.
- Built-in DHCP Server that can work for multiple networks.
- IPv6 support in DNS server core.
- HTTP & SOCKS5 proxy support which can be configured to route DNS over Tor Network or use Cloudflare's hidden DNS resolver.
- Web console portal for easy configuration using any web browser.
- Built in HTTP API to allow 3rd party apps to control and configure the DNS server.
- Built-in system logging and query logging.
- Open source cross-platform .NET Core implementation hosted on GitHub.
- Windows: Download setup installer for easy installation.
- Linux & Raspberry Pi: Follow install instructions from this blog post.
- Cross-Platform: Download portable app to run on any platform that has .NET Core installed.
The DNS server HTTP API allows any 3rd party app or script to configure the DNS server. The HTTP API is used by the web console and thus all the actions that the web console does can be performed via the API. Read the HTTP API documentation for complete details.
Read the latest online help topics which contains the DNS Server user manual and covers frequently asked questions.
Become A Patron
Make contribution to Technitium by becoming a Patron and help making new software, updates, and features possible.
- Technitium Blog: How To Disable Firefox DNS-over-HTTPS On Your Network (Jul 2020)
- Technitium Blog: How To Enforce Google Safe Search And YouTube Restricted Mode On Your Network (Jul 2020)
- Technitium Blog: Technitium DNS Server v5 Released! (Jul 2020)
- Brian Wojtczak: Keep It Encrypted, Keep It Safe: Working with ESNI, DoH, and DoT (Jan 2020)
- phra's blog: Exfiltrate Like a Pro: Using DNS over HTTPS as a C2 Channel (Aug 2019)
- Scott Hanselman: Exploring DNS with the .NET Core based Technitium DNS Server (Apr 2019)
- Technitium Blog: Turn Raspberry Pi Into Network Wide DNS Server (Jan 2019)
- Technitium Blog: Blocking Internet Ads Using DNS Sinkhole (Oct 2018)
- Technitium Blog: Configuring DNS Server For Privacy & Security (Jun 2018)
- Technitium Blog: Technitium DNS Server v1.3 Released! (Jun 2018)
- Technitium Blog: Running Technitium DNS Server on Ubuntu Linux (Nov 2017)
- Technitium Blog: Technitium DNS Server Released! (Nov 2017)