How to Bypass DNS Hijacking?
Please use our Smart Unblock VPN to bypass DNS hijacking. Log in to your account
and select the tab called Smart VPN. If you still want to bypass the
hijacking using regular DNS then please read on.
Important: Due to the complexity of this work around we don’t provide support for the setup. The guide is delivered as is and a certain level of technical expertise is expected.
Some ISPs are known to hijack DNS requests. As a result you will not get the 3 green check marks in your account home regardless of your settings being correct. Sometimes you will even get the 3 green check marks and only certain urls are hijacked by the ISP.
The solution is to direct all DNS request from port 53 to port 54 so the DNS request will escape the filtering. In order to do so you need a router, which support IP tables.
Add the following commands to the IP firewall:
iptables -t nat -A PREROUTING -i br0 -p udp --dport 53 -j DNAT --to 220.127.116.11:54
iptables -t nat -A PREROUTING -i br0 -p udp --dport 53 -j DNAT --to 18.104.22.168:54
or us this command instead to force Google DNS to go to our servers. This is not to prevent DNS hijacking by your ISP but to send Google DNS traffic to us.
iptables -t nat -I PREROUTING --destination 22.214.171.124 -j DNAT --to 126.96.36.199
iptables -t nat -I PREROUTING --destination 188.8.131.52 -j DNAT --to 184.108.40.206
Don’t forget to restart the router afterwards.