Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Please teach me how to remove DNS completely and permanently.


26 Aug 2013   #1
hma

Windows 7 64 bit
 
 
Please teach me how to remove DNS completely and permanently.

Hi everyone,

Could somebody teach me how to remove Windows 7 (Home Premium) DNS completely and permanently?

I want to use hosts file instead of DNS to visit less than 5 websites only.

I am not asking how to disable DNS Client Services.

Help will be greatly appreciated.

My System SpecsSystem Spec
.

26 Aug 2013   #2

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x86 Service Pack 1 - Linux Mint Mate 14 x64
 
 

What do you mean remove DNS?

This may be useful to read -Domain Name System - Wikipedia, the free encyclopedia
My System SpecsSystem Spec
26 Aug 2013   #3

Windows 7 Professional x64 SP1 ; Windows Server 2012 R2 Standard
 
 

Aye, x BlueRobot is correct. Removing DNS is like trying to delete the foundations of the internet

If you are obtaining an IP address stack via DHCP then it is almost certain that your DHCP server is handing out a DNS sever for you to use. Please follow this tutorial on the interface used to connect to the internet but rather than entering a severs IP address please leave the box empty.

DNS Addressing - How to Change in Windows 7

To apply to all clients within the network you would need to edit the DHCP scope options. Typically in most home environments this is managed by the router therefore you would need to make the changes there.

Note   Note
Remember to either reboot the machines or type ipconfig /renew into a command prompt otherwise the clients will still use their old leases.


Also understand that this will not restrict any internet access but rather prevent you from accessing severs using their hostnames. Also you may find issues with websites that use load balancing unless you map all IP addresses because if the one IP address you use goes down then you will not be automatically redirected a working server. An example of Google's multiple servers can be seen below:

Please teach me how to remove DNS completely and permanently.-nslookup.jpg

Another point to consider is that internet IP addresses can change and do change all the time therefore any previous mappings in your hosts file will be rendered useless.

All in all, I would strongly advise against such task and personally would only use the HOSTS file to map local computers rather than internet addresses. If you wish to restrict internet access then I would setup an Access control list to block or allow only specific websites offering a more redundant option.

Hope This Helps,
Josh


My System SpecsSystem Spec
.


26 Aug 2013   #4

Windows 7 Ultimate x64 x2 + x86 + Windows 8.1 x64 x2
 
 

The safest way I can think of achieving this in Windows 7 is by the use of parental controls, create a standard user, apply parental controls, set to use a site white list and add your allowed sites to this list

This just controls access on a user by user basis whilst not risking issues when system processes are blocked from access the net
My System SpecsSystem Spec
26 Aug 2013   #5
hma

Windows 7 64 bit
 
 

Thank you very much for these quick answers.

To clarify my request further more. I want to block my PC from going out using any DNS services on the Internet. I want to use hosts file completely instead of DNS servers. I don't mind keeping updating hosts file regularly. I am not afraid of website load balancing might make me update hosts file more often.I just do not want my PC to use any DNS. Maybe DNS Client Service removed or uninstalled would do the job......, I am guessing.

I want my PC to be unable to connect to any DNS completely and permanently. I want that function disappear forever.

Thank you very much for your help.
My System SpecsSystem Spec
27 Aug 2013   #6

Windows 7 Profession x64
 
 

Could you statically assign your DNS servers to your loopback address (127.0.0.1)? Go to network and sharing center in your control panel, click change adapter settings, right click your network adapter, and change your DNS servers to static under IPv4 and / or IPv6 by clicking on their respective properties. I would start here and then look at blocking DNS with something like Peerblock or by crippling services and / or changing firewall rules. There is a default windows outbound firewall rule allowing DNS (UDP-Out) that you could try disabling. Good luck!
My System SpecsSystem Spec
27 Aug 2013   #7

W7 Pro SP1 64bit
 
 

Quote   Quote: Originally Posted by diplo View Post
Could you statically assign your DNS servers to your loopback address (127.0.0.1)? .....
@OP,
The method quoted above is the best way to point DNS queries back to the local computer... but apps can still get to web based servers if they know the IP address of interest. You don't want to break the DNS process as doing so will slow stuff down as apps wait for a DNS reply.

Disabling/removing the DNS service will not stop DNS queries from being made. It will just force each app to make their own DNS queries. I keep the DNS service disabled and you should too for this setup.

How will you handle the Windows update process and anti-virus updates?

Let us know how this works out for you.
My System SpecsSystem Spec
27 Aug 2013   #8
hma

Windows 7 64 bit
 
 

Thank you very much for these good suggestions.

Once I finish testing, I will report it here to let everybody know the results.

I do not worry about Windows update and anti-virus updates. This PC will be used to do online banking and stock trading only. No surfing at all. I use at least one or two external commercial firewall(s) (like Palo Alto, Fortinet, Check Point, or Sonicwall) to protect it.
My System SpecsSystem Spec
28 Aug 2013   #9

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x86 Service Pack 1 - Linux Mint Mate 14 x64
 
 

Quote   Quote: Originally Posted by hma View Post
I do not worry about Windows update and anti-virus updates. This PC will be used to do online banking and stock trading only. No surfing at all. I use at least one or two external commercial firewall(s) (like Palo Alto, Fortinet, Check Point, or Sonicwall) to protect it.
That's even more reason to check Windows Updates and anti-virus definitions.
My System SpecsSystem Spec
28 Aug 2013   #10

Windows 7 Professional x64 SP1 ; Windows Server 2012 R2 Standard
 
 

I wouldn't rely on your firewall to protect you unless it has some sort of intrusion prevention system. An attack can come in the same port as your web traffic (TCP port 80). Equally if you get infected by any malware whether it be from a thumb drive or the internet then it is likely for it to remotely connect to a host without your knowledge. This could be done using TCP port 80 which is the same port as your HTTP traffic.

Also, it is possible for some malware to spoof the DNS servers and use that therefore to reduce this risk I would strongly recommend placing a deny inbound statement on the inside interface of your firewall to deny any DNS requests (UDP port 53). Please understand that this will not restrict any communications that use IP addresses and if I were to make some sort of application I would set the machine to connect to an IP address rather than a URL since my remote server will most likely not be in the public DNS servers.

Note   Note
This would apply to all hosts if done on your firewall. If you wish to only do it on a single PC then you would need to edit the personal firewall


Just a caution that you may wish to consider,
Josh
My System SpecsSystem Spec
Reply

 Please teach me how to remove DNS completely and permanently.




Thread Tools



Similar help and support threads for2: Please teach me how to remove DNS completely and permanently.
Thread Forum
How to Completely Remove Chrome Browsers & Mail
How to permanently remove programs from the Start Menu Performance & Maintenance
Solved How to completely remove AMD (ATI) Applications Graphic Cards
Solved Permanently Remove My Document Sub Folders General Discussion
How do i completely remove everything? Backup and Restore
Remove hidden updates permanently Windows Updates & Activation
How can you completely remove Windows 7 from a PC? Installation & Setup

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 12:30 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33