Anti DNS Nawala

By back2arie

Above is message from DNS Nawala when you access “negative” content, Nawala will block if the website you’re about to visit is detected as one of this category: pornography, gambling, phising/malware, racist, and proxy.

So, how to bypass it?
The quickest way is by changing your DNS manually, you can use Google DNS or OpenDNS. Unfortunately, this method will NOT work if your network administrator or ISP is forwarded all DNS request to DNS Nawala.

Use anonymous proxy
Errr, the anonymous proxy itself is blocked, even if you build it on your own it might now work for all content (video/ flash, i’m not sure), and furthermore it will slow down your connection.

Change OS-level DNS request port
Since your ISP forward all DNS request to DNS Nawala, so you need to tell your OS (and all applications) to NOT use the port 53. I’m not sure if it’s possible, since the port 53 is already “patented” for DNS request. Furthermore, you need build your own DNS server to serve the request and listen on unusual port.

Use Hosts File
This the most possible way for me, since it doesn’t need DNS request at all. The problem is you don’t want to write all of the domain you want to visit (that have been blocked) manually, so we need automate tools to handle it. That why the AntiNawala project came up in my mind.

PS: I’m not against the DNS Nawala Project, this is for educational purpose only.

Related Posts:

4 Comments Leave a comment

  1. Hahaha jgn lupa bagi2 hasil downloadnya yak

  2. Hi azhari, congrats for your latest projects ! You should also try tor browsers – https://www.torproject.org/. Tor browsers can works on almost any network “barriers”, it also keep user browsing the internet anonymously.

    • Yes, it works but all we want is “natural” way to bypass the barriers, since using tunneling will slow things down.

    • It’s good to see that you’re prepared for an ougate but I don’t see any reason for anyone rushing off to change their DNS nameservers. Just for the record, though BlockAid’s intentions seem good, both their DNS servers finished dead last on my computer in DNS Benchmark, a DNS name resolution speed test for Windows, against about 100 other servers. My ISP’s servers finished in first and second place. The average cached name retrieval speed, which is what is most important, was 13 milliseconds for both the ISP’s servers. It was 156 and 167 milliseconds for the two BlockAid servers, which is much slower a factor of around 12:1.You might want to perform the test on your own computer before changing anything, because this would definitely slow down your internet browsing speed. You have to add the 2 BlockAid servers given on the configuration page.In any case, you wouldn’t really have to, or want to, change over to their servers now. You can always do so if and when this domain name gets snatched. Then you can add the new IP address to your hosts file and change back to your regular DNS servers.

Share your thoughts

*