Recently, in connection with the massive blocking of file-sharing torrent trackers and other objectionable Internet resources, the use of publicly available free public DNS servers, which are an excellent alternative to ISPs, has become relevant. The second reason for using them is private problems with the provider's DNS. Have large operators As a rule, there is no such connection as Rostelecom, Beeline or Dom.ru. But small providers or home networks often experience crashes and denials of service. This usually happens due to savings on hardware and the use of old, almost "killed" hardware.
The third reason why you should try public DNS servers is, as a rule, the higher speed of work and response. not every provider's server responds as quickly as Google or Yandex. Well, the last, fourth reason is that many third-party filtering services have phishing sites, malicious and fraudulent resources, and some also have erotica with pornography.

Here is the most comprehensive list of publicly available free domain name servers:

Google Public DNS

Free of charge public servers from the world's largest media giant, Google:
DNS for IPv4:

8.8.8.8 8.8.4.4

Servers for IPv6:

2001:4860:4860::8888 2001:4860:4860::8844

Yandex.DNS

Fast and reliable DNS service. Provides the ability to use safe and baby filters

77.88.8.8 77.88.8.1

Safe - Blocks phishing and fraudulent sites:

77.88.8.88 77.88.8.2

Family - Blocking sites for adults, erotica and pornography:

77.88.8.7 77.88.8.3

Norton ConnectSafe

A separate service from Symantec Corporation, a security company for over 20 years.
The following publicly available free DNS servers are available.

Without filtration:

198.153.192.1 198.153.194.1

Safe (filter on malware, phishing and fraudulent sites):

198.153.192.40 198.153.194.40

Safe plus without pornography:

198.153.192.50 198.153.194.50

Family friendly (safe, no porn, erotica and adult sites):

198.153.192.60 198.153.194.60

Comodo Secure DNS
Another player developing their solutions in the computer security market is Comodo. She also has her own special service of free public servers.

8.26.56.26 8.20.247.20

Other public domain name servers

Cisco Systems:
64.102.255.44
128.107.241.185

SkyDNS Service:
193.58.251.251

OpenDNS:
208.67.222.222
208.67.220.220

DNS Advantage:
156.154.70.1
156.154.71.1

Verizon Level 3 Communications:
4.2.2.1
4.2.2.2
4.2.2.3
4.2.2.4
4.2.2.5
4.2.2.6

ScrubIT:
67.138.54.100
207.225.209.66

GTE:
192.76.85.133
206.124.64.1

One Connect IP:
67.138.54.100

Exetel:
220.233.167.31

VRx Network Services:
199.166.31.3

SpeakEasy:
66.93.87.2
216.231.41.2
216.254.95.2
64.81.45.2
64.81.111.2
64.81.127.2
64.81.79.2
64.81.159.2
66.92.64.2
66.92.224.2
66.92.159.2
64.81.79.2
64.81.159.2
64.81.127.2
64.81.45.2
216.27.175.2
66.92.159.2
66.93.87.2

Sprintlink:
199.2.252.10
204.97.212.10
204.117.214.10

• All Music Downloader - how to download music ...

Greetings, brain engineers! Shouldn't we combine our internet devices in the house using a DNS server made by do it yourself from WiFi module and Foscam webcam interface? I think it will be interesting, so let's go!

Chosen for this homemade Foscam webcam is controlled directly from your smartphone, has its own web interface, works in any browser and on any device, even with your phone's 3G connection, third party applications does not require and is password protected.

Video streams from cameras are broadcast to separate windows, quickly and flawlessly, and under complete control.

I want to warn you right away - I AM NOT RESPONSIBLE for misuse or damage caused by this project in any way! You act at your own peril and risk!

What is for this brain project necessary:

• a web server with PHP support with a domain name,
• wi-fi module Esp8266 ESP-01,
• push button - 2 pcs.,
• pull-up resistor 2k2 or similar - 2 pcs.,
• USB-TTL adapter (for programming the wi-fi module) and several pin-connectors ("female"),
• voltage regulator Ams1117 3.3V (to reduce the voltage from 5V to 3.3V to power the wi-fi module),
• power supply 5V 1-2A (preferably 2A),
• in the first version of the layout: if there is enough space inside the case of the power supply, then the wi-fi module is placed inside this case,
• in the second version of the layout: the power supply has a USB female connector, then you will have to add a male USB connector to the module board and use it to supply power,
• broken USB stick,
• updated Arduino IDE
• optional: Foscam webcams to work with the web interface
• to ensure: blinking LED, to indicate successful download and waiting for download
• internal server allowing WAN IP ( this version connects to an external site for an IP: checkip.dyndns.org).

Step 1: Prepare the Wi-Fi module for programming

In order for the module to be programmable, it needs to be slightly modified:

• solder two resistors - one to the CH-PD pin, the other to RST, solder both free resistor leads to the 3.3V pin,
• solder two push buttons - one between GPIO0 and Ground, and the other between RST and Ground.

It is better to solder from the upper side of the module board, so that the contacts of the lower side are left for mounting the pin connectors. If desired, the circuit can be assembled using a breadboard, but brain solder still more durable, although see for yourself.

In the next step, the power supply will be finalized, but I immediately warn you: the USB output of your computer is not suitable for powering the ESP module !!!

Step 2: Modification of the power supply - lowering the voltage from 5 to 3.3V

The 5V-th power supply unit should produce "reliable" 1A, or better 2A, since the module is rather "gluttonous" during the transmission of the Wi-Fi signal.

IN homemade we use a voltage regulator Ams1117 3.3V, because a voltage divider assembled from resistors is likely to "give out" too little current, and even if we get 3.3V to power the module, we will still be disappointed. And this regulator is an inexpensive and best solution.

I did not use the capacitor and resistor that, according to the instructions, should be added to the regulator, because it operates from a stable power source, and I will say that this brainwave has been working reliably for several years.

pin 3 - 5V (orange wire)
pin 2 - 3.3V (yellow wire)
pin 1 - GND (two blue wires)

Several wires with pin connectors can be soldered to the contacts, thereby simultaneously obtaining two voltage sources at 5V and 3.3V, which is very useful when assembling on a breadboard. In this case, do not forget to add two grounding wires, for +3 and + 5V, and for reliability, fasten all the wiring with a plastic clamp-tie.

To connect these wires to an ESP module (which has male connectors), you will need intermediate wires with female male connectors at the ends.

Step 3: Connecting Wi-Fi module to USB-TTL adapter and 3.3V voltage regulator

Connections (module - adapter - regulator)

GND - - - - GND - - - - GND
TX - - - - - RX
RX - - - - - TX
3,3 — — — — — — — — — — — — — 3,3

Ground pins of the voltage regulator, module and adapter are connected together, 3.3V coming from the regulator is connected to the input of the ESP-module.

In no case do we connect the ESP module with the 3.3V contact of the adapter, even if they are on it, as this can damage the USB port of the computer, because it does not have protection against current of the same rating that is used in this brainwashing! And to power the ESP module, always use a power supply with the required parameters.

You should be aware that some TTL-USB adapters have a 5V logic circuit, which is not suitable for our craft, only 3.3V logic is needed, otherwise the ESP module will be damaged. The type of logic can be determined using a voltmeter by connecting its probes to the TX and Ground pins, and if necessary, the voltage can be reduced by adding a level shift or voltage divider.

Step 4: Configuring Files on Web Hosting

Create a folder "/ ip" (the name is case sensitive) in the root directory of your public_html folder, and unpack / ip files into it with a resolution of 644.

Htaccess restriction prevents users from listing files in this folder because it cannot be password protected, otherwise the ESP8266 module could not access it and execute files inside it.

input.php and input2.php generate according to the browser URL ip.txt and ip2.txt with the updated IP of the ESP8266 module, the current code supports 2 different locations, and to add something else you just need to edit these files.

To control a FOSCAM camera, you need to create a “/ cam” folder (again, case sensitive) in the root directory of the public_html folder, and unpack / cam files into it with a resolution of 644. Protect this folder brain password, if cpanel is available on your server, then you can find the "password protection" icon and set a password that will be requested when the browser is instructed to go to www.yourhost / cam, then a dialog box will pop up in any browser asking for this password, all this will protect access to cameras.

foscam.php contains the camera interface, as well as the date / time stamp of the ip files and the current ip location. By the date / time stamp, you can see if the module is working. In this case, the time zone may not be displayed correctly, since it shows the time on the server.

The IP can be changed manually, it will be recorded in ip.txt and ip2.txt, and for this you need to enter ip in the field and click update ip.

interface.png and interface2.png are transparent images that tell the interface how the screen will be displayed. You need to edit foscam.php and set the value, static or ptz, corresponding to your FOSCAM camera. By default, the resolution is 320x240, but clicking on the control center opens only this camera with the best refresh rate at a resolution of 640x480.

To edit foscam.php, you can use a code editor or HTML editor that can work in WYSWYG mode.

During work brainpayers the files ip.txt and ip2.txt will be automatically recorded, containing the updated ip of two locations where two different boards... Every hour (or when you specify) the board will connect to the router via wi-fi, receive an ip-address and register it in a txt file on the server. And even if the connection to the Internet is lost or the power is turned off, after the elimination of these problems, the ip will be periodically updated.

Step 5: Configuring FOSCAM Cameras and Router

On the TP-LINK router configuration page:

We look at the settings in the photo, they will help to avoid a conflict when binding the MAC address and LAN-ip, the router will provide only the assigned LAN-ip for this MAC address.

Virtual servers ( virtual servers) - you need to add the local ip of your camera and the corresponding ports.

We set the DHCP server enabled, and also check if UpnP is enabled.

You can also customize remote control your router, there is a corresponding firewall sub-item for the TP-Link router.

Do not change the default login, as the router must be public. Further in the corresponding brainfields you should set 255.255.255.255 and the port, as a rule, 8080.
On the FOSCAM camera settings page:

Username and password - you should set a new username and password, and do not forget to “find and replace” them in foscam.php instead of admin and password.

For "Basic Network settings" set: "Obtain IP from DHCP Server".
In the Http Port item, set: 8081, 8082 8083 sequentially to your cameras.
In UPnP Settings set: Using UPnP to Map Port. This will help re-establish the connection after a power outage.

After configuring the router and cameras in order for the settings to be updated, they should all be rebooted, with the router in the first place.

If the cameras and the router are configured correctly, then they can be remotely accessed from your Wan IP address, for example: http://187.34.157.22:8081. You can check your Wan IP at https://www.whatismyip.com/

Step 6: coding and programming the ESP8266 module with the Arduino IDE

For programming homemade you need to open the attached sketch in the Arduino IDE, and in the corresponding lines set the ssid "// your wifi ssid" and the password "// your wifi pwd" of your WiFi router, as well as the name of your host "// your host without / IP" and the path to the "/ ip" folder containing the server files, you do not need to change it.

You may need to change the line

url + = "input.php? ip =";

which appears twice in the sketch, and if you have a second module, just change to input2.php.

Before starting to download the code, you need to set the board type correctly, for this tool submenu you should select "Generic ESP8266", and if this is not the case, add additional boards in your preferences.

To download, you need to hold down the GPIO0 button, quickly press the RST button, and then release the previous one (GPIO0 button). Next, run compilation in the IDE and brain load.

If all goes well, opening the serial port monitor at 9600 baud (bps) will show the following:

Connected To:
IP address: 192.168.0.103 (LAN IP)
Connected - Acquiring WAN IP:

connecting to
Requesting IP Update: /ip/input.php?ip=xxx.xxx.xxx.xxx
Ok

Step 7: Mounting the boards in the chassis

After checking homemade for operability, it is necessary to place its electronics in the case, thereby making an independent completed device.

If in the building of your choice for brainwashing there is enough free space, the resistors and buttons can be connected as shown in the photo, but if you plan to reprogram it later, then you should not place the board inside the case.

First option: Placement inside the enclosure
To do this, you need to open the case of the old power supply, unsolder the black (outgoing) wire with the connector, and then place the module board and voltage regulator in the case, having previously insulated them, and "power" from those contacts to which the outgoing wire was soldered. Components can be insulated with suitable foam tape or hot glue.
As a result, a power supply should be obtained, without any wires, and in this option the power supply can be 5V 1A.

Variation this method the layout can be the placement of boards inside the power supply having a USB-female connector at the output. Then the boards should also be fixed inside the case, insulated, and powered from the contacts of the USB connector. Thus, through this modified power supply, you can still charge your phone, but the truth is the power supply should provide 5V 2A.

Option 2: Placement outside
If you have a non-working USB flash drive that can fit motherboards homemade, then you can use it.

You need to disassemble the USB flash drive, remove the memory card, and in its place place the WiFi module and voltage regulator, and power them through the USB connector of this flash drive. In this case, you will also need to cut the module pins so that it fits into the body of the flash drive. AND NEVER CONNECT this modified flash drive to your computer's USB port!

Then the USB flash drive with the module inside must be connected to the power supply and check for WiFi signal using your smartphone. And in general, check the performance of the finished brainwashing you can go to /cam/foscam.php of your server through your browser. And yet, it should be updated with the current ip and date / time stamp.
That's all, I hope this information brain articles will be useful to you!

Sometimes it is necessary to register DNS for a computer with a dynamic IP address. An easy way to do this is with services like dyndns, described in the recent topic, Bind a Domain and a Dynamic IP. Sometimes this approach works badly enough.

For example, in my situation, the provider sometimes changes my public IP address. This sometimes happens, usually every few months. Also, my home computer rarely reboots. During this time, the dyndns service, which I used earlier, managed to send me inactivity alerts a couple of times in order to disable the "unused" account. It is also impossible to switch to a manually assigned DNS zone, because sometimes the address still changes. And usually you find out about this when you need access to home computer Here and now.

To implement the described method, you need a server on the Internet with a DNS server bind on it. And also the domain zone, the subdomain of which we will allocate for our computer. The variant with connecting a Linux computer to a Linux server is described. For the use of others operating systems you will need to read the manuals and modify some of the steps.

So:
1. We have an installed bind9 server with the server.org domain
2. Create a zone client.server.org.zone:

$ ORIGIN.
$ TTL 10; 10 seconds
client.server.net IN SOA ns1.server.net. hostmaster.server.net. (
18 ; serial
10800; refresh (3 hours)
3600; retry (1 hour)
604800; expire (1 week)
10 ; minimum (10 seconds)
$ TTL 3600; 1 hour
NS ns1.server.net.
NS ns2.server.net.
MX 10 client.server.net.

Here servers ns1.server.net and ns2.server.net are DNS servers for our zone, client.server.net is the address of our home computer

3.Generate keys on the client:
client # cd / etc / namedb / keys
client # dnssec-keygen -b 512 -a HMAC-MD5 -v 2 -n HOST client.server.net.

4. Create a file with a key on the server:
server # cd / var / named / chroot / etc
server # vim keys.conf:

Key client.server.net. (
algorithm "HMAC-MD5";
secret "omr5O5so / tZB5XeGuBBf42rrRJRQZB8I9f + uIIxxei8qm7AVgNBprxtcU + FQMzBvU / Y + nyM2xbs / C8kF3eJQUA ==";
};

IN this case a symmetric key is used, which is unsafe: if someone has access to the key file on your server, they can use your key to change your zone data. In this case, you can use an asymmetric key.

We set access rights to the file with the keys:
server # chmod 640 keys.conf
server # chown root: named keys.conf

5. add our zone to named.conf:
include "/etc/keys.conf"
zone "client.server.net" (
type master;
file "zones / client.server.net";
allow-update (
key client.server.net;
};
};

A parameter is written here that allows you to update the zone data. In general, after reading the manuals, you can find options for this parameter that allow you to update only one record in the zone for given key... That is, you can have a zone with subdomains client1, client2, etc. which will authorize with keys key1, key2, etc.

6. Restart the DNS server:
server # /etc/init.d/named reload

7. Create a script on the client that will update the zone data:
#! / bin / bash
IFACE = "wlan0"
TTL = 3600
SERVER = ns1.example.com
HOSTNAME = foo.example.com
ZONE = example.com
KEYFILE = / root / ddns-keys / Kfoo.example.com. +157 + 12345.private

New_ip_address = `ifconfig $ IFACE | grep "inet addr:" | awk "(print $ 2)" | awk -F ":" "(print $ 2)" `
new_ip_address = $ (new_ip_address / /)

Nsupdate -v -k $ KEYFILE<< EOF
server $ SERVER
zone $ ZONE
update delete $ HOSTNAME A
update add $ HOSTNAME $ TTL A $ new_ip_address
send
EOF

At the beginning of the script, the corresponding parameters are described: interface, server and zone names, location of the file with the key.

8. It remains only to configure autostart / automatic change of address when changing DNS.
We will do this using a script for the NetworkManager:
create a file /etc/NetworkManager/dispatcher.d/20-dyndns.sh:
#! / bin / sh

Iface = $ 1
state = $ 2

If ["x $ state" == "xup"]; then
/ etc / namedb / ddns-update
elif ["x $ state" == "xdown"]; then
true
fi

Let's make it executable and owned by the root user.

Run-check-use.

Upd: If it does not work, check (install) the named rights on the server to write to the folder in which the client.server.org.zone file is located
named will create the file client.server.org.zone.jnl there

The following materials were used.

Typically, the time that the system spends connecting to the DNS server when visiting web resources is short. Most often, those servers that the provider uses by default work stably and quickly. However, there are times when standard DNS is not fast enough. In this case, you can try changing the server.

Google Public DNS

According to the developers themselves, this DNS can significantly speed up the loading of web pages. In order to use this server, in the connection settings, you must register the addresses 8.8.8.8 and 8.8.4.4 for the primary and secondary DNS, respectively.

If you are interested in servers or data storage systems, then Server City offers you to buy DELL, IBM servers, as well as data storage systems at a bargain price. Here on the site server-city.ru you can read in more detail about all the services offered by the company.

Following the lead of Google, Yandex has developed its own alternative DNS server. In addition, the developers have added family control capabilities in case it becomes necessary to block potentially dangerous resources. To use DNS without filtering functions, you must enter the address 77.88.8.8 in the connection settings. If you enter the address 77.88.8.88, you can use the functions of filtering dangerous resources. In the event that you enter the address 77.88.8.7, you activate the filtering of dangerous sites and porn resources.

This service is quite popular on the web and for good reason. OpenDNS allows you to use modern methods of protection on the Internet, is fast and has many nice features, for example, the function of correcting typos in typed addresses.

The service has paid and free modes.

Free mode with standard settings is available at the following addresses:

• 208.67.222.222
• 208.67.220.220

SkyDNS

This service is the leader in the Russian-speaking Internet in the field of security and filtering of inappropriate content. As the developer himself assures, tens of thousands of users, large companies, Internet providers, etc. use the service. Paid and free modes are available.

Connection to the free mode is available after completing the registration procedure, which will not take much time. To use SkyDNS, you will be prompted to download a small SkyDNS Agent application, or provide your IP. However, you can use the service without installing the application.

To do this, you will need to specify the DNS address 193.58.251.251.

In addition, to find a suitable DNS, you can use the appropriate software, which is a lot on the Internet.