☁️ Pro & ProPlus
...
Remote End-Points
ClientShield remote agent conf...

The denial of DNS changes to users through Active Directory group policies

0min

Users can be prevented from changing DNS using Active Directory Group Policies. For more information on Group Policies (GPOs), see Microsoft's online guides. Another improvement that can be implemented is to create some rules in the router/firewall, to automatically redirect DNS requests from PCs to the private IP of the DNS Proxy. In this way, internal devices configured to use a DNS other than the DNS Proxy IP will be filtered using the default filter criteria. IMPORTANT: This rule should be applied to all IPs except the Proxy DNS.

Related articles: Configuring Pro+ Filter - Introduction

Other ways to ask: » How to deny DNS changes to users. » Denying DNS changes to users. How to do it.