Pango Platform
HomeConsole
  • What is Pango Developer Platform
  • Getting started
    • Sign up on the Management Console
    • Create a new project
    • Switch projects
    • Change console settings
    • Edit your profile
    • Try out the demo app
    • Keep exploring
    • Deprecation and Sunset
  • Console details
    • Dashboard
      • General
      • Location loading
    • Users
      • User page
    • Active sessions
    • Network
      • Countries
      • Locations
      • Pools
        • Optimal location
        • Location rules
    • Settings
      • General
        • Project config description (JSON format)
          • Server selector (JSON format)
          • Request selector (JSON format)
      • Authentication methods
        • Auth Plugin requirements
      • VPN
        • General
        • VPN Bypass list
        • Client Networks
      • Member
    • Export Data
    • Log
  • SDK
    • Unified VPN SDK for Android
      • Setup
        • Application Setup
        • Proguard Rules, Notification, and Analytics Configurations
        • Backend URL Configuration
      • Usage
        • Initialization
        • VPN Interface
        • Backend interface
      • Features
        • Hydra Protocol
          • Location profile (Hydra only)
        • Custom sdk dependencies
        • Deferred VPN Service Initialization
        • Authentication
        • Client Network List (CNL)
        • OpenVPN transport
        • Wireguard Transport
        • Reconnection strategy
        • Single Protocol SDK
        • Killswitch
        • Domain route via VPN
        • Process route via VPN
        • Process Bypass
        • Domain Bypass
        • Traffic rules
        • VPN Node DNS Configuration
        • Multihop
          • Optimal Location
      • Exceptions
      • Version migration
      • Changelog
    • Unified VPN SDK for Apple
      • Setup
        • Application Setup
        • Network Extension Setup
          • Network Extension Setup for tvOS
        • Backend URL Configuration
      • Usage
        • Single Protocol SDK
        • Unified SDK
        • Logging
        • Decoding Encoded VPN SDK Logs
      • Features
        • Deferred VPN Service Initialization
        • Authentication
        • Wireguard Transport
        • Reconnection strategy
        • Killswitch
        • Domain Bypass
        • Multihop
          • Optimal Location
        • Client Network List (CNL)
        • Domain route via VPN
      • Changelog
      • API Reference
    • IPSEC VPN SDK for Apple
    • Unified VPN SDK for Windows
      • Setup
        • Backend URL Configuration
        • Service command line arguments
        • ARM Platform Support
      • Usage
        • CoreAPI
        • Events
        • Generating a Unique Device Identifier
        • Error processing
        • Pipe Messaging
      • Features
        • Traffic protection
          • Killswitch
          • Prevent IP Leaks
          • Block Local Networks
        • Other
          • Firewall
            • DNS Monitor
            • Process Bypass
            • Domain Bypass
            • Process route via VPN
            • Domain route via VPN
          • Throttling
          • Optimal Location
          • Common issues
        • Hydra Protocol
          • CustomDNS, UserDNS, MultiHop, VpnProfiles
        • OpenVPN Protocol
        • Wireguard Protocol
        • IPSec Protocol
      • Collecting Debug Logs
      • Changelog
    • Unified VPN SDK for Routers
      • SDK. Shared library.
      • Configuration Interface (CI)
        • Unix Domain Sockets CI
        • REST API CI
    • Unified VPN SDK Feature Comparison By Platform
    • Unified VPN SDK
      • Features
        • Personal Bridge
    • Tunnel Vision and Tunnel Crack Prevention
  • REST API
    • Partner API
  • Sample applications
    • Unified VPN SDK demo for Windows
    • Hydra VPN SDK demo for iOS
    • IPSEC VPN SDK demo for iOS
    • Unified VPN SDK demo for Android
    • Hydra VPN SDK demo for OpenWRT
    • OpenVPN configuration file
  • Resources
    • Use cases
      • Public VPN
      • Business VPN
        • Creating a Business VPN Project
        • Wi-Fi Security for Business
      • Application anti-blocking
    • How-to
      • Create a Firebase project for User Authentication
      • AWS CloudFront Distribution of the Platform URL
      • How can I get Shared Secret key from iTunes Connect for In-App Purchase
  • FAQ
    • General
      • VPN Platform Flow
      • What data is collected by the Platform?
      • What analytic data is collected by your SDK?
      • How the Platform restricts access to our data?
      • Why DNS Leak tests often indicate positive result?
      • Do we need to perform endpoint health checks?
      • How is the VPN exit node found?
      • How are streams re-marked if VPN is enabled/disabled on an active flow?
      • Is there a maximum number of supported devices?
      • Are both IPv4 and IPv6 supported?
      • What is the MTU of the tunnel?
      • Are any redundancy measures in terms of reliability provided?
      • Is there any load balancing?
      • Do you block broadcast and multicast to/from the VPN?
    • List of Open Source libs
Powered by GitBook
On this page
  • Enable DNS monitor
  • Disable DNS monitor

Was this helpful?

  1. SDK
  2. Unified VPN SDK for Windows
  3. Features
  4. Other
  5. Firewall

DNS Monitor

DNS (Domain Name System) is a critical component of the internet infrastructure that translates human-readable domain names (such as www.example.com), into IP addresses (such as 12.345.678.90). It acts as a phonebook for the internet, allowing users to access websites and online services using easy-to-remember domain names instead of complicated IP addresses.

DNS monitoring is a security feature that keeps track of DNS traffic and analyzes it for suspicious activities or anomalies. By continuously monitoring DNS requests and responses, a DNS monitor can detect and alert users about potential security risks. Implementing a DNS monitor in your cybersecurity application can provide an additional layer of defense against DNS-based threats. It complements other security measures like firewalls, antivirus software, and intrusion detection systems to create a comprehensive security framework.

When the VPN tunnel is disconnected, the DNS monitor module monitors and logs all DNS requests made by the system to help identify potential DNS leaks or unusual domain queries. It's important to note that the DNS monitor is automatically disabled when the VPN tunnel is connecting or connected.

Enable DNS monitor

DNS monitor can only be enabled when the VPN is not connected and the Killswitch feature is turned off. To enable DNS monitor programmatically, you can use the following code:

var sdk = new SDK();

var request = new FirewallRequest
{
    EnableDnsMonitor = EmptyRequest.Empty,
};

var result = await sdk.ConfigureFirewallAsync(request).ConfigureAwait(false);

For example, let's say you are developing a cybersecurity application and want to give users the option to monitor their DNS traffic for suspicious activity. By using the code snippet above, you can easily enable the DNS monitor feature whenever the user chooses to turn it on, as long as the VPN is disconnected and Killswitch is disabled.

Disable DNS monitor

In some cases, you may want to disable the DNS monitor feature. To disable DNS monitor programmatically, use the following code:

var sdk = new SDK();

var request = new FirewallRequest
{
    DisableDnsMonitor = EmptyRequest.Empty,
};

var result = await sdk.ConfigureFirewallAsync(request).ConfigureAwait(false);

While you typically don't need to manually disable the DNS monitor when connecting to a VPN (as it's done automatically), you might still need to use this code in other scenarios, such as when you want to turn off DNS monitoring while the VPN is disconnected.

PreviousFirewallNextProcess Bypass

Last updated 1 month ago

Was this helpful?