Article overview

Help article

How do I disable open DNS resolvers?

In this FAQ-article we will explain how you can disable open DNS resolvers in Windows Server and Linux.

Windows Server

  • Once you are logged in to the server you will need to open the 'DNS manager'.
  • Right-click on the prefered DNS server and select ' Properties'.
  • Next select the 'Advanced' tab.
  • Check the 'Disable recursion' box in Server options and click ok.
  • The open DNS resolver on this DNS server is now disabled.

Alternatively you can instead modify the inbound DNS (TCP, incoming) rule in Windows Firewall with Advanced Security > Scope > Remote IP addresses and allow only, your VPS' IP address and the IP's on your private network.


We assume that you are running Bind as DNS server. To disable open DNS resolvers in Bind you will need to add the following lines in the options section of named.conf:

allow-transfer {"none";};
allow-recursion {"none";};
recursion no;

Do you have a good idea?

Give us your idea! If it's popular we'll add it to the wishlist!

Has this article been helpful?

Create an account or log in to leave a rating.


Create an account or log in to be able to leave a comment.

Are you stuck?

Ask one of our specialists to assist you

Contact us