Using opendns on AT&T uverse?

chuckd83

Distinguished
Aug 8, 2011
2
0
18,510
My end goal is to filter all harmful traffic coming into my house. I have noticed that you cannot change the DNS servers directly on the AT&T 2-wire router due to conflicts with the TV set top box. I have a Belkin F7D8301 running DD-WRT mega that I would like to install behind the AT&T router and change the DNS servers to opendns.

How can I do this?

AT&T 2-wire LAN -> Belkin WAN? -> other switches / routers / computers / etc.

1. AT&T Uverse settings: turn off AT&T wifi broadcasting and filter all MACs except for the Belkin and TV set top box?
2. Belkin DD-WRT settings?

fyi...AT&T IP: 192.168.1.254
DHCP range: 192.168.1.64-150
 
Solution
There are a number of version of att 2 wire but I though you could change the DNS in the DHCP settings. The DNS the router itself users is different than the one you tell the users to use.

If you can't change it you should be able to disable the dhcp completely. You could then take another router/pc and run a DHCP server on it. It would be acting as a end device no traffic would pass through it so you would just cable it like any other end device. You would configure the DHCP server to use the gateway address of the 2 wire box but use the DNS you provide.

.....the large issue is opendns does not work if the users can change the DNS in their machine. You will need to add filters in the att router to only allow traffic to the...
There are a number of version of att 2 wire but I though you could change the DNS in the DHCP settings. The DNS the router itself users is different than the one you tell the users to use.

If you can't change it you should be able to disable the dhcp completely. You could then take another router/pc and run a DHCP server on it. It would be acting as a end device no traffic would pass through it so you would just cable it like any other end device. You would configure the DHCP server to use the gateway address of the 2 wire box but use the DNS you provide.

.....the large issue is opendns does not work if the users can change the DNS in their machine. You will need to add filters in the att router to only allow traffic to the open dns servers and still allow the router itself to access the other DNS server. It is unclear what would happen if the users changed the DNS server to be the 2wire box ....if the 2wire box itself can get to the dns server for its own purposes does that mean the user can bypass you using this method.

Then again users that know how to bypass the opendns restrictions by changing the DNS also know about the host file. Unfortunately opendns is pretty trivial to bypass.
 
Solution