[OPLINLIST] FW: OpenDNS Question

Jessica D. Dooley dooleyje at oplin.org
Wed Jun 18 14:37:34 EDT 2014 

Hi Cory,

 

We do use OPLIN's OpenDNS subscription, and have an Active Directory
environment. In an AD environment, I would avoid changing the individual
domain member computers' DNS settings to OpenDNS, for the reason you said
-it breaks the client-server domain relationship. I leave all client
computers DNS settings pointing to the server hosting DNS for that domain.
Instead, set OpenDNS as the only DNS servers on your edge device (any kind),
and configure your OpenDNS account to point to your public IP. Your
computers inside the domain (and the AD servers) will still be filtered by
OpenDNS, since the Internet is coming through that edge device.

 

In order to stay CIPA-compliant (for E-rate purposes, etc), but avoid
filtering becoming a problem for staff, I set up an override code that can
disable filtering using a setting in OpenDNS's dashboard. I then give this
code to the staff, so they can turn filtering off for their workstation as
needed. The override is cookie-based, so it can persist on staff machines,
but will be automatically deleted from patron workstations at the end of the
user session. (Ideal!) I set the code to expire and be updated periodically.

 

Hope that helps,

 

Jessica D. Dooley

IT Specialist

Adams County Public Library

937-587-2085

dooleyje at oplin.org

 

From: oplinlist-bounces at lists.oplin.org
[mailto:oplinlist-bounces at lists.oplin.org] On Behalf Of Cory Dahlinghaus
Sent: Wednesday, June 18, 2014 1:27 PM
To: oplinlist at lists.oplin.org
Subject: [OPLINLIST] FW: OpenDNS Question

 

Hello,

 

How many libraries are using OpenDNS provided by OPLIN?

If so, are you filtering all computers or just certain workstations? 

 

The wifi computers was easy to set up since I could just add the OpenDNS
servers to the router.

 

I'm having trouble coming up with a way to filter our PCReservation
computers since they are connected to the domain. I only need to filter 9
domain computers so I can't add the forwarders to the DNS or all get
blocked. If I change the DNS settings locally on the workstation, then the
workstation won't resolve with the domain. Maybe I am just making it to
difficult.

 

Any suggestion?

 

Cory Dahlinghaus

Wright Memorial Public Library

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.oplin.org/pipermail/oplinlist/attachments/20140618/267569d6/attachment.html>

More information about the OPLINLIST mailing list