different dns for for different users on different times

RouterOS Beginner Basics
1

hi guys,

we are using OpenDNS to block certain sites. how to implement this?

  1. Certain “privilege users” must passthru a another DNS like google.
  2. Force all other users to use OpenDNS during office ours and use GoogleDNS on non office hours.

Please help.

thanks,
OcaVid

2

Forward it to IT, recline chair, sip lemonade.

This is an IT problem, not a Network issue. This should be enforced on each account or PC with domain services or group policy; it would be unenforceable otherwise.

3

I’ve solved similar request in this way:

  • set Google dns for all (static dns on pc, dhcp assigned,..)
  • set OpenDns dns on MT
  • create a address-list for privileged/bypassed dns users
  • create a firewall dns redirect for all but exclude the privileged address-list

Normal user dns request is redirected to MT (asked to Opendns), privileged user will bypass dns trick (Google).

Finally ..enable/disable the redirect rule on schedule.

(Beware ..this doesn’t work for cached dns; when schedule enable redirect rule, your users can still use the (eventual) previously cached dns response ..untill the ttl die. I mainly use this schema when dns filters are permanent and it works well)