Avast SecureLine VPN: Preventing DNS leaks

How to prevent DNS leaks

To prevent DNS leaks, we strongly recommend that you update Avast Antivirus to the latest program version. Alternatively, you can continue to use an older version of Avast Antivirus or your standalone version of SecureLine VPN, and prevent DNS leaks by disabling the smart multi-homed name resolution policy setting. Select your preference below:

DNS leak prevention in SecureLine VPN does not apply to Windows Vista or Windows XP systems. If you are experiencing DNS leak issues on these operating systems, we strongly recommended to upgrade to a more recent version of Windows.

Use SecureLine VPN in the latest version of Avast Antivirus

SecureLine VPN now actively prevents DNS leaks on IPv4 for Windows 10, Windows 8.1, Windows 8 and Windows 7 SP1 (Service Pack 1) by blocking DNS requests to third party DNS servers. This feature is intended to reduce privacy vulnerabilities due to web activity monitoring and DNS hijacking while using SecureLine VPN. To use the latest version of SecureLine VPN, update your Avast Antivirus program version:

If you are running Windows 10 or Windows 8/8.1, update to the latest version of Avast Antivirus by following the instructions in the article below:

If you have configured your Avast Antivirus to perform updates automatically, the latest version of SecureLine VPN is available by default.

To benefit from DNS leak prevention on systems running Windows 7, you need to upgrade to Windows 7 SP1 (Service Pack 1) and download the Microsoft hotfix as described in the steps below:

  1. Upgrade to Windows 7 SP1 by following the instructions in the article below:
  2. Update to the latest version of Avast Antivirus (2016 R2 version) by following the instructions in the article below:
  3. Download and install the Windows hotfix from the Microsoft website:
  4. After the hotfix installation is complete, you need to reboot your computer to benefit from DNS leak prevention.

Use an older version of Avast Antivirus or the standalone version of SecureLine VPN

If you prefer to use an older version of Avast Antivirus or the standalone version of SecureLine VPN on systems running Windows 10 or Windows 8.1/8, we advise to disable the "smart multi-homed name resolution" policy. This setting is enabled by default and is intended to optimize DNS queries and improve performance. However, when enabled it leaves you vulnerable to DNS hijacking as well as DNS leaks (which can result in web activity monitoring) even when you are using a VPN.

The "smart multi-homed name resolution" setting is especially risky on Windows 10 systems. Therefore we highly recommended to disable the service.

You can find the settings for this service in DNS Client settings within Local Group Policy Editor.

To disable the "smart multi-homed name resolution" service:
  1. Open the Start menu and type gpedit.msc in the search bar, ...and double-click gpedit.msc to open the Local Group Policy Editor.
  2. Within Computer Configuration select Administrative Templates → Network → DNS Client → Turn off smart multi-homed name resolution.
  3. Select Enabled to turn off the service. Click Apply.
  • Avast SecureLine VPN

  • Avast Premier 17.x
  • Avast Internet Security 17.x
  • Avast Pro Antivirus 17.x
  • Avast Free Antivirus 17.x
  • Microsoft Windows 10 Home / Pro / Enterprise / Education
  • Microsoft Windows 8.1 / Pro / Enterprise
  • Microsoft Windows 8 / Pro / Enterprise
  • Microsoft Windows 7 Home Basic / Home Premium / Professional / Enterprise / Ultimate
  • Microsoft Windows Vista Home Basic / Home Premium / Business / Enterprise / Ultimate
  • Microsoft Windows XP Home / Professional / Media Center Edition

We are sorry, unfortunately this article is not available in the selected language. Would you like to continue reading the article in the current language or go to our home page in the language you have just selected?

Continue reading Go to Home page