CPC H04L 63/1466 (2013.01) [H04L 9/3263 (2013.01); H04L 61/4511 (2022.05); H04L 63/0236 (2013.01); H04L 67/02 (2013.01); H04L 9/3268 (2013.01); H04L 61/2514 (2013.01); H04L 67/10 (2013.01); H04L 69/16 (2013.01); H04L 2101/30 (2022.05)] | 14 Claims |
1. A method of managing Domain Name Server (DNS) requests, comprising:
receiving a DNS request from a browser on a client device in an endpoint DNS agent installed on a device on a local network, the DNS request comprising a requested domain name;
sending a DNS response from the endpoint DNS agent to the browser on the client device, the DNS response comprising the endpoint DNS agent's Internet Protocol (IP) address;
receiving from the browser on the client device a message with a Server Name Identification (SNI) tag identifying the requested domain name to a Hyper Text Transfer Protocol (HTTP) server in the endpoint DNS agent;
generating, by the endpoint DNS agent, a certificate for the requested domain name and sending it from the endpoint DNS agent to the browser on the client device;
retrieving information from a domain associated with the requested domain name in the endpoint DNS agent, and selectively forwarding the requested information from the endpoint DNS agent to the browser on the client device to provide security to the client device;
receiving a user election from the client device to override a DNS redirection returned in response to the DNS request; and
establishing a Secure Socket Layer/Transport Layer Security (SSL/TSL) connection between the HTTP server on the endpoint DNS agent and the browser on the client device.
|