Force LAN Clients to use Google Safesearch

SafeSearch is a Google service that helps you block inappropriate images from Google Search results. We can use LAN DNS feature to force LAN clients to use SafeSearch when they use Google Search.

1. Check the IP address SafeSearch in your area: For Windows users, run Command Prompt and enter command “nslookup”, record the answer a screenshot of command prompt window

2. On Vigor Router, set up LAN DNS for Google Search: Go to Applications >> LAN DNS/DNS Forwarding, and click on an index number to edit a profile.

  1. Enable this profile.
  2. Enter Profile name.
  3. Enter Google Search's URL for Domain Name
  4. In IP Address List, click Add. In the pop-up window, enter the IP address of SafeSearch in Host's IP Address, and click OK.
  5. Click OK to apply the settings
a screenshot of DrayOS LAN DNS settings

3. With the LAN DNS configuration, when LAN client open Google Search, they will be redirected to Google SafeSearch, and will see a message says that SafeSearch has turned on. a screenshot of a browser opening Google it shows SafeSearch has turned on


If SafeSearch is not turned on as expected. please try the following

  1. Clear DNS cache on the LAN hosts for the LAN DNS to work. For Windows users, this may be done by entering ipconfig/flushdns in command prompt.
  2. Clear the browser's history and cookies.

1. Enable DNS Redirection at LAN >> General Setup.

a screenshot of Vigor3900 LAN General setup  

2. Create a LAN DNS profile, go to LAN >> LAN DNS, click Add to add a new profile, input profile name, and enable this profile.

a screenshot of Vigor3900 LAN DNS profile  

3. There are two methods to set up the Domain Name, by IP and by CNAME, you may use either one of them.

  1. Input* as Domain Name
  2. Select “IP” as Type
  3. Input the in IP address, which is the virtual IP for Google SafeSearch (Note that the IP address may change, you may confirm the IP address by typing "nslookup” in command prompt.)
  4. a screenshot of Vigor3900 LAN DNS profile of type IP By CNAME
    1. Input or in Domain name. (Wildcard * is not supported in CNAME mode yet.)
    2. Select "CNAME" as Type
    3. Input as CNAME. By using CNAME, the router will resolve automatically
    a screenshot of Vigor3900 LAN DNS profile with type CNAME 

    4. Verifying the settings: Go to, we should see the message “SafeSearch has turned on”. (If it's not, try clearing the browser's cookies first)

    a screenshot of a browser opening Google and it shows SafeSearch has turned on

Published On: 2017-10-31 

Was this helpful?   

book icon

Related Articles