Skip to main content

Top10VPN is editorially independent. We may earn commissions if you buy a VPN via our links.

VPN, DNS & Smart DNS: What’s the Difference?

Updated Aug 28, 2024

JP Jones

JP Jones is our CTO. He has over 25 years of software engineering and networking experience, and oversees all technical aspects of our VPN testing process. Read full bio

Fact-checked by Simon Migliano

The Short Answer

Using a custom DNS server can improve your internet speeds, but it doesn’t encrypt data transfers or spoof your location. In contrast, both Smart DNS and VPN services can unblock geo-restricted websites and streaming services. However, only a VPN hides your IP address and encrypts your web traffic.

DNS vs. VPN header image

Using Smart DNS, custom DNS servers, or VPN services can enhance your internet browsing experience in different ways.

They each come with their own drawbacks, though, which aren’t immediately obvious. Understanding the differences will help you choose the right solution for your needs.

Summary: Key Differences

VPN: Hides your IP address and location, encrypts your web traffic, and bypasses geo-restrictions. It’s also the only tool that hides your activity from your ISP.
Smart DNS: Reroutes DNS requests to bypass geo-restrictions. It’s cheap, fast, and compatible with most devices, but it doesn’t add any privacy protections.
Custom DNS: Uses a different DNS server for improved speed and security, but does not unblock geo-restricted content.

Why Trust Us?

We’re fully independent and have been reviewing VPNs since 2016. Our advice is based on our own testing results and is unaffected by financial incentives. Learn who we are and how we test VPNs.

Comparison: Smart DNS vs. VPN vs. Custom DNS

Below is a table summarizing the key differences between DNS, Smart DNS, and VPN services:

Criteria	Smart DNS	VPN Service	Custom DNS
Price	Subscription Fee	Subscription Fee	Free
Speed	Fast	Slower	Fast
Geo-Spoofing	Yes	Yes	No
Compatibility	All Devices	Limited to Native Apps	All Devices
Setup Difficulty	Medium	Easy	Medium
Customer Support	Sometimes	Yes	No
Encryption	No	Yes	No
Hides IP Address	No	Yes	No

EXPERT ADVICE: If you opt for a combined service like ExpressVPN’s MediaStreamer, you can get the benefits of a VPN and Smart DNS in one single subscription.

In the following sections, we’ll explain in more detail what these three different types of technologies are, how they work, and how to use them.

What Is Smart DNS?

Smart DNS technology is designed to bypass geographic restrictions on content. For example, you can use it to change your Netflix region and watch US Netflix from overseas.

Unlike VPNs, which require software installation, you set up Smart DNS through your device’s network settings. This makes it useful for devices where VPNs can’t be installed, such as Smart TVs and games consoles.

Smart DNS services are usually offered through subscription packages and tend to be cheaper than premium VPN plans.

However, Smart DNS does not encrypt your internet traffic or hide your IP address, meaning your ISP can see what services you’re connecting to. If you need privacy protection, you’ll need to use a VPN instead.

How Smart DNS Works

Smart DNS services use DNS servers to reroute specific traffic through proxy servers in desired locations.

When you try to access a streaming website with Smart DNS, your DNS request is routed through a proxy server in the country you’ve chosen. This makes it appear as though your request originates from that country, allowing you to access content restricted to that region.

How Smart DNS works

By combining a DNS server with a proxy server, you can use Smart DNS to bypass geo-restrictions on content.

For traffic unrelated to streaming, Smart DNS functions like a regular DNS server, without any redirection.

Control D has bypassed standard internet requests

In this example, Control D has bypassed standard internet requests and redirected streaming-related requests through US DNS servers.

Unlike VPN services, Smart DNS tools don’t mask your IP address in any way. It only alters DNS requests to make it appear as if the request is coming from a different location.

Benefits & Drawbacks of Smart DNS

Pros	Cons
Unblocks geo-restricted streaming services	Can be complicated to set up
Works on devices that don’t support native VPN applications (e.g. Smart TVs)	Less flexible than VPN services (e.g. changing server location)
Cheaper than most top VPN services	Does not hide your IP address
Very little impact on connection speeds	Does not encrypt your web traffic
Included in many premium VPN subscriptions

How to Use Smart DNS

Here’s step-by-step instructions for setting up Smart DNS:

Subscribe to a Smart DNS service. We recommend Control D or ExpressVPN’s MediaStreamer.
The Smart DNS service is only authorized for use by subscribers, so you’ll need to enter your IP address before you can use it.
Copy the Smart DNS IP address given to you by the service provider.
Enter the Smart DNS IP address in your device’s DNS settings.

On Apple TV, go to Settings > General > Network > Wi-Fi > Your Network > Configure DNS > Manual. Enter the DNS address and restart your Apple TV.
On PS4, Go to Settings > Network > Set up internet connection > Custom. Choose WiFi (wireless) or LAN (wired) for your connection, automatic for your IP address, ‘do not specify’ for the DHCP Host Name, and ‘manual’ for the DNS settings. Enter the primary and secondary DNS addresses given to you by your Smart DNS provider.
On PS5, Go to Settings > Network > Settings > Set up internet connection. Choose your connection or set up a new one. Choose Advanced Settings > DNS Settings > Manual. Enter the primary and secondary DNS addresses given to you by your Smart DNS provider.

The Smart DNS service will now be activated.

Here’s a brief video showing how to use ExpressVPN’s MediaStreamer Smart DNS on Apple TV:

How to use MediaStreamer Smart DNS on Apple TV.

How to Troubleshoot Smart DNS Issues

If you’re having difficulties getting Smart DNS working, try the following solutions:

Make sure you have given your Smart DNS provider the correct IP address for your device.
Reboot your device. Software updates can cause issues with Smart DNS services.
Make sure your device has the correct Smart DNS IP addresses configured.
If your device only has room for one DNS entry, use your Smart DNS provider’s secondary DNS IP address to see if that works.
If your device can accept a primary and secondary DNS, enter the same Smart DNS IP address into both boxes.
Clear your browser’s cache or reinstall the streaming app you’re using.
Set custom DNS on your router to 1.1.1.1 as a primary DNS (Cloudflare) and 8.8.8.8 as a secondary DNS (Google).

What is a VPN?

VPN software encrypts your internet connection and hides your IP address. This stops your ISP, malicious actors, and government agencies from monitoring your internet activity.

Unlike Smart DNS and custom DNS, VPN services also encrypt your data, which prevents websites and services from tracing your browsing activity back to you. They also work provide access to streaming services in far more countries than Smart DNS tools.

Most top VPNs, including ExpressVPN and NordVPN, will still conceal your DNS requests by routing them through private DNS servers. This further safeguards your browsing from ISP monitoring.

Premium VPN services are usually more expensive than standalone DNS providers, though. VPNs are also more difficult to use on devices that don’t support native applications, such as Smart TVs.

How a VPN Works

The VPN client running on your device creates an encrypted tunnel to a server in a location of your choice. This VPN server then forwards your requests to the web services you want to access, which makes it look like you’re visiting them from a different location.

Diagram explaining how VPN services work to encrypt and reroute web traffic.

Benefits & Drawbacks of a VPN

Pros	Cons
Unblocks geo-restricted streaming content	Premium services can be expensive
Encrypts your web traffic	Difficult to use with devices that do not support native applications e.g. Xbox or PlayStation
Hides your public IP address	Some free VPN services can be dangerous
Easy to install and use
Usually includes customer support

How to Use a VPN

Top streaming VPNs are simple to use on most devices and unblock region-restricted content. This makes them the best choice for most users on desktop and mobile devices.

It’s easier to download and use a VPN than it is to change your DNS settings. Once installed, it’s also much easier to change your VPN location than it is to switch between regions with Smart DNS.

Here’s how to set up and use a VPN service:

Subscribe to a trustworthy VPN service like ExpressVPN. We recommend opting for a premium VPN if you want to access region-restricted content, as even the best free VPNs struggle to unblock geo-blocked streaming services.
Download and install the VPN software from the VPN provider’s website or App Store.
Run the VPN software and log in using your account details.
Connect to a VPN server. You can choose which country and sometimes which city you want to connect to, so you can access content available in that region.
Use your web browser and other applications as usual. Your online activities will be encrypted and routed through the VPN server, while your true IP address is hidden.

Here’s a quick video showing you how to download and connect to ExpressVPN:

How to Use ExpressVPN on Mac.

What Is Custom DNS?

Your devices will most likely use your ISP’s DNS resolver. DNS requests are plaintext records of the websites you visit, and ISPs often store these together with your IP address.

With custom DNS, you can change from your ISP’s DNS servers to a specific one of your choosing. Public DNS services are available from Google and Cloudflare, among others.

Doing this can prevent your ISP from automatically logging your DNS requests, but it will not hide your IP address, encrypt your traffic, or unblock geo-restricted streaming services.

Changing your DNS server does not stop your ISP snooping on your online activities completely, though. Your DNS requests will still pass through your ISP’s network devices, which means they’re susceptible to packet sniffing if they’re unencrypted.

How Custom DNS Works

Every website has a unique IP address. If it’s an IPv4 address, it’s usually a sequence numbers of separated by dots, such as 192.0.2.0. Those sequences aren’t easy to remember, so we use domain names to identify websites instead, such as example.com.

When you enter a website address in your browser, it needs to convert the domain name to an IP address so it can connect to the website’s server.

To do this, your computer consults a server called a DNS resolver, which retrieves the website’s IP address for you. Your device can then connect to the IP address to download the content you’ve requested.

How the DNS resolver finds out the IP address for a website

Your DNS resolver finds out the IP address for a website, so your device can connect to its server.

The DNS system does not need to return the same IP address to everyone. A service or website might be hosted on multiple servers around the world, and you could be directed to the one that’s closest to you.

If you want to find out which servers you’re using, you can use our tool to check your DNS servers.

Benefits & Drawbacks of Custom DNS

Pros	Cons
Faster and more secure than your ISP’s default DNS server	Does not unblock streaming services
Free to use	Does not hide your IP address or encrypt your web traffic
	Some DNS providers can be slow, unreliable, or unsecure

Reasons to Use Custom DNS

Switching to a custom DNS server can improve your speeds slightly if your ISP’s default servers can’t cope with the requests they receive.

In certain circumstances, it can also protect you against cyberattacks that target the DNS system. For example, cache poisoning attacks aim to flood DNS servers with fake name server responses, replacing legitimate IP addresses with malicious ones.

The Domain Name Security Extensions (DNSSEC) protect against attacks like this, but the rate of DNSSEC validation is only 36% worldwide. You can switch your DNS server to one that supports DNSSEC, such as Google’s or Cloudflare’s.

However, it won’t help you unblock websites.

EXPERT TIP: ‘DNS hijacking’ malware can change the DNS settings on your device to redirect your DNS requests to a malicious server. You can avoid this type of attack using basic online hygiene including a firewall, antivirus software, and being careful with your downloads.

How to Use Custom DNS

Here’s how to use a custom DNS server:

Find a Public DNS service you can use. It’s important to choose one with a reliable infrastructure that will not monitor your activities. For example, Google’s primary DNS is 8.8.8.8, and its secondary DNS is 8.8.4.4. You can find more recommended DNS servers on our DNS checker tool.
Navigate to the network settings for the connection you’d like to change (e.g. Ethernet or Wi-Fi).
Make a note of your existing DNS settings, in case you need to revert your settings later.
Update your DNS settings to use the primary and secondary DNS servers of your new DNS provider.
Test your new connection. Clear your browser cache and visit a website using a domain name. If it works, your DNS is set up correctly.

Google offers detailed instructions on how to apply these steps to Windows, macOS, Linux, Chrome OS, and routers. If you change the DNS settings on your router, it will affect all the devices that connect to the internet through that router.

You can see us doing this on an Xbox in the video below.

How to Change Your DNS Server on Xbox One.

Which Is Better: Custom DNS, Smart DNS, or a VPN?

We ran in-house tests on custom DNS, Smart DNS, and VPN services to determine which performs best in a number of the important categories.

Here’s a summary of the results:

Testing Category	Winner
Speed	Custom DNS
Bypassing Geo-Restrictions	VPN
Privacy & Security	VPN
Price	Custom DNS & Smart DNS
Device Compatibility	Custom DNS & Smart DNS
Torrenting	VPN
Bypassing Censorship	VPN

In short, the best way to protect your privacy and unblock streaming content is to use a VPN service. If you need to bypass geo-restrictions on a device that does not support VPNs, use Smart DNS, which is often cheaper too.

Speed

Winner: Custom DNS

Custom DNS doesn’t encrypt traffic or route it through a proxy server, meaning it’s usually faster than Smart DNS or VPN services.

In some cases, using a custom DNS server actually meant websites loaded more quickly because we used DNS resolvers that were faster than our ISP’s.

DNS speed test

Our tests show custom DNS didn’t negatively impact our download speeds.

In contrast, VPN services encrypt your data and reroute it through a remote server, which can slow down your connection. Though the fastest VPN services minimize this, speed loss can reach 30% or more depending on your VPN provider and the physical distance between you and the VPN server.

Bypassing Geo-Restrictions

Winner: VPN

Custom DNS will not unblock streaming services, but VPN services and Smart DNS work well. VPNs win in this category, though, as we’ve found that many Smart DNS tools don’t offer the option to manually choose your location.

For instance, the Smart DNS features provided by NordVPN and Surfshark are limited to accessing US streaming services. In contrast, their VPN apps provide access to streaming content from over 100 countries.

NordVPN Australian Servers Unblocking SBS On Demand on macoS

NordVPN’s VPN apps unblock streaming services that its Smart DNS service do not.

That said, we have previously seen Smart DNS sometimes be more reliable at bypassing region restrictions than VPNs on specific platforms. For instance, during the 2021 Netflix VPN ban, ExpressVPN’s MediaStreamer Smart DNS tool maintained access to US Netflix, even though the VPN stopped working.

We recommend choosing a VPN that also offers Smart DNS functionality so that you’re always able to access popular geo-blocked streaming services.

Privacy and Security

Winner: VPN

Some custom DNS solutions can improve your online security. For example, Google Public DNS benefits from mitigations against DNS cache poisoning attacks, which your ISP might not have in place.

Smart DNS will reroute your DNS requests, but it will not hide your IP address or encrypt your data. Your ISP can see what you are doing online, and can throttle your streaming connection.

Using a VPN is by far the best option for improving your privacy and security. The VPN software will hide your IP address and encrypt your data using robust ciphers like AES-256, which means your ISP cannot monitor your activity.

Hide.me Wireshark Encryption Test

A VPN, like Hide.me, encrypts your browsing data, making it indecipherable.

Price

Winner: Custom DNS & Smart DNS

You’ll have to pay for a reliable Smart DNS or VPN. It’s expensive to maintain the infrastructure required for those services, so free alternatives are likely to be unreliable and may include bandwidth restrictions.

Standalone Smart DNS services are often cheaper than premium VPNs. However, most VPN services usually offer a trial period or a money-back guarantee, which means you can test them before you commit.

Public DNS services are available for free from companies such as Google and Cloudflare.

Windscribe's VPN subscription plans side-by-side with its Smart DNS plans, showing the price difference.

Windscribe’s Smart DNS service (left) is almost half the price of its VPN (right).

Device Compatibility

Winner: Custom DNS & Smart DNS

Custom DNS and Smart DNS work virtually everywhere. Any device that connects to the internet needs to access a DNS server. If you can change your device’s DNS settings, you can use custom DNS or Smart DNS.

This makes Smart DNS a great choice for unblocking region-restricted content on devices such as Smart TVs, PS5, or Xbox.

LG TV screen with a DNS Server input box displaying the address '85.203.37.1'.

Smart DNS can be configured on devices that don’t support VPN apps, like LG TVs.

Most VPNs provide native applications for Windows, macOS, Linux, iOS, and Android. However, you can’t install them on devices like Smart TVs and games consoles.

There are some exceptions to this rule, most notably Roku devices. As these devices don’t allow you to manually change DNS settings, Smart DNS tools are useless.

Instead you’ll have to use one of our recommended VPNs for Roku to unblock streaming content.

You can install a VPN on your router to protect every device on your home network, but this is not a simple process.

Torrenting

Winner: VPN

Torrenting without a VPN can be dangerous. Without protection, you risk revealing your activity and identity to your ISP, copyright trolls, and other torrenters in the swarm.

Smart DNS and Custom DNS do not hide your IP address, which means they will not keep you safe while torrenting.

Using ExpressVPN with the qBittorrent torrent client

ExpressVPN is fully compatible with BitTorrent clients.

If you torrent using a VPN, the IP address that other users see will be associated with the VPN server you are connecting to, which means it cannot be used to identify you.

Bypassing Censorship

Winner: VPN

Custom DNS and Smart DNS can help to evade some forms of censorship when imposed at the DNS level.

By changing your DNS servers, it’s possible to evade your ISP’s DNS system and bypass any DNS-based content filtering. It’s also possible to bypass parental control solutions that use DNS queries to block prohibited content.

However, a VPN is the best way to safely unblock websites in highly-censored countries. A VPN will hide your IP address and encrypt your data where Smart DNS does not.

Astrill Unblocking YouTube in China

We used Astrill VPN to unblock YouTube in China.

Top-rated VPNs also include obfuscation technology, which disguises VPN traffic as normal HTTPS traffic to help it bypass national firewalls.

FAQs

Can I Use Custom DNS with a VPN?

Most VPN services use their own DNS servers, which will override any custom DNS or Smart DNS settings you have on your device. You can check which DNS servers your device is using with a DNS checker tool.

It is also possible to buy a VPN subscription that also includes a Smart DNS service. You can use the VPN on compatible devices, and use the Smart DNS service on your games consoles and Smart TV.

Is It Safe to Change My DNS?

It’s safe to switch to custom DNS servers as long as you choose a trustworthy DNS provider, such as Google or Cloudflare. If you choose an unreliable DNS server, you run the risk of DNS hijacking, where a malicious actor could divert your web requests to a compromised server.

What Is a DNS leak?

A DNS leak occurs when you are using a VPN, but you connect to your ISP’s DNS servers. This does not expose your public IP address, but it does reveal your browsing activity to your ISP. Netflix can also use DNS leaks to identify your real location and block content that’s restricted in your region. You can use a VPN leak test to check for DNS leaks.

What is the DNS server 1.1.1.1 or 8.8.8.8?

To connect your device to a DNS server, you use its IP address. Google and Cloudflare offer free public DNS servers using highly memorable IP addresses. Google uses 8.8.8.8 and Cloudflare uses 1.1.1.1.