Want to opt out of BAPS protection?

The Belgian Anti-Phishing Shield (BAPS) is a precautionary measure offered by the Centre for Cyber Security Belgium (CCB) with a view to protecting internet users from such threats as phishing and malware. However, you can, at your own risk, choose to disable this protection. The procedure below describes how you can disable BAPS protection on Windows, macOS , Android and iOS operating systems.

BAPS protection is activated by your internet service provider (ISP) with DNS protocol responses, through which you can convert a machine name such as www.ccb.belgium.be into an IP address that can be used by a computer. Please bear in mind that the procedure below disables all security measures taken by your ISP.

To avoid using BAPS protection, you must select an alternative DNS provider. Some examples are given below:

Google: 8.8.8.8 and 8.8.4.4
Cloudflare: 1.1.1.1
IBM Quad 9: 9.9.9.9

Note that all these alternatives use some form of filtering.

Furthermore, please be aware that any mistakes in changing the DNS configuration could disable your internet connection. The CCB and your ISP cannot be held liable for any problems you might have as a result of taking these steps.

Windows

The DNS settings are listed in your network connection's TCP/IP settings.

Open the Control Panel.
Click on Network and Internet -> Network and Sharing Center -> Change adapter settings.
Right-click on your connection. If Windows asks for an administrator password or confirmation, enter the appropriate information. Select Properties.
Click on the Networking tab and then Internet Protocol Version 4 (TCP/IPv4). Click on Properties.
In the window that now appears, click on Advanced and then on the DNS tab. If DNS servers are listed here, copy the information to a safe place and then remove the servers from the list.
Click on OK.
Select 'Use the following DNS server address'. Note down any IP addresses listed in the 'Preferred DNS server' and 'Secondary DNS server' fields, and store this information in a safe place.
Enter the IP addresses of the earlier selected DNS servers.
Shut down and restart your computer.

MacOS

The DNS settings are listed in the network settings.

Click on the Apple menu -> System Preferences -> Network.
If the padlock in the bottom left-hand corner is closed, click on it to indicate that you want to change the settings, and then enter a system administrator's credentials.
Select the network connection you want to change. Usually this will be the Wi-Fi connection, or the ethernet if your computer is connected to a network via an ethernet cable.
Click on Advanced.
Click on the DNS tab. If DNS servers are listed here, copy the information and store it in a safe place, and then remove these servers from the list (using the '-' button).
Click on '+' and enter the IP address of the DNS server(s) you selected earlier.
Click on OK.
Click on Apply.

Android

You can only change DNS settings in Android 9 (Pie) or higher. We recommend you check whether the DNS service provider you have chosen supports DNS over TLS . If it doesn't, you will have to download Cloudflare's 1.1.1.1 app.

If your chosen provider does support DNS over TLS , then proceed as follows:

Open Settings.
Select Network and Internet and then Advanced Preferences.
Select Private DNS.
Select 'Private DNS provider hostname'. If this field is already filled in, note down this information and store it in a safe place, and then remove the information from the field.
Enter the host's address for the provider selected earlier.

iOS

The DNS is configured in your device's settings.

Select Settings and then Wi-Fi.
Tap the i icon for the network you are connected to.
Select Configure DNS and switch to Manual mode. Once you are in this mode, note down the listed servers and store this information in a safe place, and then remove the servers from the list using the red '-' buttons.
Use the green '+' button to add the IP addresses of the DNS servers you selected earlier.
Save these settings.