@Johnsmith2 

I am no great expert in DNS spoofing but do understand a few things.

I would not think AP isolation would protect you.

Generally, the DNS can be set at different places and depending on where it is set will determine which DNS is used. 

There are many attack points for DNS spoofing. Your devices, routers, ISP, the DNS servers, and even a VPN all can be hacked and changed to use a different DNS. 

In order for a computer to access the internet faster, computers store the websites addresses you previously used. So if you were spoofed, going to a clean DNS will not fix the issue. You need to clear the history. One example would be you are out somewhere with your laptop and use what you think is the ISP's hotpoint and go to a new website that was DNS spoofed. Now that spoofed address is in your history. You get home, connect to the AP, however as I understand, it will use the spoofed address until the history is cleared for that website.

Apps and programs could alter the DNS settings in a device to use a different DNS. Most would not notice that it occurred. How many people ever look at their iPad to see if any of the Wireless settings point to a specific DNS and would know what it meant?

See https://usa.kaspersky.com/resource-center/definitions/dns for some useful info.

One thing in they say in the writeup I do not totally agree with is a VPN protects you. There is a lot of questions these days about how well a VPN protects you and if they actually doing things such as data mining or worse. I am sure there are many good VPN providers out there, but which ones? 

@ArcherC8 

Alright thank you for a detailed answer. I hope this thread helps also those who are curious whether ap isolation protects against dns spoofing.