[Discussion] DNS Providers

Set them to 208.67.222.222 and 208.67.220.220

These are the OpenDNS servers. They will resolve correctly and are always up. The only time they return an incorrect IP is if you are trying to connect to a known malicious site. They will block that access.

1.1.1.1 is way quicker.

https://www.cloudflare.com/learning/dns/what-is-1.1.1.1/

Looking for better… not quicker. ODNS has great uptime and blocks malicious sites. It’s free and offers protection which makes it a no brainer.

image

3 Likes

I’m aware of the benefits of odns since the where once a channel partner of mine. But cloudflare has about a 1ms refresh to any changes since effectively they are the root dns with the size of their CDNs and caching servers.

Added benifiets is they’re actually supporting DNS over TLS, DNS over HTTPs and actively respecting one’s privacy which google isn’t and cisco which owns open dns assuredly doesn’t.

To quote the Cisco Umbrella Privacy Data Sheet

Using a diverse dataset of billions of daily DNS requests and live views of the connections
between different networks on the Internet, Umbrella applies statistical models and human intelligence to
identify attackers’ infrastructures. Additionally, Cisco Umbrella Investigate provides access to Cisco’s threat
intelligence
about malicious domains, IPs, networks, and file hashes. Investigate data can be accessed via a
web-based console or an API. Umbrella offers various license options including Professional, Insights,
Platform, WLAN, and Investigate

in summary; all your search history, file downloads, and dns queries are tracked, hashed and sold to anyone with a licence subscription to Cisco Umbrella Investigate. Unsure of what Umbrella investigate is, well that’s the paid for shodan/google of search data for the guys that wish to controll all of the web all powered by your browsing history.

I want DNS over pigeon carrier …

A Standard for the Transmission of IP Datagrams on Avian Carriers

yeah but pigeons are just dirty rats with wings why not go gopher instead? At lease that can tunnel.

1 Like

“On 28 April 2001, IPoAC was actually implemented by the Bergen Linux user group, under the name CPIP (for “Carrier Pigeon Internet Protocol”).[4] They sent nine packets over a distance of approximately five kilometers (three miles), each carried by an individual pigeon and containing one ping (ICMP Echo Request), and received four responses.”

Script started on Sat Apr 28 11:24:09 2001
$ /sbin/ifconfig tun0
tun0      Link encap:Point-to-Point Protocol
          inet addr:10.0.3.2  P-t-P:10.0.3.1  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:150  Metric:1
          RX packets:1 errors:0 dropped:0 overruns:0 frame:0
          TX packets:2 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0
          RX bytes:88 (88.0 b)  TX bytes:168 (168.0 b)

$ ping -c 9 -i 900 10.0.3.1
PING 10.0.3.1 (10.0.3.1): 56 data bytes
64 bytes from 10.0.3.1: icmp_seq=0 ttl=255 time=6165731.1 ms
64 bytes from 10.0.3.1: icmp_seq=4 ttl=255 time=3211900.8 ms
64 bytes from 10.0.3.1: icmp_seq=2 ttl=255 time=5124922.8 ms
64 bytes from 10.0.3.1: icmp_seq=1 ttl=255 time=6388671.9 ms

--- 10.0.3.1 ping statistics ---
9 packets transmitted, 4 packets received, 55% packet loss
round-trip min/avg/max = 3211900.8/5222806.6/6388671.9 ms


Script done on Sat Apr 28 14:14:28 2001

Do you want to try with Gophers?

1 Like

Awesome. + 20 characters

1 Like

Cloudflare doesn’t support EDNS Local Subnet, which is rather unfortunate. Given we are in Dallas it’s not a huge issue as most major CDNs have a presence at 1950 Stemmons, but it’s still preferable to have the EDNS extension support if generic CDN performance is a concern.