Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


darkasdes2

410 posts

Ultimate Geek


#270372 6-May-2020 14:38
Send private message

Hi all

 

 

 

I have finally setup a Pi-Hole on my home network and just wondering what upstream DNS servers people are using? I have selected to use Quad9 (filtered, DNSSEC) and Cloudfire.

 

 

 

Thanks


Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
Talkiet
4573 posts

Uber Geek

Trusted

  #2477869 6-May-2020 14:43
Send private message

My ISPs DNS servers of course :-) They are the fastest. (And yes I know it's caching anyway - but for almost everyone the ISP assigned DNS are the best option - even for most of those who think they aren't)

 

Cheers - N





--

 

Please note all comments are the product of my own brain and don't necessarily represent the position or opinions of my employer, previous employers, colleagues, friends or pets.


Affiliate link
 
 
 

Affiliate link: Shop Mighty Ape for electronics, games, computers books and more.
ShinyChrome
SNNAAAAAAKKKKEEEEE
1439 posts

Uber Geek

ID Verified
Trusted
Subscriber

  #2477870 6-May-2020 14:43
Send private message

Unbound, operating in recursive resolver mode. Makes bugger all difference to the DNS resolution times.


darkasdes2

410 posts

Ultimate Geek


  #2478136 6-May-2020 19:45
Send private message

Thanks for the quick replies.

 

I will go back to using my ISP DNS server.




gbwelly
1144 posts

Uber Geek


  #2478142 6-May-2020 20:03
Send private message

Getflix








Tracer
343 posts

Ultimate Geek


  #2478221 6-May-2020 21:21
Send private message

Quad9 is the fastest of the privacy-focused DNS services for me down south, and 1.1.1.1 next best. YMMV


xor

xor
56 posts

Master Geek


  #2480869 11-May-2020 03:41
Send private message

Cloudflare, NZ ISP's have shown they have no moral issue with sending fraudulent DNS responses.

Handle9
7812 posts

Uber Geek

Trusted
Lifetime subscriber

  #2480870 11-May-2020 04:30
Send private message

Talkiet:

 

My ISPs DNS servers of course :-) They are the fastest. (And yes I know it's caching anyway - but for almost everyone the ISP assigned DNS are the best option - even for most of those who think they aren't)

 

Cheers - N

 

 

If my ISP blocks a lot of content is this still the case? This is a serious (not NZ) question.

 

I live in a country that has content restrictions.




ShinyChrome
SNNAAAAAAKKKKEEEEE
1439 posts

Uber Geek

ID Verified
Trusted
Subscriber

  #2480874 11-May-2020 07:02
Send private message

Handle9:

 

If my ISP blocks a lot of content is this still the case? This is a serious (not NZ) question.

 

I live in a country that has content restrictions.

 

 

The difference between your ISP and most major public resolvers is barely noticeable by our standards if any. It just comes down to who do you trust to give you the correct answer, and whether you want to share your data with one or two companies. Or you can run the tree yourself.

 

As to the underlying question, it depends on how they block content; if they are blocking by IP, there isn't much outside a VPN that would fix that. If they are just DNS hijacking, then any public resolver will fix that. It won't stop them from seeing the follow-up request for that IP address though. So, a VPN + public resolver is the only thing that will fix that. 


sbiddle
30853 posts

Uber Geek

Retired Mod
Trusted
Biddle Corp
Lifetime subscriber

  #2480902 11-May-2020 07:59
Send private message

xor: Cloudflare, NZ ISP's have shown they have no moral issue with sending fraudulent DNS responses.

 

Wow.

 

You support a company that has no regard for the law or the spread of disinformation and think RSP's who are keen to show some morals by blocking a handful of sites after a major hate speech attack are the bad guys?! 


nzkc
1066 posts

Uber Geek


  #2480922 11-May-2020 09:05
Send private message

Handle9:

 

If my ISP blocks a lot of content is this still the case? This is a serious (not NZ) question.

 

I live in a country that has content restrictions.

 

 

If this were the case here* then I think a lot of us would use 3rd party DNS servers (especially with Pihole) if we could. As it is NZ ISPs are mostly trustworthy so we have little reason to need anything else.  Exceptions would be wanting access to US Netflix (or similar) and using a DNS proxy to do this.  In the past I have used Getflix DNS for this reason. Now though the content differences aren't enough for me to bother and I just use my ISPs DNS servers.

 

* Some ISPs do take some block lists from the government (the DIA) to block some sites. These are sites the support abhorrent crimes such as child abuse. Some detail on that here: https://www.dia.govt.nz/Censorship-and-the-Internet


Lias
4886 posts

Uber Geek

ID Verified
Trusted
Lifetime subscriber

  #2482287 12-May-2020 23:22
Send private message

sbiddle:

 

xor: Cloudflare, NZ ISP's have shown they have no moral issue with sending fraudulent DNS responses.

 

Wow.

 

You support a company that has no regard for the law or the spread of disinformation and think RSP's who are keen to show some morals by blocking a handful of sites after a major hate speech attack are the bad guys?! 

 

 

I can't speak for the OP but I consider an RSP's job is to provide an unfiltered, uncensored connection to the internet unless its customers explicitly opt in to censorship. When RSPs decides to unilaterally censor things, then yes, I think they can be considered the bad guys, it's simply not their job to be the moral police. What they did last year is exactly why we need more time and money invested in things like the EFF, Tails, tor, wireguard, etc, so that we cannot be held hostage by RSP's who want to virtual signal with a variant of 'think of the children'.

 

*edit* also roll on DNS over HTTPS so they can never pull a stunt like last year again.

 

 





I'm a geek, a gamer, a dad and an IT Professional. I have a full rack home lab, size 15 feet, an epic beard and Asperger's. I'm a bit of a Cypherpunk, who believes information wants to be free and the Net interprets censorship as damage and routes around it.


ShinyChrome
SNNAAAAAAKKKKEEEEE
1439 posts

Uber Geek

ID Verified
Trusted
Subscriber

  #2482410 13-May-2020 08:10
Send private message

Lias:

 

I can't speak for the OP but I consider an RSP's job is to provide an unfiltered, uncensored connection to the internet unless its customers explicitly opt in to censorship. When RSPs decides to unilaterally censor things, then yes, I think they can be considered the bad guys, it's simply not their job to be the moral police. What they did last year is exactly why we need more time and money invested in things like the EFF, Tails, tor, wireguard, etc, so that we cannot be held hostage by RSP's who want to virtual signal with a variant of 'think of the children'.

 

*edit* also roll on DNS over HTTPS so they can never pull a stunt like last year again.

 

 

This isn't an Iran or China style block-list of "disagreeable" sites we are talking about here, this is sites dealing with child exploitation and acts of cruelty. And I imagine that the DIA provides, so arguably they are complying with the law. Stop tilting at windmills.

 

You don't think it is just? Take it up with the DIA.


chevrolux
4962 posts

Uber Geek
Inactive user


  #2482423 13-May-2020 08:20
Send private message

Lias:

I can't speak for the OP but I consider an RSP's job is to provide an unfiltered, uncensored connection to the internet unless its customers explicitly opt in to censorship. When RSPs decides to unilaterally censor things, then yes, I think they can be considered the bad guys, it's simply not their job to be the moral police. What they did last year is exactly why we need more time and money invested in things like the EFF, Tails, tor, wireguard, etc, so that we cannot be held hostage by RSP's who want to virtual signal with a variant of 'think of the children'.


*edit* also roll on DNS over HTTPS so they can never pull a stunt like last year again.


 



God that's an idiotic take on things....

If you want to look at videos of people being murdered, jump on TOR.

Lias
4886 posts

Uber Geek

ID Verified
Trusted
Lifetime subscriber

  #2482509 13-May-2020 09:08
Send private message

ShinyChrome:

 

Lias:

 

I can't speak for the OP but I consider an RSP's job is to provide an unfiltered, uncensored connection to the internet unless its customers explicitly opt in to censorship. When RSPs decides to unilaterally censor things, then yes, I think they can be considered the bad guys, it's simply not their job to be the moral police. What they did last year is exactly why we need more time and money invested in things like the EFF, Tails, tor, wireguard, etc, so that we cannot be held hostage by RSP's who want to virtual signal with a variant of 'think of the children'.

 

*edit* also roll on DNS over HTTPS so they can never pull a stunt like last year again.

 

 

This isn't an Iran or China style block-list of "disagreeable" sites we are talking about here, this is sites dealing with child exploitation and acts of cruelty. And I imagine that the DIA provides, so arguably they are complying with the law. Stop tilting at windmills.

 

You don't think it is just? Take it up with the DIA.

 

 

We're not talking about the DIA list which is its own separate disagreement, we're talking about the RSP's unilaterally cutting off a swathe of popular internet sites last year because they were hosting the mosque video.





I'm a geek, a gamer, a dad and an IT Professional. I have a full rack home lab, size 15 feet, an epic beard and Asperger's. I'm a bit of a Cypherpunk, who believes information wants to be free and the Net interprets censorship as damage and routes around it.


Lias
4886 posts

Uber Geek

ID Verified
Trusted
Lifetime subscriber

  #2482551 13-May-2020 09:53
Send private message

chevrolux: 

 

God that's an idiotic take on things....

If you want to look at videos of people being murdered, jump on TOR.

 

You are welcome to disagree with me, we live in a free society and I certainly disagree with what the RSPs did, but I'd hope you are at least able to comprehend why some peoples trust in RSPs was eroded by their actions last year. 

 

As for murder videos, not really my cup of tea, but given the notoriety and volumes of traffic sites like Dan's Gallery of the Grotesque, Stileproject and Bestgore have achieved, clearly they are for plenty of people. In my view, Joe Blogs should be able to browse whatever he wants without it being policed by his RSP. If Mr Blogs wants to visit overseas VOD sites, the pirate bay, the nambla forums, bestgore, or a furry porn website, that's not their concern. Why should Mr Blogs have to gain sufficient technical knowledge to bypass their blocking? While I'm no fan of the DIA list mentioned above, at least that comes from the government who some would argue have the right to censor its citizen, however last year our RSPs decided to play judge jury and executioner.

 

 





I'm a geek, a gamer, a dad and an IT Professional. I have a full rack home lab, size 15 feet, an epic beard and Asperger's. I'm a bit of a Cypherpunk, who believes information wants to be free and the Net interprets censorship as damage and routes around it.


 1 | 2
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic





News and reviews »

Belkin Screenforce Tempered Glass Screen Protector and Bumper - Apple Watch
Posted 15-Aug-2022 17:20


Samsung Introducing Galaxy Z Flip4 and Galaxy Z Fold4
Posted 11-Aug-2022 01:00


Samsung Unveils Health Innovations with Galaxy Watch5 and Galaxy Watch5 Pro
Posted 11-Aug-2022 01:00


Google Bringing First Cloud Region to Aotearoa New Zealand
Posted 10-Aug-2022 08:51


ANZ To Move to FIS Modern Banking Platform
Posted 10-Aug-2022 08:28


GoPro Hero10 Black Review
Posted 8-Aug-2022 17:41


Amazon to Acquire iRobot
Posted 6-Aug-2022 11:41


Samsung x LIFE Picture Collection Brings Iconic Moments in History to The Frame
Posted 4-Aug-2022 17:04


Norton Consumer Cyber Safety Pulse Report: Phishing for New Bait on Social Media
Posted 4-Aug-2022 16:50


Microsoft Announces New Solutions for Threat Intelligence and Attack Surface Management
Posted 3-Aug-2022 21:54


Seagate Addresses Hyperscale Workloads with Enterprise-Class Nytro SSDs
Posted 3-Aug-2022 21:50


Visa Launching Eco-friendly Payment Solutions in New Zealand
Posted 3-Aug-2022 21:48


NCR Delivers Services to Run Bank of New Zealand ATM Network
Posted 30-Jul-2022 11:06


New HP Portfolio Supports New Era of Hybrid Work
Posted 28-Jul-2022 17:14


Harman Kardon Launches Citation MultiBeam 1100 Soundbar
Posted 28-Jul-2022 17:10









Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







Backblaze unlimited backup