Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


freitasm

BDFL - Memuneh
79250 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

#232130 31-Mar-2018 11:21
Send private message

Saw a headline pointing to a Google cache for the (now empty) page at https://1.1.1.1/ 

 

The Google cache has now been removed. The headline was about this being a new DNS service by Cloudflare.





Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
freitasm

BDFL - Memuneh
79250 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1986304 31-Mar-2018 11:30
Send private message

Wired has published an article about this service now: Cloudflare's New Encryption Service Adds Privacy Protection for Web Browsing.





Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup




freitasm

BDFL - Memuneh
79250 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1986306 31-Mar-2018 11:32
Send private message




Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup


vulcannz
436 posts

Ultimate Geek
Inactive user


  #1986588 31-Mar-2018 22:05
Send private message

Are people really that worried about their DNS traffic?




freitasm

BDFL - Memuneh
79250 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1986589 31-Mar-2018 22:06
Send private message

Some people maybe, as it can be used to identify some very private things.





Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup


vulcannz
436 posts

Ultimate Geek
Inactive user


  #1986600 31-Mar-2018 22:35
Send private message

freitasm:

 

Some people maybe, as it can be used to identify some very private things.

 

 

Just DNS queries, so sites you may be visiting. Which for the most part can be found fairly easily if someone is across your upstream traffic anyway.


michaelmurfy
meow
13240 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #1986626 1-Apr-2018 00:09
Send private message

Irony on the date:

 

We’ve built 1.1.1.1 to be the Internet’s fastest DNS directory. Don’t take our word for it. The independent DNS monitor DNSPerf ranks 1.1.1.1 the fastest DNS service in the world. As of April 1, 2018, we’re 53% faster than second place, which means we're at least 53% faster than whatever you're using today.

 

Anyway - I have tested this claim - response times are actually 40% faster (average) than using 2degrees DNS servers for me. This however won't be the same with Spark / BigPipe and potentially Vodafone* due to the fact they don't peer with Cloudflare in Auckland and instead go over to Sydney.

 

I've switched my DNS servers over to Cloudflare for now - I know it isn't launched but it is indeed resolving DNS. I do like their claims, I do trust them more with their claims than other providers (I know somebody who works for Cloudflare) and personally was using quad9 before due to their no-logging policy.

 

In the past, I used to use dnscrypt with success. For anyone interested I am currently using this on Linux combined with my local DNS server with Cloudflare's DNS over HTTPS service.

 

Even though the date is off this actually currently works (and very well with ISP's that peer) - there is a cached page Here.

 

*Not actually 100% sure if Vodafone peer via APE to Cloudflare yet.





Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.


vulcannz
436 posts

Ultimate Geek
Inactive user


  #1986665 1-Apr-2018 08:26
Send private message

I would've expected it to be slower given the HTTPS protocol is going to be far less efficient than UDP.

 

See here: https://www.dnsv6lab.net/2016/03/05/A-performance-test-of-DNS-over-different-transport-protocol/

 

Does cloudfare keep an HTTPS tunnel open or something?

 

 

 

 


 
 
 

Cloud spending continues to surge globally, but most organisations haven’t made the changes necessary to maximise the value and cost-efficiency benefits of their cloud investments. Download the whitepaper From Overspend to Advantage now.
freitasm

BDFL - Memuneh
79250 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1987025 2-Apr-2018 08:59
Send private message

And 1.1.1.1 is live now - Cloudflare blog here.

 

vulcannz:

 

I would've expected it to be slower given the HTTPS protocol is going to be far less efficient than UDP.

 

See here: https://www.dnsv6lab.net/2016/03/05/A-performance-test-of-DNS-over-different-transport-protocol/

 

Does cloudfare keep an HTTPS tunnel open or something?

 

 

By default your system will use the old DNS lookup - unless you have a HTTP client. Developers (OS, browsers) can add this as a feature. Documentation here.





Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup


vulcannz
436 posts

Ultimate Geek
Inactive user


  #1987103 2-Apr-2018 10:30
Send private message

freitasm:

 

And 1.1.1.1 is live now - Cloudflare blog here.

 

vulcannz:

 

I would've expected it to be slower given the HTTPS protocol is going to be far less efficient than UDP.

 

See here: https://www.dnsv6lab.net/2016/03/05/A-performance-test-of-DNS-over-different-transport-protocol/

 

Does cloudfare keep an HTTPS tunnel open or something?

 

 

By default your system will use the old DNS lookup - unless you have a HTTP client. Developers (OS, browsers) can add this as a feature. Documentation here.

 

 

I understand that, but the UDP based process of each DNS lookup is simply going to be faster than establishing an HTTPS connection (UDP vs TCP, no secure handshake/security negotiation) . So I would expect the only way for it to be faster is if it is opening a persistent HTTPS session to the HTTPS/DNS server.


michaelmurfy
meow
13240 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #1987459 3-Apr-2018 10:07
Send private message

An interesting read: https://medium.com/@nykolas.z/dns-resolvers-performance-compared-cloudflare-x-google-x-quad9-x-opendns-149e803734e5

 

Cloudflare performs very well compared to the other players. Just note, if you're on Spark, Skinny, BigPipe or Vodafone it is best to use your providers DNS due to their anti-peering policies.





Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.


hio77
12999 posts

Uber Geek

ID Verified
Trusted
Lizard Networks

  #1987462 3-Apr-2018 10:16
Send private message

over HTTPS compared to TLS? seems like alot of overhead...

 

 

 

Anyone done a head to head compassion?





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

 

 


dfnt
1511 posts

Uber Geek

Lifetime subscriber

  #1987469 3-Apr-2018 10:27
Send private message

How does this work in terms of being served off your ISP's local CDN/whatever e.g. Netflix etc if you moved away from using ISP DNS?


hio77
12999 posts

Uber Geek

ID Verified
Trusted
Lizard Networks

  #1987472 3-Apr-2018 10:27
Send private message

nas:

 

How does this work in terms of being served off your ISP's local CDN/whatever e.g. Netflix etc if you moved away from using ISP DNS?

 

 

You won't hit those content servers.





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

 

 


dfnt
1511 posts

Uber Geek

Lifetime subscriber

  #1987512 3-Apr-2018 11:05
Send private message

Whats the benefit in using it then, other than privacy?


timmmay
20574 posts

Uber Geek

Trusted
Lifetime subscriber

  #1987515 3-Apr-2018 11:08
Send private message

nas:

 

Whats the benefit in using it then, other than privacy?

 

 

Well, privacy that you've excluded is a significant advantage for many, but performance and reliability are also advantages.


 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00


eero Pro 7 Review
Posted 23-Jul-2025 12:07


BeeStation Plus Review
Posted 21-Jul-2025 14:21


eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01


WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32


RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26


Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24


Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05


Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01


Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01


Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22


Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46


Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42


D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34


Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15









Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.