- Feb 25, 2017
- 2,597
Sure, false positives are always a problem with attack surface or risk reduction measures. In the end I still think that it's easier to whitelist sites in NextDNS compared to DNS services like Quad9 or Cloudflare, where you basically have to disable the DNS to access a blocked page. In NextDNS you have to access your dashboard and simply add those sites to the allowlist, which never was a problem for me at least.It can also generate false positives and complaints among the residents if you are filtering for a whole network. Lots of legit advertising links end up being from new domains. So it depends on how much managing you want to do. When I attempted filtering ads and such on the whole network it resulted in many submissions to my "complaint inbox", also known as "hey husband, WTF did you break!!?".