An example of how secure dns provider can save me
Except for Norton and G Data, only hagezi tif dns list was able to flag the website
DNS Providers for Home Users – Still Cloudflare/Quad9, or Did NextDNS/Control D Finally Win?
- Thread starter Bot
- Start date
- Featured
Except for Norton and G Data, only hagezi tif dns list was able to flag the website
Yes, but currently I leave router dns settings on default, and use DoH in browers settings.
If you're using some questionable blocklists, there can be FPs. I just stick with HaGeZi and Cloudflare's categories and I rarely see any FPs.
Depends what you want. If you want DNS protection like NextDNS and WARP+ for free, you'll need to create a Cloudflare Zero Trust and GitHub account. If you want basic unlimited VPN, then WARP is more than enough for you.
WARP+ differs from WARP because it uses Argo Smart Routing which means Cloudflare looks for the best route to the requested server with less congestion in real-time instead of relying always on the same route regardless of the "traffic" like your ISP. This is why WARP+ is faster than typical WARP.
There's also an option to pay for unfiltered WARP+, but it's completely free for Zero Trust users.
If you want your system to be covered with DNS-over-HTTPS as well, then yes.
I am using a mix
- NextDNS free in the Router
Reason: security, IOT-telemetry and good reporting features.
Config: enabled all security features and telemetry blocking (for smart TV), manually blocked all non-latin character TLD's - Quad DNS free as default in laptop devices
Reason: large number of servers available (for Amsterdam 8 in total), combines zero breakage with good malware blocking - Cloudflare Zero trust free in browser
Reason: good reporting and security, mild ad& tracker blocking and premium free feature geo location blocking (!)
config: security categories and security related content categories enabled, plus OISD-small and geo-location blocking (Russia, China, North Korea, Iran)
- In surfing profile uBol blocks (only) all TLD's except allowing some common TLDs (com, io, org, net, edu) and Country codes extended EU-zone and 5 Eyes
Last edited:
F
ForgottenSeer 123960
Blocking all non-Latin TLDs would result in a high-impact research degradation for subjects located in or affiliated with Russia, China, the Middle East, and parts of Asia.
Why not just use Cloudflare for all of those? In Zero Trust Free you can create more DNS locations.
F
ForgottenSeer 123960
These tier 2 sources are not usable for what I do. Blocking "ALL Non-Latin TLDs however would cause issue.
When you block Non-Latin TLDs (e.g., .рф), you become blind to local culture and native subjects.
When you block .ru or .cn from the Verification Layer, you are merely filtering out State Propaganda.
Last edited by a moderator:
If you have chosen your DNS, especially with the aim of blocking threats with a method that has a low impact on your PC's resources, consider running malware/phishing/fake site tests.
AG account with the usual list of filters that I use in NextDNS guarantee a lower total number of blocks than can be achieved with NextDNS.
I think it is understandable for anyone not to rely exclusively on the list of filters you have chosen.
AG account with the usual list of filters that I use in NextDNS guarantee a lower total number of blocks than can be achieved with NextDNS.
I think it is understandable for anyone not to rely exclusively on the list of filters you have chosen.
That is why I added the reason
but to be honest I recently moved to Cloudflare Zero Trust because of positive posts (also from you) in Cloudflare thread. Let's say I half convinced on Cloudflare. Not moving over is partly lazyness (Cloud9) and not knowning Cloudflare als has blocklist for IOT-devices like NextDNS (thanks for attending me 
)Cloud9 in the OS is because they are listed as one of the defaults in Linux (so mostly lazyness and partly because Cloud9 offers more servers on Amsterdam than Cloudflare).
I simply did not know that Cloudflare also has telemetry build-in blocklists like NextDNS (see below), I will have a look at it.
Last edited:
You mean Quad9? Quad9 couldn't possibly have more servers than Cloudflare. Cloudflare uses three data centers in Amsterdam alone.
It doesn't, but you can always add HaGeZi's Native Trackers lists which is what NextDNS uses, I think.
Just don't mix those two on same device as malware/phishing protection won't be reliable.
Technically Quad9 has no servers, it uses ISPs, like Adguard.
Cloudflare Global Network | Data Center Locations | Cloudflare
Exceptional performance, security and reliability for the modern enterprise, with a vast global network spanning hundreds of cities in 100+ countries.
Last edited:
But Quad9 is much more faster than AG for me!
Yeah, pretty much everyone rents network and servers except Cloudflare and Google. They own their data centers and servers.Technically Quad9 has no servers, it uses ISPs, like Adguard.
Cloudflare Global Network | Data Center Locations | Cloudflare
Exceptional performance, security and reliability for the modern enterprise, with a vast global network spanning hundreds of cities in 100+ countries.www.cloudflare.com
Sorry to say this, but the larger amount of servers on the list doesn't mean anything. You don't get any benefits from it.
Beside, Cloudflare usually has multiple servers under the same IP; this is why you see only two IP addresses and not more.
And it should be faster considering it uses way larger network than AdGuard.
Yes of course, I use different devices.
You may also like...
-
I need some honest advice about which DNS server to pick in Portmaster Firewall.- Started by Morro
- Replies: 2
-
-
The official release of AdGuard DNS — a new unique approach to privacy-oriented DNS
- Started by HarborFront
- Replies: 3