Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
General Apps
VPN and DNS
NextDNS thoughts and experiences?
Message
<blockquote data-quote="valvaris" data-source="post: 918965" data-attributes="member: 38787"><p>Hello [USER=88726]@Trismer[/USER]</p><p></p><p>I am not sure but it seems that Line 4 "bootstrapAddress" still refers to Cloudflare. The other thing is how VPN Protocol will handle your IP routing.</p><p></p><p>For Example in OpenVPN you can force in the config to Route DNS Traffic to specific servers! The other part is how the Provider handles DNS Requests.</p><p></p><p>Another Example known VPN Client connects to Provider Network and the Appliance or Server has specific rules on how DNS will be handled.</p><p></p><p>Like: If Source Port is 53 UDP send to Destination IP on Port 53 UDP - Some even try to MiM the 53 TCP requests for DoH.</p><p></p><p>Your best bet is to go DoT from start to finish since the encapsulation has to start from the requester to recursively obtain the destination address. Since NextDNS Suppports DoT very well you could do a easy implementation and go full IPv6 from the Client but it could break other things in the Home-Network. Still the safest way to have a Direct Connection to NextDNS since IPv6 is a Point to Point Protocol. So even if you have a VPN connected and it allows for IPv6 to go thru you will always have a direct Link to NextDNS from the Client to the Server. If the VPN Provider prevent you from using IPv6 or forces a DNS server then there could be another reason behind it since some of those providers use Proxy Chain Servers to bypass Netflix - Funimation and so on checks.</p><p></p><p>If you are in need for more Explanation I am here to help do not hesitate to ask.</p><p></p><p>Sincerely</p><p>Val.</p></blockquote><p></p>
[QUOTE="valvaris, post: 918965, member: 38787"] Hello [USER=88726]@Trismer[/USER] I am not sure but it seems that Line 4 "bootstrapAddress" still refers to Cloudflare. The other thing is how VPN Protocol will handle your IP routing. For Example in OpenVPN you can force in the config to Route DNS Traffic to specific servers! The other part is how the Provider handles DNS Requests. Another Example known VPN Client connects to Provider Network and the Appliance or Server has specific rules on how DNS will be handled. Like: If Source Port is 53 UDP send to Destination IP on Port 53 UDP - Some even try to MiM the 53 TCP requests for DoH. Your best bet is to go DoT from start to finish since the encapsulation has to start from the requester to recursively obtain the destination address. Since NextDNS Suppports DoT very well you could do a easy implementation and go full IPv6 from the Client but it could break other things in the Home-Network. Still the safest way to have a Direct Connection to NextDNS since IPv6 is a Point to Point Protocol. So even if you have a VPN connected and it allows for IPv6 to go thru you will always have a direct Link to NextDNS from the Client to the Server. If the VPN Provider prevent you from using IPv6 or forces a DNS server then there could be another reason behind it since some of those providers use Proxy Chain Servers to bypass Netflix - Funimation and so on checks. If you are in need for more Explanation I am here to help do not hesitate to ask. Sincerely Val. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
