Im looking for a dns that doesnt spy on me as much as google’s dns server.
Mullvad recently announced a free encrypted DNS. It can block ads and malware too.
Awesome, I didn’t know about this. I love Mullvad.
I don’t think you need that if you already use their VPN, as that already connects to their DNS servers.
Adguard also offers free public DNS. I’ve used it since discovering that cloudflare blackholes archive.org and all similar sites.
You’re probably confusing archive.org (The Internet Archive non-profit organization), which works with cloudflare dns, with archive.is (alternate domain for archive.today website snapshot service, commonly used to bypass paywalled articles), which don’t work on cloudflare but it’s due to its owner’s decision, not cloudflare’s fault. The gist is archive.is uses dns-based load balancer and CDN, which requires EDNS Client Subnet to determine the closest servers to serve the request. But Cloudflare disable EDNS Client Subnet on ther DNS service for privacy reason which seems to piss archive.is owner so much they blocked cloudflare dns.
im having trouble setting it up. when i enter the ip into the dns slot in my network settings it does not work.
deleted by creator
That’s the unencrypted DNS version. The adblocking will work but your queries won’t be encrypted. You’ll either have to configure it on your browser, or configure system-resolved like what is written in the article that was posted.
Other options are Aha DNS and Control D.
If your distro makes use of systemd, just use resolved: https://wiki.archlinux.org/title/Systemd-resolved#Manually
Run a Pi-hole with Unbound
Seriously, can vouch for this. Pi-hole is great!
I’ve been using Quad9 and I’m happy with it. Here’s the site if you’re interested in looking into it further.
Mullvad is another great option that’s already been mentioned.
At home you can use Unbound
This coupled with pihole is great! The pihole docs even have setup for unbound and it’s really easy to follow.
Honest question, what’s wrong with cloudflare?
NextDNS.
You can control if you want logs or not, where to store them, for how long, which domains to block, which encryption protocol will be used, and many more features.
Quad9 or mullvads dns
Mullvad is a better option
Why?
Here are two resources for privacy-oriented DNS:
- The provider list for the https-dns-proxy module of OpenWRT: https://github.com/stangri/source.openwrt.melmac.net/tree/master/luci-app-https-dns-proxy/root/usr/share/https-dns-proxy/providers
- Privacy-oriented European public DNS services: https://european-alternatives.eu/category/public-dns
Adguard has a quite comprehensive list of known DNS providers in their documentation. It’s very useful because my ISP transparently redirect all dns queries on port 53, so I’ll have to find DNS providers that listen on alternate ports for my upstream DNS in my Adguard instance.
If you have the skill to implement Pi Hole is the best option. If not MullvadDNS is a solid option but if you want a granular control over your DNS queries no doubt NextDNS.
OpenNIC https://www.opennic.org/
Adguard has an encrypted dns
If you are in Europe, try dns0: https://www.dns0.eu/
In case you are unaware, make sure to override DNS on any web browsers or other programs that might be skipping OS configured DNS servers to use hard-coded DNS over HTTPS servers.
If you’re running your own DNS resolver you can hint this to some applications in your network via a canary domain
Have a look at https://dnsforge.de