1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Dismiss Notice

Welcome To SNBForums

SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.

If you'd like to post a question, simply register and have at it!

While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!

Any reason to use one public DNS over another?

Discussion in 'General Network Security' started by Lee MacMillan, Mar 26, 2020 at 11:13 AM.

  1. Lee MacMillan

    Lee MacMillan Occasional Visitor

    Joined:
    Jun 15, 2018
    Messages:
    30
    Comcast is my ISP and I have been using Google ipv4 DNS servers for many years. I added Google's ipv6 servers about 3 years ago. (Router is Asus AC66U B1). When I search on free DNS, I don't really see anything that leads me to believe one is better than another. Google already knows everything there is to know about me (I use Chrome as my browser and an Android phone) so I don't really have any privacy concerns. :)
     
  2. Natey2

    Natey2 Regular Contributor

    Joined:
    Jun 27, 2018
    Messages:
    82
    FWIW, there are DNS Benchmark/Speed Test programs out there.


    Sent using Tapatalk
     
    Paliv likes this.
  3. ColinTaylor

    ColinTaylor Part of the Furniture

    Joined:
    Mar 31, 2014
    Messages:
    10,960
    Location:
    UK
    For most people the decision is based on reliability or privacy. Arrange the order of these two on you own preference. I'd say after that would come speed (response times).

    Working backwards... In theory your ISP's DNS servers should be the fastest responding and also provide the fastest connection the CDN services (like Netflix, etc.).

    However sometimes there are reasons why you don't want to use your ISP's servers. Some ISP's actively snoop DNS and might inject advertising, sell your activity to third parties, block content, etc. Or it may simply be that their DNS servers are slow and/or unreliable. For these reasons you might prefer/need to use an alternative.

    If privacy (to an extent) and speed are important then something like Cloudflare's 1.1.1.1 is quite a good option.
     
  4. digits n bits

    digits n bits Regular Contributor

    Joined:
    Dec 12, 2019
    Messages:
    57
    Location:
    SoCal
    I’ve used google and cloudflare dns for quite awhile. Google is Google as far as privacy goes and Clouflare is kind of wonky. I’ve been using quad9 for last few months and it works well. No issues, fast, east setup. Of course YMMV.
     
    Last edited: Mar 26, 2020 at 12:33 PM
  5. L&LD

    L&LD Part of the Furniture

    Joined:
    Dec 9, 2013
    Messages:
    11,436
    Unbound. :)
     
  6. Lee MacMillan

    Lee MacMillan Occasional Visitor

    Joined:
    Jun 15, 2018
    Messages:
    30
    I am typically exceeding my rated download speed of 100Mbps by 15-20% so speed is not an issue with my current setup.

    Do all the free DNS providers have ipv6 servers as well? Is that even important at this point? I know that many of the major sites (Google, FB, Yahoo, etc.) are using ipv6.
     
  7. ColinTaylor

    ColinTaylor Part of the Furniture

    Joined:
    Mar 31, 2014
    Messages:
    10,960
    Location:
    UK
    Download speeds and DNS response times are two different things.

    All DNS servers, even IPv4-only ones, will return IPv6 addresses if they exist. For example:
    Code:
    C:\Users\Colin>nslookup www.snbforums.com 8.8.8.8
    Server:  dns.google
    Address:  8.8.8.8
    
    Non-authoritative answer:
    Name:    www.snbforums.com
    Addresses:  2606:4700:20::681a:842
              2606:4700:20::681a:942
              104.26.8.66
              104.26.9.66
    
     
    L&LD, Paliv and Lee MacMillan like this.
  8. OzarkEdge

    OzarkEdge Part of the Furniture

    Joined:
    Feb 14, 2018
    Messages:
    2,205
    Location:
    USA
    Check it out:
    https://www.quad9.net/

    OE
     
  9. MichaelCG

    MichaelCG Very Senior Member

    Joined:
    Jan 4, 2017
    Messages:
    622
    Location:
    Central US
    Most of it has been covered pretty well.

    1.) Privacy vs Performance vs Filtering
    2.) CDN Optimization
    - probably better to use your providers for that purpose
    - where a DNS query originates from may determine what IP is returned to direct your traffic to the closest server
    3.) Ping each option to get a high level idea of network latency
    4.) Check query response times and published reviews to get an understanding of resolution latency

    I personally use OpenDNS/Umbrella still. My latency differences to Google DNS vs OpenDNS is extremely minimal. And I like some of the filtering options from OpenDNS. I know Google and some of the others have added in similar filtering, but it is not configurable nor reportable.

    Of course this thread makes me go back and check and as of today, network latency to Google is half what it is to any other provider. Go figure. A couple months back, it was about not nearly that much. Guess it is time to review my setup yet again.
     
    Lee MacMillan likes this.
  10. MichaelCG

    MichaelCG Very Senior Member

    Joined:
    Jan 4, 2017
    Messages:
    622
    Location:
    Central US
    Doing a bit more testing and realized that my IPv4 latency greatly differed from my IPv6 latency. All of this is purely network latency, not resolution latency. "Assuming" they are all pretty darn fast at resolving and all provide similar malicious filtering.

    IPv4
    - Google wins 14.51ms avg latency
    - CloudFlare in the mid 20's
    - Quad9 in the mid 30's
    - OpenDNS in the upper 20's

    IPv6
    - CloudFlare wins at 7ms
    - Quad9 at 10ms
    - Google at 15ms
    - OpenDNS at 15ms

    At this level of latency...I really can't go wrong with any of them. My guess on why CloudFlare is so fast on IPv6 is due to my use of a tunnel broker and I bet CloudFlare is in the same data center as the broker I use. And Google is so fast on IPv4 due to them being my ISP.

    Someday I will take the time to figure out how to remove the GF router so I won't need to use a tunnel broker.....but free time is what I don't have these days. Things work for now....so they will stay that way for now.
     
  11. Lee MacMillan

    Lee MacMillan Occasional Visitor

    Joined:
    Jun 15, 2018
    Messages:
    30
    Thanks for doing all this research. Since I'm not all that concerned about any privacy shortcomings that Google may have, I guess I'll stick with it for now. It ain't broke, so I'm not going to fix it.

    Thanks to all who responded. You have added to my minimal understanding of network security and that's always a good thing.
     
  12. dave14305

    dave14305 Part of the Furniture

    Joined:
    May 19, 2018
    Messages:
    2,403
    Location:
    USA
    L&LD likes this.