Hey gang, I’m considering using DNS4EU in Canada. My ping to their servers is ~130ms. That’s way longer than anything local which is on the order of 1-5ms. Apart from resolving uncached entries taking longer, is there any contraindication to using a DNS server with high latency?
You must log in or register to comment.
If you’re using a government run DNS, why not use the CIRA ones instead? https://www.cira.ca/en/canadian-shield/
I’m currently trying that but the proposed information sharing changes with the US in Bill
C-5C-2 change the calculus. I’m sure part of the push comes from the American copyright lobby.Fellow Canadian here, this has completely been off my radar. A quick search brings for Bill C-5 brings up the removal of trade barriers and tax cuts.
Can you point me to where the copyright nonsense is in the bill?
Sorry, C-2. 😄 It’s got some Patriot Act-y stuff in it. Look up coverage on it.
Does it actually block thepiratebay, yts, 1337x? Lots of European DNS servers do.
Each of them returns the correct answer.
Protective Resolution - IP address 86.54.11.1 Protective + Child Protection - IP address 86.54.11.12 Protective + Ad blocking - IP address 86.54.11.13 Protective + Child Protection + Ad blocking - IP address 86.54.11.11 Unfiltered Resolution- IP address 86.54.11.100;; ANSWER SECTION: thepiratebay.org. 300 IN A 162.159.137.6 thepiratebay.org. 300 IN A 162.159.136.6
Well, this is selfhost, so why not do that and set up unbound to use?
Is unbound different than say dnsmasq that my router is running? Isn’t it just another DNS server that has to go to a higher DNS server for resolution?
Dnsmasq is dependent on whatever DNS servers you provide it with for its data, so if those controlling those DNS servers get ordered to block something you experience that.
Unbound however does the same job as the DNS servers you would configure in Dnsmasq : when you do a DNS request, unbound goes to the root hint servers, then works its way down through the authorative DNS servers til it finds what you are requesting.
There are many similar services like RethinkDNS that you should consider instead.
Question for the general public. Why not use the DNS server provided by your ISP?
They already know what websites you visit, because TLS1.2 still leaks the hostname. They might as well provide some useful service in return.
Because they are court ordered to block some websites that I like to use.
Not if you use a vpn. Being that this is Selfhosted, the best idea is to just host your own Recursive DNS server.
So you’re asking if there is any other way to work around physics and get a better response time to servers that are thousands of miles away?
No.
Sorry.
Not asking for a workaround. Asking if I’m missing some problem with using a slow DNS server I might run into, other than the obvious one.
gimping your dns’ ping just to not use something non-american won’t change orange man’s policies. use a private dns close to you.
