DNS: Internet’s Directory
Nearly everything on the Internet starts with a DNS request. DNS is the Internet’s directory. Click on a link, open an app, send an email and the first thing your device does is ask the directory: Where can I find this?
Unfortunately, by default, DNS is usually slow and insecure. Your ISP, and anyone else listening in on the Internet, can see every site you visit and every app you use — even if their content is encrypted. Creepily, some DNS providers sell data about your Internet activity or use it target you with ads.
We think that’s gross. If you do too, now there’s an alternative: 1.1.1.1
1.1.1.1 — the Internet’s Fastest, Privacy-first consumer DNS service
How do you even go about getting that IP?
Can confirm this is real, using it now.
Well google got 8.8.8.8, Quad9 has 9.9.9.9, I guess it's not that hard.
"Cloudflare had the network. APNIC had the IP address"
"APNIC provides numbers resource allocation and registration services that support the global operation of the Internet."
being a part of internet infrastructure helps
DNSCrypt is far superior.
Yeah this is real, kinda surprising. Guess it's like when Google launched Gmail on April Fool's Day
Already changed my pi-hole to use 1.1.1.1 instead of google for DNS.
This supports DNS over HTTPS, which is objectively more secure.
apparently they asked APNIC (registry for asia pacific region) which owned the address
Source ?
I know the specification has not been updated in a year but I'm not sure the makes it unpatched garbage, the clients are still being actively developed.
DoH is still in fairly early development.
No press statement or articles about this? Feels a bit strange. It's also April Fools Day, so I am not so sure about this one folks.
I feel like changing the DNS server on my Google Fiber box makes the privacy component kinda pointless but I'll do it anyways.
no throttle pls google
The only question that remained was when to launch the new service? This is the first consumer product Cloudflare has ever launched, so we wanted to reach a wider audience. At the same time, we're geeks at heart. 1.1.1.1 has 4 1s. So it seemed clear that 4/1 (April 1st) was the date we needed to launch it.
https://blog.cloudflare.com/announcing-1111/
I've switched over. people have been testing this service for a while now but just chose today to officially announce it.
Thanks.
dnscrypt-proxy 2 already supports DoH and cloudflare so I just need to turn it on.
Can also confirm that DNSSEC works.
1.1.1.1
1.0.0.1
How did they get .1 tld?
it's not a tld, the website is really just the ip address
If anyone is interested I packaged up dnscrypt-proxy 2 configured to use cloudflare with DoH.
https://chryseus.co.uk/junk/dns-cloudflare.7z
Dump it in a folder and run service-install.bat to install.
Set your IPv4 dns server to 127.0.0.1
IPv6 dns server to ::1
If you're not using IPv6 turn it off in the configuration file.
Check the log file to make sure it's working
[NOTICE] [cloudflare] OK (DoH) - rtt: 43ms
Don't some ISPs redirect DNS requests regardless of what you set it to?
I gave up trying to change my DNS server a long time ago. It still goes through Time Warner Spectrum's DNS servers no matter what I do. I've changed it on all my devices, the router, and the modem, and it doesn't matter.
Checking again, it's still like that. What gives?
I wouldn't put it past them honestly with ISPs like Comcast.
And at that level you'd probably be better off with using a VPN anyway if you're looking to use it for privacy's sake.
I'd still probably recommend one even if you aren't.
Are there any real benefits to using this besides the chance that your ISP is spying on you? DNS Benchmark still shows my ISPs DNS servers as the fastest so I never bothered changing them
Google and Cloudflare should both vary location depending on where you are, in theory.
Cloudflare works out fastest for me interestingly.
I did a NSLookup on 1.1.1.1, I like what they named it:
Name: 1dot1dot1dot1.cloudflare-dns.com
Address: 1.1.1.1
Are there any benefits to using this if you use a VPN?
Working like a charm for me.
Will this work whenever I get DNS outages from my ISP? Sometimes it just doesn't work and all I get is "DNS_PROBE" something something errors in Chrome.
Sorry, you need to Log In to post a reply to this thread.
