• DNS performance check?

    Home » Forums » Networking – routers, firewalls, network configuration » DNS performance check?

    Tags:

    Author
    Topic
    Microfix
    AskWoody MVP
    February 4, 2024 at 7:36 am #2634262

    Homeusers or SOHO users,
    Have you found your ISP provided DNS slow?
    If so, there are many optional free DNS providers out there
    to speed-up site lookup times whilst browsing online.
    Not only that, many actually provide better Free security measures compared with ISP’s. (~ variable)

    Personally, I prefer to use a non-ISP DNS (tracking/ snooping?) with a ~ms trade-off for security enhancements and have done so for many years without issue. YMMV

    Background DNS Simplified:
    I think of DNS like an encyclopedia index, listing the page go to when looking something up. DNS Resolvers work in a similar method with IP addresses to the contextual webpage.

    My audit/ review:
    In a recent quest and refresh for newer, quicker and more secure free options, I came across this online site to share that provides measured comparisons across continents over chosen periods to assist in choosing your preferred DNS if you wish to test.

    https://www.dnsperf.com/

    How we measure DNS Performance

    All DNS providers are tested every minute from 200+ locations globally. All tests are over IPv4 with a 1-second timeout. The public data is updated once per hour…

    Free DNS resolver providers, usually have walkthoughs for Browser settings, OS and or Routers to assist in a DNS changeover on their respective websites. Some even provide online checks to establish whether settings can be improved.

    Example below:

    Cloudflare Info:
    https://www.cloudflare.com/learning/dns/what-is-1.1.1.1/

    https://developers.cloudflare.com/1.1.1.1/

    Cloudflare ESNI/ ECH checks once setup:
    https://www.cloudflare.com/ssl/encrypted-sni/

    Hopefully will be of use to some out there..

    Windows - commercial by definition and now function...
    6 users thanked author for this post.
    Cybertooth, bradam, BobbyB, 44zack44, Alex5723, lmacri
    Reply | Quote
    Viewing 3 reply threads
    Author
    Replies
    • lmacri
      AskWoody Plus
      February 4, 2024 at 10:05 am #2634282

      Hi Microfix:

      My Firefox browser has built-in DNS-over-HTTPS protection. I live in Canada and the default DNS resolver is CIRA Canadian Shield from the Canadian Internet Registration Authority. I believe the default DNS resolver for Firefox users in the US is Cloudflare.

      Firefox-v122-Settings-Privacy-and-Security-DNS-over-HTTPS-Max-Protection-CIRA-Canadian-Shield-04-Feb-2023

      In your opinion, if I already have a DNS resolver built in to my browser is it still necessary to add the IP address of a third-party public DNS resolver like Cloudflare (1.1.1.1) in my Windows settings and/or router, and if I do so is it best to use the same provider for my browsers, OS and router (i.e., could using different DNS resolvers in my browser and router cause a conflict that slows my connection speed)?
      ————-
      Dell Inspiron 5584 * 64-bit Win 10 Pro v22H2 build 19045.3930 * Firefox v122.0.0 * Microsoft Defender v4.18.23110.3-1.1.23110.2 * Malwarebytes Premium v4.6.8.311-1.0.2249 * Macrium Reflect Free v8.0.7783

      1 user thanked author for this post.
      Microfix
      Reply | Quote
      • Microfix
        AskWoody MVP
        February 4, 2024 at 12:44 pm #2634300

        1. Setting up a DNS resolver on the OS via ethernet/ wifi adapter configuration settings supersedes router level DNS on that device leaving the option to use different DNS resolvers across different OS devices connected to the router.

        TIP: For quickness in Windows, I use sordiums DNS Lock v1.5 once I’m happy with DNS changes.

        2. Setting up DNS at the router caches the DNS requests meaning that you only need to do it once, so that all connected devices use that DNS if the devices are left at defaults on the OS or browser. Mine is ISP locked unfortunately 🙁

        3. Setting up the DNS via a browser supersedes although ONLY for the browser.

        It’s my preference to keep the DNS on the browser the SAME as the OS per device as a long-time habit. Having other devices being used for various tasks, I prefer the convoluted variable method per device.

        Whilst trying out DNS resolvers, I frequently check DNSleaktest as a matter of course.

        Windows - commercial by definition and now function...
        2 users thanked author for this post.
        bradam, lmacri
        Reply | Quote
    • n0ads
      AskWoody Lounger
      February 4, 2024 at 10:41 am #2634289

      Steve Gibson has a nice little utility called DNSBench that allows you to do real-time comparison of up to 200 DNS servers from your PC.

      The results show the fastest response times for Cached Name, Uncached Name & DotCom Lookup with the fastest sorted to the top.

      It comes with a default list of 72 DNS servers to be tested (which includes 1.1.1.1, 1.0.0.1 & 9.9.9.9) but you can have it scan 4,854 world-wide DNS servers to create a “fastest 50 list” or create your own “custom list”.

      I run it on my own PC at least once a year to ensure I’m using the fastest “non-ISP” servers.

      BTW, even though my ISP’s DNS always ranks as the fastest, I don’t use it because they’ve set it up to present a “google search result” for the Domain Name I entered if it can’t resolve it.

      Personally, I much prefer the normal Address not found error if it’s unknown as that tips me off that, either I typed it in wrong, or it no longer exists!

      5 users thanked author for this post.
      Cybertooth, BobbyB, TechTango, satrow, Alex5723
      Reply | Quote
    • Paul T
      AskWoody MVP
      February 5, 2024 at 12:52 am #2634395

      I don’t see the point in chasing 20ms in a DNS as the internet / your router will add that delay on a good day and much more on a bad one – this is one way I know it’s time to reboot my router, slow DNS.

      If you are super paranoid about your ISP seeing what sites you are looking up on DNS, you can opt for DNS over HTTP, but your ISP / VPN provider still know what IP you have visited.

      cheers, Paul

      Reply | Quote
    • Michael432
      AskWoody_MVP
      February 17, 2024 at 5:55 pm #2638830

      The focus on speed when it comes to DNS is mis-placed. It is much more important to focus on ad/tracker blocking. Picking a DNS provider based on its speed is like picking a car based on its color. Here are some DNS providers that offer assorted blocking services

      https://www.routersecurity.org/DNS.providers.php

      Get up to speed on router security at RouterSecurity.org and Defensive Computing at DefensiveComputingChecklist.com

      4 users thanked author for this post.
      Cybertooth, SueW, satrow, TechTango
      Reply | Quote
    Viewing 3 reply threads
    Reply To: DNS performance check?

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.