mb6 join:2000-07-23 Washington, NJ 1 edit |
mb6
Member
2015-Mar-20 10:46 am
[DNS] Question about choosing DNSApologies in advance if this has been discussed before, but what would be the drawbacks or benefits of configuring my router to use OpenDNS vs using Comcast's supplied DNSSEC service? |
|
rody_44 Premium Member join:2004-02-20 Quakertown, PA |
rody_44
Premium Member
2015-Mar-20 7:43 pm
none |
|
MikroTik RB750G Cisco DPC3941
1 recommendation |
to mb6
Depends on what you want. If you just need name resolution, then there really is no benefit. if you want the filtering and protection that OpenDNS offers, then there are major benefits. » www.opendns.com/home-int ··· tection/» www.opendns.com/home-int ··· ns-home/ |
|
bradyrYCCD - Network Operations Premium Member join:2008-10-27 Sonora, CA (Software) pfSense Netgear CM1200 Ubiquiti UAP-AC-HD
1 recommendation |
bradyr to mb6
Premium Member
2015-Mar-21 10:35 am
to mb6
if you're main concern is about lookup performance, you'll *probably* have best results when using comcasts anycast dns servers... or your own caching dns server that forwards to comcast or google or openDNS
but don't just take my word for it, do your own testing with a tool like dig against the various DNS servers you're looking at using.
i know that sometimes people just want to "stick it to the man" and not use comcast's dns servers out of principle.. they might get stuck with shitty DNS lookup performance by using 3rd party addresses. |
|
DarkLogixTexan and Proud Premium Member join:2008-10-23 Baytown, TX
2 recommendations |
DarkLogix
Premium Member
2015-Mar-21 10:48 am
said by bradyr:if you're main concern is about lookup performance, you'll *probably* have best results With a Bind server running on your LAN running on an SSD. |
|
1 recommendation |
to mb6
Try here for a good test. Download and run. » www.grc.com/dns/benchmark.htm |
|
|
bradyrYCCD - Network Operations Premium Member join:2008-10-27 Sonora, CA
1 recommendation |
to DarkLogix
heh, that's why i mentioned "...or your own caching dns server..." |
|
DarkLogixTexan and Proud Premium Member join:2008-10-23 Baytown, TX
1 recommendation |
DarkLogix
Premium Member
2015-Mar-21 12:42 pm
said by bradyr:heh, that's why i mentioned "...or your own caching dns server..." But don't forward to Comcast or OpenDNS just use root Hints. |
|
graysonf MVM join:1999-07-16 Fort Lauderdale, FL
1 recommendation |
said by DarkLogix:But don't forward to Comcast or OpenDNS just use root Hints. It's a good thing everybody doesn't do this. |
|
DarkLogixTexan and Proud Premium Member join:2008-10-23 Baytown, TX
1 recommendation |
said by graysonf:said by DarkLogix:But don't forward to Comcast or OpenDNS just use root Hints. It's a good thing everybody doesn't do this. Well ya then again anytime your DNS query's TTL is reached a server somewhere has to go back to the roots. but root hints are meant for larger organizations but it does take the middle man out of the way. |
|