this post was submitted on 23 Jul 2023
17 points (94.7% liked)
Privacy
31996 readers
1044 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
My understanding is the first one is the primary one, and will be used most of the time. The second one is the fallback and will be used if the primary isn’t reachable
Usually you’d have two different addresses from the same service to configure DNS
Listing addresses from two different services would get you a slightly inconsistent experience, where every once in awhile a different block list will be used
This depends on your OS. Many do it this way, but some (I think Windows is included here) periodically check and use the "fastest" one. I run 2 local DNS, and my windows devices tend to represent about 99% of the the queries showing up on the second DNS (which sees much lower traffic overall).
I have no idea what happens when you have 2 different blocklists though - it feels like you could open yourself up to a scenario where you only get content blocked if it's blocked on BOTH lists, which would be the worst of both worlds in a sense.
Usually your OS will just send dns requests to both servers at once and just accept whichever responds first. UDP isnt very smart.
Not sure about that, maybe that's the an approach for one OS, but most of the devices I have almost exclusively hit the first DNS.
Looking right now my primary DNS has ~29k queries across 17 clients with a fairly even spread across the top 5-6, while secondary shows 2.5k queries across 7 clients, with one client alone (a Mac) representing 2k of those queries.