DNS & network news

Monthly Archive: February 2020

Using DNS for application data?

Do you think DNS could be used for application data? Take a weather app, for example. A lot of the update data, like current temperate and suff, could fit in UDP dns packets. Sure it’s unconventional but there’s a number of advantages like fewer packet round trips and local caching. What I’m wondering is are there any major downsides? Would it add too much load to resolvers, or overwhelm caches?

Edit: Thanks for the responses everyone.

submitted by /u/threeEightySeven
[link] [comments]

Powered by WPeMatico

Setting SPF on freedns.afraid.org

Apologies in advance if this is the wrong place to ask, but I’m trying to set an SPF record for my dns record held at freedns.afraid.org. I can get to the screen where I can supposedly fill in the SPF record, but for the life of me I can’t work out where I put it!

I want the SPF record to be:

"v=spf1 mx:**** include:_spf.**** ~all" 

(personal information replaced with ****) but I don’t see where that is supposed to go. Image here: https://i.imgur.com/MrvKhOo.png

Thanks in advance.

submitted by /u/stevenjd
[link] [comments]

Powered by WPeMatico

OS-wide DNS-via-HTTPS?

I don’t really like the implementations of DNS-via-HTTPS I’m seeing lately where it has to be configured per application. DNS lookups have traditionally been a global function of an OS’s TCP/IP stack and personally I’d like to keep it that way if possible.

I have some unique resources already in place for myself such that I think I can effectively implement DNS-via-HTTPS OS-wide. But I’d like to get a sanity check.

I have a lookup server running on Unbound on my home LAN. I also maintain a colocated server that is also running Unbound for DNS lookup.

I’m imagining configuring Unbound on the colocated server to answer DNS-via-HTTPS requests, and configure Unbound on my local LAN to make requests over DNS-via-HTTPS to said colocated server… Under this scenario, my home router’s DHCP server could give out the lookup server on my LAN as normal, and the applications on devices LAN-wise would make regular DNS requests plaintext-over-the-wire UDP, but this would be relatively safe, as unencrypted lookups would never traverse the gateway. Then the LAN lookup server would make encrypted queries to the colocated lookup server.

Is this sound? Is it possible?

submitted by /u/fongaboo
[link] [comments]

Powered by WPeMatico

DNS Benchmark ranked my local unbound server bottom how can I improve the speed?

I’m running pihole with unbound on a pi zero running through an ethernet adapter. Nothing else is running on this pi. It is plugged directly into my router.

I’ve run DNS benchmark 2x now (at different times of the day) and its come up last in all areas (cached, uncached, dotcom) with times that aren’t even close to the top of the list (e.g. cached 0.005 vs 0.013). The pi itself seems to be mostly idling so it doesn’t look like a hardware issue. What can I do to improve my speeds?

edit: I got my results by running GRC’s DNS Benchmark on my win10 laptop.

submitted by /u/AdviceUnknown
[link] [comments]

Powered by WPeMatico