Which dnscrypt resolver (Europe)?

Discussion in 'privacy technology' started by zakazak, Feb 24, 2016.

  1. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    2,199
    Yes, I think that's a good explanation :thumb:
     
  2. chrcol

    chrcol Registered Member

    Joined:
    Apr 19, 2006
    Posts:
    982
    Location:
    UK
    I have ended up using my own, if others want to use it I will share with a few people.

    My reasons are.

    Wanted one in the UK that is fast.
    To ensure is no logging makes sense I am the one maintaining the DNS server.
    Out of the existing dnscrypt servers, and the ones that support DNSSEC, the dutvch one is fast but unreliable, the french one is ok fast but because isnt UK I get sometimes bad CDN routing.
    The uk one is really slow.
    Cisco is of course fast but no DNSSEC.

    Mine specs.

    ipv4/ipv6 dual stack
    dnssec enabled
    unbound hardening options enabled for nxdomain, dnssec stripped data, mixed caps and glue data.
    no query/connection logging
    cert rotated every 3 days
    no rate limiting
    blocks responses related to spoofing e.g. non routable addresses
    full not limited outbound port randomisation across over 60k ports
     
  3. yeL

    yeL Registered Member

    Joined:
    Aug 10, 2015
    Posts:
    280
    Bring it on! I'm interested.
     
  4. chrcol

    chrcol Registered Member

    Joined:
    Apr 19, 2006
    Posts:
    982
    Location:
    UK
    ok will message you with details later.
     
  5. yeL

    yeL Registered Member

    Joined:
    Aug 10, 2015
    Posts:
    280
    Did you forgot it? :)
     
  6. chrcol

    chrcol Registered Member

    Joined:
    Apr 19, 2006
    Posts:
    982
    Location:
    UK
    yeah, got caught up with stuff.

    Bear in mind right now dnssec is disabled as I been testing changes on the server, since dnssec seems to give a pretty big performance impact, it is planned to turn it back on tho, and all the other stuff still applies.

    you want dnscrypt details or just direct to dns server unencrypted?
     
  7. yeL

    yeL Registered Member

    Joined:
    Aug 10, 2015
    Posts:
    280
    I would appreciate all the info, but no worries... take your time. :)
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.