I have ended up using my own, if others want to use it I will share with a few people. My reasons are. Wanted one in the UK that is fast. To ensure is no logging makes sense I am the one maintaining the DNS server. Out of the existing dnscrypt servers, and the ones that support DNSSEC, the dutvch one is fast but unreliable, the french one is ok fast but because isnt UK I get sometimes bad CDN routing. The uk one is really slow. Cisco is of course fast but no DNSSEC. Mine specs. ipv4/ipv6 dual stack dnssec enabled unbound hardening options enabled for nxdomain, dnssec stripped data, mixed caps and glue data. no query/connection logging cert rotated every 3 days no rate limiting blocks responses related to spoofing e.g. non routable addresses full not limited outbound port randomisation across over 60k ports
yeah, got caught up with stuff. Bear in mind right now dnssec is disabled as I been testing changes on the server, since dnssec seems to give a pretty big performance impact, it is planned to turn it back on tho, and all the other stuff still applies. you want dnscrypt details or just direct to dns server unencrypted?