> Interesting that traffic didn't return to completely normal levels after the i...

radicaldreamer · 2025-07-16T05:12:23 1752642743

What would be a good reason to switch back from Google DNS?

Algent · 2025-07-16T09:18:41 1752657521

After trying both several time I since stayed with google due to cloudflare always returning really bad IPs for anything involving CDN. Having users complain stuff take age to load because you got matched to an IP on opposite side of planet is a bit problematic especially when it rarely happen on other dns providers. Maybe there is a way to fix this but I admit I went for the easier option of going back to good old 8.8.8.8

homebrewer · 2025-07-16T12:17:46 1752668266

No, it's deliberately not implemented:

https://developers.cloudflare.com/1.1.1.1/faq/#does-1111-sen...

I've also changed to 9.9.9.9 and 8.8.8.8 after using 1.1.1.1 for several years because connectivity here is not very good, and being connected to the wrong data center means RTT in excess of 300 ms. Makes the web very sluggish.

Aachen · 2025-07-16T13:40:50 1752673250

Does that setup fall back to 8.8.8.8 if 9.9.9.9 fails to resolve?

Quad9 has a very aggressive blocking policy (my site with user-uploaded content was banned without even reporting the malicious content; if you're a big brand name it seems to be fine to have user-uploaded content though) which this would be a possible workaround for, but it may not take an nxdomain response as a resolver failure

sammy2255 · 2025-07-16T05:16:59 1752643019

Depends who you trust more with your DNS traffic. I know who I trust more.

nojs · 2025-07-16T06:57:43 1752649063

Who? Honest question

immibis · 2025-07-16T11:06:31 1752663991

Myself, I suppose? Recursive resolvers are low-maintenance, and you get less exposure to ISP censorship (which "developed" countries also do).

Elucalidavah · 2025-07-16T07:45:21 1752651921

Realistically, either you ignore the privacy concerns and set up routing to multiple providers preferring the fastest, or you go all-in on privacy and route DNS over Tor over bridge.

Although, perhaps, having an external VPS with a dns proxy could be a good middle ground?

daneel_w · 2025-07-16T12:36:19 1752669379

If you're the technical type you can run Unbound locally (even on Windows) and let it forward queries with DoT. No need for neither Tor nor running your own external resolver.

Tijdreiziger · 2025-07-16T10:47:43 1752662863

Middle ground is ISP DNS, right?

davidcbc · 2025-07-16T22:23:08 1752704588

If privacy is your primary concern I would 100% trust Cloudflare or Google over an ISP in the US

Tijdreiziger · 2025-07-17T08:57:23 1752742643

I’m in the Netherlands.

daneel_w · 2025-07-16T12:34:47 1752669287

Quad9, dns0.

misiek08 · 2025-07-16T07:42:23 1752651743

Google is serving you ads, CF isn’t.

And it’s not conspiracy theory - it was very suspicious when we did some testing on small, aware group. The traffic didn’t look like being handled anonymously at Google side

mnordhoff · 2025-07-16T07:47:18 1752652038

Unless the privacy policy changed recently, Google shouldn't be doing anything nefarious with 8.8.8.8 DNS queries.

daneel_w · 2025-07-16T13:24:58 1752672298

Yeah it's not like they have a long track record of being caught red-handed stepping all over privacy regulations and snarfing up user activity data across their entire range of free products...

DarkCrusader2 · 2025-07-16T08:19:23 1752653963

They weren't supposed to do anything with our gmail data as well. That didn't stop them.

Tijdreiziger · 2025-07-16T10:48:16 1752662896

[citation needed]

johnklos · 2025-07-16T14:16:59 1752675419

Read their TOS.

Tijdreiziger · 2025-07-16T19:42:56 1752694976

If it’s in the ToS, then it’s not true that “[they] weren't supposed to do anything with our gmail data”.

opan · 2025-07-16T16:54:56 1752684896

CF breaks half the web with their awful challenges that fail in many non-mainstream browsers (even ones based on chromium).