[dns-operations] new public DNS service: 9.9.9.9
Florian Weimer
fweimer at redhat.com
Mon Nov 20 11:47:27 UTC 2017
On 11/18/2017 09:11 AM, Damian Menscher wrote:
> Your argument that you don't trust the ISPs between you and
> Google/OpenDNS/Quad9, and therefore run your own local recursive resolver,
> confuses me. After all, your local recursive needs to query third-party
> authoritative servers anyway.
>
> To convince yourself, answer these two questions:
> - How many ISPs are between you and 8.8.8.8? I'm on Comcast, and they
> have direct peering with Google, so the number is zero.
8.8.8.8 is increasingly seen as an anycast service address for DNS
unrelated to Google, similar to how you download the SSH keys for root
login from 169.254.169.254 or instance-data. I expect that many ISPs
route 8.8.8.8 to their own servers.
Thanks,
Florian
More information about the dns-operations
mailing list