0

Is nextdns can open the block sites

Dears, 

i read some article that claim the nextdns able to open the block sites same as the 1.1.1.1warp  app, 

so how can i use this function ? 

also 

here the topic : 

www.reddit.com/r/privacytoolsIO/comments/bt2o66/we_are_launching_nextdnsio_a_combination_of/

Bypass nearly all forms of government/ISP censorship without the need for a slow/costly VPN, and make it way harder for your ISP to know what you are doing on the Internet. 

also whats is this : 

Anonymized EDNS Client Subnet : i think when i enable this function i should able to open the block sites ? 

Speed up the delivery of data from content delivery networks without exposing your IP address. 

18 replies

null
    • Martheen
    • 2 yrs ago
    • Reported - view

    NextDNS is a DNS service, like Cloudflare DNS. Cloudflare Warp is actually a VPN service, specifically, it uses the Wireguard VPN protocol, you can even create a Wireguard profile to be used on any Wireguard client https://github.com/ViRb3/wgcf

    Both NextDNS and Cloudflare DNS can help evade *some* censorship, specifically, those that only rely on DNS filtering. Previously ISPs can easily block and redirect Do53 (unencrypted DNS) to their own server. This is a very cheap and scalable filtering method. With the encrypted DNS protocols supported by NextDNS (and other providers such as Cloudflare, Google, etc), ISP can't easily block or intercept DNS traffics. To use them, just follow the instruction on the setup page, except for the IPv4 and IPv6 methods, all of them use encrypted DNS.

    But ISP *still* can analyze network packets and see the destination domain due to either unencrypted HTTP traffic where everything is readable or HTTPS standard requiring the domain to still be exposed to anyone reading the packet. If your ISP bothered to do this (which is far more expensive), then you need a VPN solution such as Cloudflare Warp.

    There is a small niche where VPN solutions such as Cloudflare Warp might not work while encrypted DNS still work such as if the ISP block UDP traffic (used by Wireguard) but doesn't do packet inspection.

    • Martheen
    • 2 yrs ago
    • Reported - view

    As for Anonymized EDNS Client Subnet, it's meant to give your subnet to the nameserver in the hope that it can give a better IP for the domain you want, usually because they have a CDN sitting in your ISP. It doesn't change whether your ISP can block your traffic

    • dahap
    • 2 yrs ago
    • Reported - view

    Martheen

    really appreciate your answer,  but im still have another questions ; 

    1- why i connect to the farthest server ? is there any way to connect to the nearest sever ? 

    2- whats the best setting could obtain the best internet speed and performance ? as i read i should disable the EDCNS to improve my connection speed ? or its better to active all the option in my dashboard ? 

    Dnsnext plan to have same service like 1111warp ? 

      • CahJowo
      • 2 yrs ago
      • Reported - view

      dahap What is the reason you need a VPN?

      • Martheen
      • 2 yrs ago
      • Reported - view

      dahap If you don't get the closest server, it's usually due to a routing problem. Not much you can do except reporting the result of  http://nextdns.io/diag

      Activating ECDNS should improve your speed since the IP it resolves is more likely to be closer to you.

      You'd have to ask the staff for that, but I'd guess they don't. There are already tons of VPN services out there, and the technical challenge for running a VPN service is very different from a DNS service. Cloudflare just happens to already have all the infrastructure and skills in place for running Warp due to their CDN business.

      • dahap
      • 2 yrs ago
      • Reported - view

      Ariyadi Kartosetomo 

      to avoid censorship and ISP blocking sites 

      in my country the ISP blocked most of the VPN protocol like openvpn tpc & udp

      only some limited protocol working here like wireguard or HTTPS ...etcs 

      • CahJowo
      • 2 yrs ago
      • Reported - view

      dahap In my country there is also strict censorship, I use NextDNS CLI (OpenWRT) for home & NextDNS app for mobile.

      • CahJowo
      • 2 yrs ago
      • Reported - view

      Ariyadi Kartosetomo Without a VPN, you can try it

      • CahJowo
      • 2 yrs ago
      • Reported - view

      Ariyadi Kartosetomo Or you can also try a combination of NextDNS server with DNSCrypt app

      • dahap
      • 2 yrs ago
      • Reported - view

      Ariyadi Kartosetomo 

      you mean DNScrypt can paypass the blocked sites ? if yes pls explain how use it with nextdns. 

      • dahap
      • 2 yrs ago
      • Reported - view

      Martheen 

      now im connect to France & italy & Australia  

      its ok for Italy and France, but why i connect to too far server like Ausralia ? 

      my ping around 350 ms ??? 

      how can i fix this pls ? 

      • Martheen
      • 2 yrs ago
      • Reported - view

      dahap Like I said, routing problem, just fill a report with http://nextdns.io/diag or try the workaround in https://help.nextdns.io/t/h7hkyw2/forced-ultralowanycast

      Do the instructions for DoH and DoT works? If they work, then you don't need DNSCrypt. If they don't, then you won't likely be able to use DNSCrypt either.

      It's possible that your country/ISP block the nextdns.io endpoint itself, if they don't block Cloudflare Workers, you can create your own DoH proxy on Cloudflare, directing it to your NextDNS instance https://github.com/tina-hello/doh-cf-workers

      • CahJowo
      • 2 yrs ago
      • Reported - view

      dahap Are you using NextDNS? You can test it yourself

      • dahap
      • 2 yrs ago
      • Reported - view

      Martheen 

       

      pls be noted I'm connect to Nextdns by using the Linked IP functions. 

      • Martheen
      • 2 yrs ago
      • Reported - view

      dahap Why? Just use the Encrypted DNS

      • dahap
      • 2 yrs ago
      • Reported - view

      Martheen 

       

      apologize for my questions, but how can i use the Encrypted DNS ? 

      im connect to the Nextdns by using the linked ip function " the setup done through my home network.

      so if you prefere more advanced config pls help me 

      • Pro subscriber ✓
      • DynamicNotSlow
      • 2 yrs ago
      • Reported - view

      dahap Just follow instructions on install page

    • losnad
    • 2 yrs ago
    • Reported - view

    Reading Knowledge Base and instructions from setup is a good starting point.

    https://help.nextdns.io/t/m1hmv0k/which-setup-type-to-use

    https://help.nextdns.io/t/x2hmvas/what-is-dns-over-tls-dot-dns-over-quic-doq-and-dns-over-https-doh-doh3

    https://github.com/nextdns/nextdns/wiki

    Also you can use the search function to look if what you are looking for is already answered.

Content aside

  • 2 yrs agoLast active
  • 18Replies
  • 1044Views
  • 3 Following