0

Can I use NextDNS CLI without DoH?

Is there a way to configure NextDNS CLI to not use encrypted DNS-queries if I prefer speed and don't want to use DoH?

My tests with DNSBench shows unencrypted DNS-queries takes 3-5 ms but with DoH and it's overhead it takes 35-40 ms for each DNS-query, so almost 10 times slower.

4 replies

null
    • olivier
    • 3 yrs ago
    • Reported - view

    DoH shouldn’t add much overhead, certainly not in this magnitude. What hardware are you using for running the CLI?

      • Pro Subscriber ✅
      • Jorgen_A
      • 3 yrs ago
      • Reported - view

      Olivier Poitrey It's a new ASUS AX86U so performance shouldn't be a problem. I tried another tool (DNSQuerySniffer) and the numbers looked a bit better. Maybe it's a bottleneck when pushing lots of DNS-queries using DNSBench?!

      Anyway... I guess it's not possible to turn off DoH in the CLI today. 😉

      • olivier
      • 3 yrs ago
      • Reported - view

      Jörgen A no it’s not, and there is no real latency benefit doing so, except if your connection has a lot of packet loss.

    • Johan_de_Jong
    • 3 yrs ago
    • Reported - view

    Actually adding 'forwarder 45.90.28.218:53,45.90.30.218:53' to your NextDNS CLI configuration tells the client to forward all queries to the NextDNS servers unencrypted.

    I am not sure why you would want to that though. 

Login to reply

Content aside

  • 3 yrs agoLast active
  • 4Replies
  • 236Views
  • 3 Following