0

Question about DNS Queries with NextDNS

I was exploring NextDNS, and am confused about how dns-queries are counted in my account.

Here is the setup I am using currently:

  • Single DNS Profile
  • NextDNS IP Configured on my Router
  • NextDNS App on my Mac
  • NextDNS DOH URL configured within Firefox in my Mac

I would like to segregate the traffic generating from each device.

Using NextDNS at the router level, because 1, guest devices get filtered as well, and 2, android tv does not give option to configure DNS.

If I hit a URL on my Firefox from my Mac, will it count thrice against my quota on next DNS? because the request propagates from browser -> mac -> wifi router.

Can anyone confirm if this counts as a single request or 3?

 

-----

 

My next query is, if I use a different profile "guest" on my router but set a different profile on my devices and browsers "work", and keep these devices connected to the above wifi.. would my requests get filtered under the guest profile or work profile? And will I see multiple entries or just one? And what about using multiple accounts?

2 replies

null
    • Taylor_C
    • 1 yr ago
    • Reported - view

    No. The queries will not count more than once. 

    To elaborate, DoH and DoT are both encrypted end to end just like a web traffic. Plus either protocol adds the profile ID so NextDNS knows who the query is from. 

    Firefox would create a TLS connection directly to NextDNS and sends encrypted queries. 

    Same for macOS. 

    Did you setup your router to use DoT/DoH, or just the IPs in the DNS fields? That traffic may not be encrypted but it would only count once. 

    In your setup (and mine, and everyone else’s) a query will be answered only once and only by the destination server. You would have to have a very complex and very specific network that you built for that not to be the case. 

    In your last question, you can have different profiles for everything if you’d like. If it’s DoT/DoH then it’s...? End to end encrypted. 

    • burgundy_ship
    • 1 yr ago
    • Reported - view

    Thanks for the reply, Taylor !

    I understand what you say: since DoH and DoT will be encrypted and contain a profile_ID, hence it would appear under the specific device in my account only.

    To answer your query: I am using only IPs in the DNS fields on my router.

    However on my devices (phone, laptop), I am using DoH and DoT URLs for DNS Resolution.

    On the Router, the set of IPs I am using belong to NextDNS Account #1, and on my devices, the set of IPs I am using belong to Account #2.

    Since my devices are connected to the router only, will the dns resolutions be counted twice in the router account and only once in my devices account? I hope not, right?

     

    PS. The reason I am using a different set of IPs on my router is because my TV does not allow configuring DNS Servers, hence depending on the router for that. For rest of our devices, phone and laptops, they explicitly support DoH and DoT hence that's not a problem.

Content aside

  • 1 yr agoLast active
  • 2Replies
  • 527Views
  • 4 Following