1

Difference between NextDNS and Quad9

Hello

I am trying to secure my network and my family members, and I want to know what is the difference between NextDNS and Quad9.

Which one is more secure and privacy oriented? I tried both of them via YogaDNS, and Quad9 has too many request timeouts, but NextDNS is giving me hostname not found errors for some reason. Also Quad9 is free and NextDNS will cost a little.

As for router I have FritzBox 7590 at home, plus several iOS devices.

13replies Oldest first
  • Oldest first
  • Newest first
  • Active threads
  • Popular
  • Quad9 doesn't provide you any customisation.

    Quad9 doesn't block any ads or tracker

    By default, Quad9 use an better malware list, but NextDNS with OISD list wins.

    Like 3
      • Naxterra
      • Naxterra
      • 1 yr ago
      • Reported - view

      DynamicNotSlow 

       I put both ipv4 and ipv6 DNS into my router and as well as DoT.

      Is putting those entries to my router same as this YogaDNS app? Does it encrypt my DNS queries? Also does it make any sense to put it into browser settings too? (In Edge it is "Use secure DNS to specify how to lookup the network address for website" option)

      Like
      • DynamicNotSlow
      • Pro subscriber ✓
      • DynamicNotSlow
      • 1 yr ago
      • 1
      • Reported - view

      Naxterra Yes that's correct and i use the same setup with my Fritzbox 7590.

      You don't need configure Edge then. I do, because i want using another NextDNS profile. Your DNS is then encrypted yes.

      Can't say anything about Yoga as i never use it.

      Like 1
      • Naxterra
      • Naxterra
      • 1 yr ago
      • 1
      • Reported - view

      DynamicNotSlow thanks for the info. I bought one year sub, let's see how it goes :)

      Like 1
      • losnad
      • losnad
      • 1 yr ago
      • 1
      • Reported - view

      You might want to check out Knowledge Base for some answers as well as searching for more.

      For example:

      https://help.nextdns.io/t/m1hmv0k/which-setup-type-to-use

      It makes sense to set DNS on apps if you use other profile or you want to identify the app.

      Like 1
      • Naxterra
      • Naxterra
      • 1 yr ago
      • Reported - view

      losnad I set up on my Fritzbox, so far it is good. I need to set up on mobile devices too. I also found out that it has native blocker list support, which is awesome. It will help especially on my TV and mobile devices.

      Windows app is not for me because I already have a VPN service.

      Now, I need to find a AP /router for my home. I have Netgear XR500 but it lacks support for new protocols, like IPv6, Wifi6, WPA3.

      Like
      • losnad
      • losnad
      • 1 yr ago
      • Reported - view

      This is not a VPN, it uses this protocol for convenience. You don't need the app if you know (or search and read) what your doing. This service can be used together with VPN or other apps.

      All the new protocols are not a must. If you have a decent router and is working... Of course if don't have and you need to buy one you will look for future proof.

      The TV aspect is how I found this great service. On my LG tv the ads were making life impossible. After searching I found out about AdGuard DNS, and it was great, but no logs or configuration. After some time I saw someone mentioning in a comment somewhere about NextDNS and I decided to check it out. Never looked back. It takes some time to read and understand but it is worth it. I don't know who that person was, but I thank him.
      I personally use:

      AdGuard DNS filter
      oisd
      Energized Ultimate
      notracking
      Perflyst's Smart-TV Blocklist (on TV profile)

      No Facebook (I deleted and blocked all social media)

      I also blocked all calls to LG and i unblock from time to time to update the OS and apps.

      I have long lists in Allowlist and Denylist, but I'm atypical, or crazy.

      Like
      • Sohan Ray
      • Sohan_Ray
      • 5 mths ago
      • 1
      • Reported - view

      DynamicNotSlow Have you considered the fact that Quad9 uses sources which are leading cybersecurity companies which have their own scanning engines to find malicious domains present on the internet , whereas NextDns uses open source feeds which are maintained by some individuals. Honestly, it sometimes makes me think how do those individuals keep up to date with the latest malicious domains list, as certainly I don't believe they have any in house scanning engines like the cybersecurity companies.

      Like 1
  • Naxterra said:
    I need to set up on mobile devices too

     on Android devices you can use internal "private DNS" feature.

    on Apple devices, use https://apple.nextdns.io/

    Both doesn't need any apps. Mainstream browser use DoH. Windows will add it mostly in autumn with 21H2 build.

    Like 2
  • losnad said:
    AdGuard DNS filter Energized Ultimate notracking Perflyst's Smart-TV Blocklist (on TV profile)

    from oisd | included lists:

    - Removed 5481 dead domains, and 437 false positives / other domains. Used: 29901 domains.
    Name: AdGuard DNS Filter (Hosts) 

    - Removed 21 dead domains, and 66 false positives / other domains. Used: 133 domains.
    Name: PiHole Blocklist SmartTV

    - some "Energized" are included too but not the "Ultimate". I guess do to too much false positives.

    - "notracking" isn't included but many others are so i don't think you need it.

     

    keep it clean. I only use OISD with "No facebook" and don't see any bad stuff.

    Like 1
      • losnad
      • losnad
      • 1 yr ago
      • Reported - view

      I see you are a big advocate of oisd. That's fine, but I see it differently. I don't want to put all my eggs in one basket. I'm also OK with some rare false positives as I have the habit to check the logs. I did encounter problems with other lists, so I keep selecting until I ended up with this selection.

      Blocked Reasons

      Denylist 4,884
      Energized Ultimate 2,910
      AdGuard DNS filter 2,519
      oisd 2,378
      notracking 2,286
      Perflyst's SmartTV Blocklist 374

      Like
      • Naxterra
      • Naxterra
      • 1 yr ago
      • 1
      • Reported - view

      losnad I added following ones to block list. Will test them for a while.

      NextDNS Anzeigen & Tracker Blockliste
      EasyList
      EasyPrivacy
      EasyList Germany
      oisd
      Energized Regional Extension
      Perflyst's Smart-TV Blocklist
       

      Like 1
      • aioyups
      • aioyups
      • 1 yr ago
      • 2
      • Reported - view

      Naxterra Actually oisd already contain easylist and energized regional already contain german list so putting them again are kinda useless, plus the down side of using the original list instead of a collective source is that they didnt go through whitelisting process so you might found many false positive.

      I suggest either take energized blu or oisd as your main and add some specific list that's not already included by them. We prefer they dont block anything instead of blocking a false positive that make the apps goes wrong and make us scold the wrong guy. LoL

      *Note : didn't suggest energized basic and ultimate because I found they included a bad source. This bad source might suddenly block a legitimate site from time to time, like yesterday when suddenly it block a legitimate distributor site with no ads at all. So yeah blu pack is better since that bad source is not included. LoL

      Like 2
Like1 Follow
  • 1 Likes
  • 5 mths agoLast active
  • 13Replies
  • 1040Views
  • 3 Following