Create a gist now

Instantly share code, notes, and snippets.

@roge- /dns.md
Last active Dec 9, 2017

What would you like to do?
Public DNS Servers

DNS.md

A list of reasonably reliable DNS servers that I've personally tested to ensure that they fully support DNSSEC and do not hijack NXDOMAIN responses.

*: The servers in this list were last tested November 13, 2017. I make no guarantee that they will continue to function in a reliable and compliant manner in the future.

IPv4

Address Organization Location Service
8.8.8.8 Google Worldwide (Anycast) Google Public DNS
8.8.4.4 Google Worldwide (Anycast) Google Public DNS
80.80.80.80 Freenom Worldwide (Anycast) Freenom World Public DNS
80.80.81.81 Freenom Worldwide (Anycast) Freenom World Public DNS
9.9.9.10 Quad9 Worldwide (Anycast) Quad9 "Unsecure" DNS
64.6.64.6 Verisign United States Verisign Public DNS
64.6.65.6 Verisign United States Verisign Public DNS
156.154.70.1 Neustar United States Neustar DNS Advantage
156.154.71.1 Neustar United States Neustar DNS Advantage
156.154.70.5 Neustar United States Neustar DNS Advantage
156.154.71.5 Neustar United States Neustar DNS Advantage
74.113.60.185 Lightning Wire Labs United States Lightning Wire Labs Public DNS
81.3.27.54 Lightning Wire Labs Germany Lightning Wire Labs Public DNS
194.150.168.168 Chaos Computer Club Germany CCC Public DNS
84.200.69.80 DNS.WATCH Germany DNS.WATCH Public DNS
84.200.70.40 DNS.WATCH Germany DNS.WATCH Public DNS
77.109.148.136 Xiala Switzerland Xiala Public DNS
77.109.148.137 Xiala Switzerland Xiala Public DNS
109.69.8.51 puntCAT Spain puntCAT Public DNS
91.239.100.100 censurfridns.dk Europe (Anycast) UncensoredDNS
89.233.43.71 censurfridns.dk Denmark UncensoredDNS

IPv6

Address Organization Location Service
2001:4860:4860::8888 Google Worldwide (Anycast) Google Public DNS
2001:4860:4860::8844 Google Worldwide (Anycast) Google Public DNS
2620:fe::10 Quad9 Worldwide (Anycast) Quad9 "Unsecure" DNS
2620:74:1b::1:1 Verisign United States Verisign Public DNS
2620:74:1c::2:2 Verisign United States Verisign Public DNS
2610:a1:1018::1 Neustar United States Neustar DNS Advantage
2610:a1:1019::1 Neustar United States Neustar DNS Advantage
2610:a1:1018::5 Neustar United States Neustar DNS Advantage
2610:a1:1019::5 Neustar United States Neustar DNS Advantage
2001:470:bbf2:2::1 Lightning Wire Labs United States Lightning Wire Labs Public DNS
2001:1608:10:25::1c04:b12f DNS.WATCH Germany DNS.WATCH Public DNS
2001:1608:10:25::9249:d69b DNS.WATCH Germany DNS.WATCH Public DNS
2001:1620:2078:137:: Xiala Switzerland Xiala Public DNS
2001:67c:28a4:: censurfridns.dk Europe (Anycast) UncensoredDNS
2a01:3a0:53:53:: censurfridns.dk Denmark UncensoredDNS

DNS-over-HTTPS

Google operates the only DNS-over-HTTPS resolver that I'm aware of, but nonetheless, it is compliant with my standards.

URI Organization Location Service
https://dns.google.com/resolve Google Worldwide (Load Balanced) Google Public DNS
Owner

roge- commented Nov 13, 2017

Got any more DNS resolvers I should test? Leave them here.

Owner

roge- commented Nov 27, 2017

@blackstar257 Quad9's main resolvers will not be added to my list because they are censored. According to their FAQ, Quad9 do offer uncensored DNS servers which I will test and add to the list if they meet my qualifications.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment