Router Security DNS Providers Website by     
Michael Horowitz 
Home Site Index Bugs News Security Checklist Tests DNS Resources Stats Search Popular Pages
NOTE: I will be giving a presentation on Defensive Computing at the HOPE conference in New York City in July 2022. The talk is based on my Defensive Computing Checklist website. The conference runs from July 22nd through the 24th, I am scheduled for the 23rd at 1PM ET. Attending in person costs $200 for all three days. You can also stream the entire conference live for $99. More about the talk here.

There are many choices for DNS providers and the default, using DNS servers from an ISP, is the worst option. Some options are below, the list is far from complete. DNS can be a great way to get ad blocking, tracker blocking and/or malware blocking without having to install software.

Old insecure DNS is specified with IP addresses (normally two of them). New Secure DNS is specified with a server name. Typically a company offers one server for DoH and another for DoT. That said, the two secure DNS flavors use different TCP ports, so they could both be available on a single server.

To test which DNS system/servers your computer is using, see the many available tester pages on the Test Your DNS page.


If your DNS provider offers ad/tracking blocking, then you can see how well it is working at this tester page by Eduard Ursu. Note that it is possible your web browser is also doing some ad or tracker blocking of its own. For example, ad blocking is built into the Brave browser and its available from many browser plug-ins.

Page Created: March 13, 2022      
Last Updated: June 27, 2022 10PM CT
Viewed 4,010 times
(36/day over 113 days)     
Website by Michael Horowitz      
Feedback: routers __at__ michaelhorowitz dot com  
Copyright 2015 - 2022