I recommend you read this:With DNSSEC & DNS rebind protection both turned on, I had random problems with only some sites being unreachable. Not many, just some.
Both with, & without dnscrypt.
Removed dnscrypt, replaced Cloudflare with Quad9 & all is fixed. (DNSSEC & dns rebind protection still turned on).
- What benefits do you get when using DNSCrypt and DNSSEC?
- Use the DNSCrypt instead of the DNS servers of your VPN Client.
- DNSCrypt Necessary or not?
- DNSSEC vs DNSCrypt
- With DNSCrypt and without DNSCrypt [Test]
- Frequently Asked Questions about DNSCrypt, DNS, DNSSEC, protocols DoT and DoH
Post about CloudFlare DNS and How to test your DNS server:
Any recommended NON LOGGING DNS servers other than Google?
Only Google and Quad9 log, you can use any other DNS server if you want, they no log:
(aaflalo-me, cloudflare, gridns-sg and doh-cleanbrowsing do not have full support with DNSSEC for now)
Source:
Last edited: