Active Directory - List ISP DNS servers as Forwarders?Active Directory design for hosted services provisionResolving DNS issues in an Active Directory Domain ending in .com instead of .localHow to set up multiple DNS servers on an intranetWhy do all my 'Forwarders' tabs only list the domain's domain controllers?Internal-only DNS Master and Slave Servers on Linux (No Internet) - Recursion?Domain Controller's DNS NIC configurationDNS - Remove Active Directory Integrated Forwarder on One ServerBind DNS Recursion SlowActive Directory multi-tree, single forest DNS configurationWindows 2012R2 How to disable “Use root hints if no forwarders are available” using a powershell command
Help in identifying a mystery wall socket
What information do scammers need to withdraw money from an account?
Where to find every-day healthy food near Heathrow Airport?
Ito`s Lemma problem
Jesus' words on the Jews
Anabelian geometry ~ higher category theory
Effects of ~10atm pressure on engine design
Why does my circuit work on a breadboard, but not on a perfboard? I am new to soldering
Find hamming distance between two Strings of equal length in Java
correct spelling of "carruffel" (fuzz, hustle, all that jazz)
Area under the curve - Integrals (Antiderivatives)
Automatically anti-predictably assemble an alliterative aria
Does Lawful Interception of 4G / the proposed 5G provide a back door for hackers as well?
Is there anything special about -1 (0xFFFFFFFF) regarding ADC?
Are there any established rules for splitting books into parts, chapters, sections etc?
On what legal basis did the UK remove the 'European Union' from its passport?
Rounding a number extracted by jq to limit the decimal points
What is the largest number of identical satellites launched together?
Why did I need to *reboot* to change my group membership
Is there ever any indication in the MCU as to how Spider-Man got his powers?
what does a native speaker say when he wanted to leave his work?
Is there any good reason to write "it is easy to see"?
Longest Text in Latin
Loading Latex packages into Mathematica
Active Directory - List ISP DNS servers as Forwarders?
Active Directory design for hosted services provisionResolving DNS issues in an Active Directory Domain ending in .com instead of .localHow to set up multiple DNS servers on an intranetWhy do all my 'Forwarders' tabs only list the domain's domain controllers?Internal-only DNS Master and Slave Servers on Linux (No Internet) - Recursion?Domain Controller's DNS NIC configurationDNS - Remove Active Directory Integrated Forwarder on One ServerBind DNS Recursion SlowActive Directory multi-tree, single forest DNS configurationWindows 2012R2 How to disable “Use root hints if no forwarders are available” using a powershell command
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;
Background: I have a relatively small Active Directory domain (Windows 2003 Functional level) with two domain controllers, both running DNS servers. They are the primary and secondary DNS servers for the LAN. No other local DNS. I do not have any subdomains or recursion going on.
My Question: In the DNS Manager, under server Properties, Forwarders tab. Should I have my ISP's DNS servers listed here (or the Google ones)? Or should I leave the Forwarders tab blank and rely on the Root Hints servers?
I Googled before posting. About half the advice I read said the use the ISP DNS as forwarders, and half said to just use the Root Hints. So, I have no idea which is "best" for my setup (which I imagine is pretty typical for a small shop).
domain-name-system active-directory domain-controller
asked May 9 '14 at 15:41
myron-semackmyron-semack
2,3281316
add a comment |
Background: I have a relatively small Active Directory domain (Windows 2003 Functional level) with two domain controllers, both running DNS servers. They are the primary and secondary DNS servers for the LAN. No other local DNS. I do not have any subdomains or recursion going on.
My Question: In the DNS Manager, under server Properties, Forwarders tab. Should I have my ISP's DNS servers listed here (or the Google ones)? Or should I leave the Forwarders tab blank and rely on the Root Hints servers?
I Googled before posting. About half the advice I read said the use the ISP DNS as forwarders, and half said to just use the Root Hints. So, I have no idea which is "best" for my setup (which I imagine is pretty typical for a small shop).
domain-name-system active-directory domain-controller
asked May 9 '14 at 15:41
myron-semackmyron-semack
2,3281316
add a comment |
Background: I have a relatively small Active Directory domain (Windows 2003 Functional level) with two domain controllers, both running DNS servers. They are the primary and secondary DNS servers for the LAN. No other local DNS. I do not have any subdomains or recursion going on.
My Question: In the DNS Manager, under server Properties, Forwarders tab. Should I have my ISP's DNS servers listed here (or the Google ones)? Or should I leave the Forwarders tab blank and rely on the Root Hints servers?
I Googled before posting. About half the advice I read said the use the ISP DNS as forwarders, and half said to just use the Root Hints. So, I have no idea which is "best" for my setup (which I imagine is pretty typical for a small shop).
domain-name-system active-directory domain-controller
asked May 9 '14 at 15:41
myron-semackmyron-semack
2,3281316
Background: I have a relatively small Active Directory domain (Windows 2003 Functional level) with two domain controllers, both running DNS servers. They are the primary and secondary DNS servers for the LAN. No other local DNS. I do not have any subdomains or recursion going on.
My Question: In the DNS Manager, under server Properties, Forwarders tab. Should I have my ISP's DNS servers listed here (or the Google ones)? Or should I leave the Forwarders tab blank and rely on the Root Hints servers?
I Googled before posting. About half the advice I read said the use the ISP DNS as forwarders, and half said to just use the Root Hints. So, I have no idea which is "best" for my setup (which I imagine is pretty typical for a small shop).
domain-name-system active-directory domain-controller
domain-name-system active-directory domain-controller
asked May 9 '14 at 15:41
myron-semackmyron-semack
2,3281316
asked May 9 '14 at 15:41
myron-semackmyron-semack
2,3281316
edited May 9 '14 at 16:01
myron-semack
asked May 9 '14 at 15:41
myron-semackmyron-semack
2,3281316
asked May 9 '14 at 15:41
myron-semackmyron-semack
2,3281316
asked May 9 '14 at 15:41
myron-semackmyron-semack
2,3281316
2,3281316
add a comment |
add a comment |
5 Answers
5
active
oldest
votes
Unless you have some reason to directly recurse from the root, I'd recommend using a forwarder; Google or your ISP is much more likely to have something in cache for a query, so it'll provide better performance for name resolution within your network.
As far as Google vs ISP, there are two reasons that you might want to use Google over your ISP:
- Performance. Google's systems are anycasted and do some interesting stuff with cache; test and see if they're generally faster than your ISP.
- Badly behaved ISP. Some ISPs fiddle with queries, doing dirty stuff like NXDomain hijacking.
answered May 9 '14 at 15:49
Shane Madden♦Shane Madden
105k9148225
I agree with the badly behaved ISP part. I've had more trouble with ISPs who didn't truly have the knowledge/manpower to run a good operation and always blamed things on our side of the equipment rather than theirs.
– Brad Bouchard
May 9 '14 at 15:52
add a comment |
What I have come to in my experience is that it's good (and doesn't hurt to have more than 2) to use a big name (Google, Microsoft, Verizon) set of DNS forwards, and your local ISPs. in conjunction. The reason I like this approach is that local ISPs usually don't have the infrastructure or man-power that the larger named companies do; meaning if they go down, I want to be able to have another set of DNS forwarders to rely on, and vice versa. If for some unknown reason Google or Verizon's DNS servers are down, then my local ISP can take over and work.
Also, I've had issues with local ISPs and their caching times; they do vary throughout regions, but Google and Verizon always had the best TTL refreshes for me and my clients. There isn't a "best practice" per se, just different approaches like I've described.
answered May 9 '14 at 15:50
Brad BouchardBrad Bouchard
2,4232922
add a comment |
What is "best" depends on your situation. A person who is in child domain might want to set his or her forwarders to their parent domain's DNS servers.
Or you might want to set your forwarders to a set of DNS servers that are authoritative for a particular domain that's internal to your organization.
Or you might not have internet access and so root hints won't help you.
Or you might prefer a particular forwarder to root hints for performance reasons.
Or if you don't really care about any of the above, then root hints work fine.
answered May 9 '14 at 15:48
Ryan RiesRyan Ries
50.8k8118181
Very good point on the part where you talked about not having Internet access; if this were the case then root hints wouldn't even matter. Good stuff.
– Brad Bouchard
May 9 '14 at 15:55
add a comment |
I do support the approach of having a "Big Name" nameserver alongside your local ISP as forwarders for reliability. But considering performance, I think the best thing to do is to benchmark with a tool like GRC's DNS Benchmark and use the servers that perform the best!
answered Aug 17 '15 at 18:29
N.BalauroN.Balauro
265
add a comment |
One thing none of the other answers mentioned, and the most important reason why you do want to use your ISP DNS as your primary DNS forwarders, is that your ISP DNS gives you access to local Content Delivery Networks (CDNs).
A CDN caches internet data and uses DNS wizardry to point IP addresses to the CDN first. What this means is that the YouTube or Netflix video you're watching is cached on servers at the CDN. The CDN is located geographically close to you so that you stream the video from a server a few miles away instead of a few thousand miles away. This reduces latency and shortens download times.
If your office is located in Colorado Springs, for example, your ISP will redirect to CDNs in Colorado Springs and Denver. The nearest Google DNS server is in Iowa and doesn't have a clue where your office is or where the nearest CDN is located. This means that using Google DNS will send your browsing requests through Google's CDNs or directly to the authoritative host, increasing latency and slowing download speeds.
I recommend setting your ISP DNS as your primary DNS forwarders, but always include a fallback forwarder to a public DNS server just in case. The only exception to this is if the ISP DNS servers are unreliable, which you can test using GRC's DNS Benchmark as N.Balauro mentioned in their answer.
There are various paid DNS services (such as OpenDNS) that offer their own CDNs and have much better geographic coverage than Google's free DNS.
answered May 2 at 17:54
ThomasThomas
50621228
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f594179%2factive-directory-list-isp-dns-servers-as-forwarders%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
5 Answers
5
active
oldest
votes
5 Answers
5
active
oldest
votes
active
oldest
votes
active
oldest
votes
Unless you have some reason to directly recurse from the root, I'd recommend using a forwarder; Google or your ISP is much more likely to have something in cache for a query, so it'll provide better performance for name resolution within your network.
As far as Google vs ISP, there are two reasons that you might want to use Google over your ISP:
- Performance. Google's systems are anycasted and do some interesting stuff with cache; test and see if they're generally faster than your ISP.
- Badly behaved ISP. Some ISPs fiddle with queries, doing dirty stuff like NXDomain hijacking.
answered May 9 '14 at 15:49
Shane Madden♦Shane Madden
105k9148225
I agree with the badly behaved ISP part. I've had more trouble with ISPs who didn't truly have the knowledge/manpower to run a good operation and always blamed things on our side of the equipment rather than theirs.
– Brad Bouchard
May 9 '14 at 15:52
add a comment |
Unless you have some reason to directly recurse from the root, I'd recommend using a forwarder; Google or your ISP is much more likely to have something in cache for a query, so it'll provide better performance for name resolution within your network.
As far as Google vs ISP, there are two reasons that you might want to use Google over your ISP:
- Performance. Google's systems are anycasted and do some interesting stuff with cache; test and see if they're generally faster than your ISP.
- Badly behaved ISP. Some ISPs fiddle with queries, doing dirty stuff like NXDomain hijacking.
answered May 9 '14 at 15:49
Shane Madden♦Shane Madden
105k9148225
I agree with the badly behaved ISP part. I've had more trouble with ISPs who didn't truly have the knowledge/manpower to run a good operation and always blamed things on our side of the equipment rather than theirs.
– Brad Bouchard
May 9 '14 at 15:52
add a comment |
Unless you have some reason to directly recurse from the root, I'd recommend using a forwarder; Google or your ISP is much more likely to have something in cache for a query, so it'll provide better performance for name resolution within your network.
As far as Google vs ISP, there are two reasons that you might want to use Google over your ISP:
- Performance. Google's systems are anycasted and do some interesting stuff with cache; test and see if they're generally faster than your ISP.
- Badly behaved ISP. Some ISPs fiddle with queries, doing dirty stuff like NXDomain hijacking.
answered May 9 '14 at 15:49
Shane Madden♦Shane Madden
105k9148225
Unless you have some reason to directly recurse from the root, I'd recommend using a forwarder; Google or your ISP is much more likely to have something in cache for a query, so it'll provide better performance for name resolution within your network.
As far as Google vs ISP, there are two reasons that you might want to use Google over your ISP:
- Performance. Google's systems are anycasted and do some interesting stuff with cache; test and see if they're generally faster than your ISP.
- Badly behaved ISP. Some ISPs fiddle with queries, doing dirty stuff like NXDomain hijacking.
answered May 9 '14 at 15:49
Shane Madden♦Shane Madden
105k9148225
answered May 9 '14 at 15:49
Shane Madden♦Shane Madden
105k9148225
answered May 9 '14 at 15:49
Shane Madden♦Shane Madden
105k9148225
answered May 9 '14 at 15:49
Shane Madden♦Shane Madden
105k9148225
105k9148225
I agree with the badly behaved ISP part. I've had more trouble with ISPs who didn't truly have the knowledge/manpower to run a good operation and always blamed things on our side of the equipment rather than theirs.
– Brad Bouchard
May 9 '14 at 15:52
add a comment |
I agree with the badly behaved ISP part. I've had more trouble with ISPs who didn't truly have the knowledge/manpower to run a good operation and always blamed things on our side of the equipment rather than theirs.
– Brad Bouchard
May 9 '14 at 15:52
I agree with the badly behaved ISP part. I've had more trouble with ISPs who didn't truly have the knowledge/manpower to run a good operation and always blamed things on our side of the equipment rather than theirs.
– Brad Bouchard
May 9 '14 at 15:52
I agree with the badly behaved ISP part. I've had more trouble with ISPs who didn't truly have the knowledge/manpower to run a good operation and always blamed things on our side of the equipment rather than theirs.
– Brad Bouchard
May 9 '14 at 15:52
add a comment |
What I have come to in my experience is that it's good (and doesn't hurt to have more than 2) to use a big name (Google, Microsoft, Verizon) set of DNS forwards, and your local ISPs. in conjunction. The reason I like this approach is that local ISPs usually don't have the infrastructure or man-power that the larger named companies do; meaning if they go down, I want to be able to have another set of DNS forwarders to rely on, and vice versa. If for some unknown reason Google or Verizon's DNS servers are down, then my local ISP can take over and work.
Also, I've had issues with local ISPs and their caching times; they do vary throughout regions, but Google and Verizon always had the best TTL refreshes for me and my clients. There isn't a "best practice" per se, just different approaches like I've described.
answered May 9 '14 at 15:50
Brad BouchardBrad Bouchard
2,4232922
add a comment |
What I have come to in my experience is that it's good (and doesn't hurt to have more than 2) to use a big name (Google, Microsoft, Verizon) set of DNS forwards, and your local ISPs. in conjunction. The reason I like this approach is that local ISPs usually don't have the infrastructure or man-power that the larger named companies do; meaning if they go down, I want to be able to have another set of DNS forwarders to rely on, and vice versa. If for some unknown reason Google or Verizon's DNS servers are down, then my local ISP can take over and work.
Also, I've had issues with local ISPs and their caching times; they do vary throughout regions, but Google and Verizon always had the best TTL refreshes for me and my clients. There isn't a "best practice" per se, just different approaches like I've described.
answered May 9 '14 at 15:50
Brad BouchardBrad Bouchard
2,4232922
add a comment |
What I have come to in my experience is that it's good (and doesn't hurt to have more than 2) to use a big name (Google, Microsoft, Verizon) set of DNS forwards, and your local ISPs. in conjunction. The reason I like this approach is that local ISPs usually don't have the infrastructure or man-power that the larger named companies do; meaning if they go down, I want to be able to have another set of DNS forwarders to rely on, and vice versa. If for some unknown reason Google or Verizon's DNS servers are down, then my local ISP can take over and work.
Also, I've had issues with local ISPs and their caching times; they do vary throughout regions, but Google and Verizon always had the best TTL refreshes for me and my clients. There isn't a "best practice" per se, just different approaches like I've described.
answered May 9 '14 at 15:50
Brad BouchardBrad Bouchard
2,4232922
What I have come to in my experience is that it's good (and doesn't hurt to have more than 2) to use a big name (Google, Microsoft, Verizon) set of DNS forwards, and your local ISPs. in conjunction. The reason I like this approach is that local ISPs usually don't have the infrastructure or man-power that the larger named companies do; meaning if they go down, I want to be able to have another set of DNS forwarders to rely on, and vice versa. If for some unknown reason Google or Verizon's DNS servers are down, then my local ISP can take over and work.
Also, I've had issues with local ISPs and their caching times; they do vary throughout regions, but Google and Verizon always had the best TTL refreshes for me and my clients. There isn't a "best practice" per se, just different approaches like I've described.
answered May 9 '14 at 15:50
Brad BouchardBrad Bouchard
2,4232922
answered May 9 '14 at 15:50
Brad BouchardBrad Bouchard
2,4232922
answered May 9 '14 at 15:50
Brad BouchardBrad Bouchard
2,4232922
answered May 9 '14 at 15:50
Brad BouchardBrad Bouchard
2,4232922
2,4232922
add a comment |
add a comment |
What is "best" depends on your situation. A person who is in child domain might want to set his or her forwarders to their parent domain's DNS servers.
Or you might want to set your forwarders to a set of DNS servers that are authoritative for a particular domain that's internal to your organization.
Or you might not have internet access and so root hints won't help you.
Or you might prefer a particular forwarder to root hints for performance reasons.
Or if you don't really care about any of the above, then root hints work fine.
answered May 9 '14 at 15:48
Ryan RiesRyan Ries
50.8k8118181
Very good point on the part where you talked about not having Internet access; if this were the case then root hints wouldn't even matter. Good stuff.
– Brad Bouchard
May 9 '14 at 15:55
add a comment |
What is "best" depends on your situation. A person who is in child domain might want to set his or her forwarders to their parent domain's DNS servers.
Or you might want to set your forwarders to a set of DNS servers that are authoritative for a particular domain that's internal to your organization.
Or you might not have internet access and so root hints won't help you.
Or you might prefer a particular forwarder to root hints for performance reasons.
Or if you don't really care about any of the above, then root hints work fine.
answered May 9 '14 at 15:48
Ryan RiesRyan Ries
50.8k8118181
Very good point on the part where you talked about not having Internet access; if this were the case then root hints wouldn't even matter. Good stuff.
– Brad Bouchard
May 9 '14 at 15:55
add a comment |
What is "best" depends on your situation. A person who is in child domain might want to set his or her forwarders to their parent domain's DNS servers.
Or you might want to set your forwarders to a set of DNS servers that are authoritative for a particular domain that's internal to your organization.
Or you might not have internet access and so root hints won't help you.
Or you might prefer a particular forwarder to root hints for performance reasons.
Or if you don't really care about any of the above, then root hints work fine.
answered May 9 '14 at 15:48
Ryan RiesRyan Ries
50.8k8118181
What is "best" depends on your situation. A person who is in child domain might want to set his or her forwarders to their parent domain's DNS servers.
Or you might want to set your forwarders to a set of DNS servers that are authoritative for a particular domain that's internal to your organization.
Or you might not have internet access and so root hints won't help you.
Or you might prefer a particular forwarder to root hints for performance reasons.
Or if you don't really care about any of the above, then root hints work fine.
answered May 9 '14 at 15:48
Ryan RiesRyan Ries
50.8k8118181
answered May 9 '14 at 15:48
Ryan RiesRyan Ries
50.8k8118181
answered May 9 '14 at 15:48
Ryan RiesRyan Ries
50.8k8118181
answered May 9 '14 at 15:48
Ryan RiesRyan Ries
50.8k8118181
50.8k8118181
Very good point on the part where you talked about not having Internet access; if this were the case then root hints wouldn't even matter. Good stuff.
– Brad Bouchard
May 9 '14 at 15:55
add a comment |
Very good point on the part where you talked about not having Internet access; if this were the case then root hints wouldn't even matter. Good stuff.
– Brad Bouchard
May 9 '14 at 15:55
Very good point on the part where you talked about not having Internet access; if this were the case then root hints wouldn't even matter. Good stuff.
– Brad Bouchard
May 9 '14 at 15:55
Very good point on the part where you talked about not having Internet access; if this were the case then root hints wouldn't even matter. Good stuff.
– Brad Bouchard
May 9 '14 at 15:55
add a comment |
I do support the approach of having a "Big Name" nameserver alongside your local ISP as forwarders for reliability. But considering performance, I think the best thing to do is to benchmark with a tool like GRC's DNS Benchmark and use the servers that perform the best!
answered Aug 17 '15 at 18:29
N.BalauroN.Balauro
265
add a comment |
I do support the approach of having a "Big Name" nameserver alongside your local ISP as forwarders for reliability. But considering performance, I think the best thing to do is to benchmark with a tool like GRC's DNS Benchmark and use the servers that perform the best!
answered Aug 17 '15 at 18:29
N.BalauroN.Balauro
265
add a comment |
I do support the approach of having a "Big Name" nameserver alongside your local ISP as forwarders for reliability. But considering performance, I think the best thing to do is to benchmark with a tool like GRC's DNS Benchmark and use the servers that perform the best!
answered Aug 17 '15 at 18:29
N.BalauroN.Balauro
265
I do support the approach of having a "Big Name" nameserver alongside your local ISP as forwarders for reliability. But considering performance, I think the best thing to do is to benchmark with a tool like GRC's DNS Benchmark and use the servers that perform the best!
answered Aug 17 '15 at 18:29
N.BalauroN.Balauro
265
answered Aug 17 '15 at 18:29
N.BalauroN.Balauro
265
answered Aug 17 '15 at 18:29
N.BalauroN.Balauro
265
answered Aug 17 '15 at 18:29
N.BalauroN.Balauro
265
265
add a comment |
add a comment |
One thing none of the other answers mentioned, and the most important reason why you do want to use your ISP DNS as your primary DNS forwarders, is that your ISP DNS gives you access to local Content Delivery Networks (CDNs).
A CDN caches internet data and uses DNS wizardry to point IP addresses to the CDN first. What this means is that the YouTube or Netflix video you're watching is cached on servers at the CDN. The CDN is located geographically close to you so that you stream the video from a server a few miles away instead of a few thousand miles away. This reduces latency and shortens download times.
If your office is located in Colorado Springs, for example, your ISP will redirect to CDNs in Colorado Springs and Denver. The nearest Google DNS server is in Iowa and doesn't have a clue where your office is or where the nearest CDN is located. This means that using Google DNS will send your browsing requests through Google's CDNs or directly to the authoritative host, increasing latency and slowing download speeds.
I recommend setting your ISP DNS as your primary DNS forwarders, but always include a fallback forwarder to a public DNS server just in case. The only exception to this is if the ISP DNS servers are unreliable, which you can test using GRC's DNS Benchmark as N.Balauro mentioned in their answer.
There are various paid DNS services (such as OpenDNS) that offer their own CDNs and have much better geographic coverage than Google's free DNS.
answered May 2 at 17:54
ThomasThomas
50621228
add a comment |
One thing none of the other answers mentioned, and the most important reason why you do want to use your ISP DNS as your primary DNS forwarders, is that your ISP DNS gives you access to local Content Delivery Networks (CDNs).
A CDN caches internet data and uses DNS wizardry to point IP addresses to the CDN first. What this means is that the YouTube or Netflix video you're watching is cached on servers at the CDN. The CDN is located geographically close to you so that you stream the video from a server a few miles away instead of a few thousand miles away. This reduces latency and shortens download times.
If your office is located in Colorado Springs, for example, your ISP will redirect to CDNs in Colorado Springs and Denver. The nearest Google DNS server is in Iowa and doesn't have a clue where your office is or where the nearest CDN is located. This means that using Google DNS will send your browsing requests through Google's CDNs or directly to the authoritative host, increasing latency and slowing download speeds.
I recommend setting your ISP DNS as your primary DNS forwarders, but always include a fallback forwarder to a public DNS server just in case. The only exception to this is if the ISP DNS servers are unreliable, which you can test using GRC's DNS Benchmark as N.Balauro mentioned in their answer.
There are various paid DNS services (such as OpenDNS) that offer their own CDNs and have much better geographic coverage than Google's free DNS.
answered May 2 at 17:54
ThomasThomas
50621228
add a comment |
One thing none of the other answers mentioned, and the most important reason why you do want to use your ISP DNS as your primary DNS forwarders, is that your ISP DNS gives you access to local Content Delivery Networks (CDNs).
A CDN caches internet data and uses DNS wizardry to point IP addresses to the CDN first. What this means is that the YouTube or Netflix video you're watching is cached on servers at the CDN. The CDN is located geographically close to you so that you stream the video from a server a few miles away instead of a few thousand miles away. This reduces latency and shortens download times.
If your office is located in Colorado Springs, for example, your ISP will redirect to CDNs in Colorado Springs and Denver. The nearest Google DNS server is in Iowa and doesn't have a clue where your office is or where the nearest CDN is located. This means that using Google DNS will send your browsing requests through Google's CDNs or directly to the authoritative host, increasing latency and slowing download speeds.
I recommend setting your ISP DNS as your primary DNS forwarders, but always include a fallback forwarder to a public DNS server just in case. The only exception to this is if the ISP DNS servers are unreliable, which you can test using GRC's DNS Benchmark as N.Balauro mentioned in their answer.
There are various paid DNS services (such as OpenDNS) that offer their own CDNs and have much better geographic coverage than Google's free DNS.
answered May 2 at 17:54
ThomasThomas
50621228
One thing none of the other answers mentioned, and the most important reason why you do want to use your ISP DNS as your primary DNS forwarders, is that your ISP DNS gives you access to local Content Delivery Networks (CDNs).
A CDN caches internet data and uses DNS wizardry to point IP addresses to the CDN first. What this means is that the YouTube or Netflix video you're watching is cached on servers at the CDN. The CDN is located geographically close to you so that you stream the video from a server a few miles away instead of a few thousand miles away. This reduces latency and shortens download times.
If your office is located in Colorado Springs, for example, your ISP will redirect to CDNs in Colorado Springs and Denver. The nearest Google DNS server is in Iowa and doesn't have a clue where your office is or where the nearest CDN is located. This means that using Google DNS will send your browsing requests through Google's CDNs or directly to the authoritative host, increasing latency and slowing download speeds.
I recommend setting your ISP DNS as your primary DNS forwarders, but always include a fallback forwarder to a public DNS server just in case. The only exception to this is if the ISP DNS servers are unreliable, which you can test using GRC's DNS Benchmark as N.Balauro mentioned in their answer.
There are various paid DNS services (such as OpenDNS) that offer their own CDNs and have much better geographic coverage than Google's free DNS.
answered May 2 at 17:54
ThomasThomas
50621228
answered May 2 at 17:54
ThomasThomas
50621228
answered May 2 at 17:54
ThomasThomas
50621228
answered May 2 at 17:54
ThomasThomas
50621228
50621228
add a comment |
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f594179%2factive-directory-list-isp-dns-servers-as-forwarders%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
