Protective resolution ad-blocking
IP address: 86.54.11.13
IPv6: 2a13:1001::86:54:11:13
DNS over HTTPS: noads.joindns4.eu/dns-query
DNS over TLS: noads.joindns4.eu
Protective resolution ad-blocking
IP address: 86.54.11.13
IPv6: 2a13:1001::86:54:11:13
DNS over HTTPS: noads.joindns4.eu/dns-query
DNS over TLS: noads.joindns4.eu
This confuses the fuck out of me because my VPN in Switzerland using TLS DNS shows Germany as the country in DNS leak tests.
The Swiss DNS provider doesn’t have servers in Switzerland?
Quad9 is a Swiss org, but it operates at hundreds of PoPs inside many different countries (anywhere PCH has a presence), their addresses are anycast so it’ll use whatever the upstream routes/BGP dictate.
Both Quad9 and CloudFlare have the closest DNS for my network, at around 1ms RTT. However CloudFlare doesn’t support ECS, so I use the alternate Quad9 service that does, since it gives me better performance on a number of CDNs.
Right, I understand all that but I still can’t figure out why DNS is going to a 14 Eyes country instead of staying in Switzerland.
If it was a simple geoip lookup that isn’t really reliable wrt anycast addresses (or even addresses in general).
9.9.9.9 for example gets reported as Berkely, CA (US). Which is only partially accurate, for complicated business holding and ASN reasons, but is not representative of what DNS PoP you’re actually using at any given time.