Poor DNS performance

Comments

4 comments

  • Avatar
    Firewalla

    There is no difference if you set to firewalla DNS or ISP DNS, they all go to firewalla DNS. 

    What's important is what your DNS server set to. (LAN or WAN segment) 

    0
    Comment actions Permalink
  • Avatar
    Tonydecker51301

    Good to know.  I'm doing another test now where I changed the DNS servers to the Open DNS Family Shield IPs.  If I get the same results as with the default gateway set I know the problem is Open DNS.  

    I just found this little tidbit here which makes sense. 

    https://help.firewalla.com/hc/en-us/articles/4570608120979-Firewalla-DNS-Services#h_01FYDNDFPJ91AM9EQ3GMDYVH5D

    "Please note that if a device has another DNS protocol (DoH/Family Protect/Unbound) enabled in the Firewalla app, Firewalla will no longer send that device's DNS requests to the configured DNS server– the other protocols take precedence."

    One thing that's not clear to me is what happens if you have Family Protect disabled for a VLAN.  What DNS server does it use by default?  

    0
    Comment actions Permalink
  • Avatar
    Tonydecker51301

    Okay so also just read about DNS booster which is enabled by default and I assume is required for things like Family Protect.  Interesting that DNS response times aren't much quicker considering caching is involved.

    https://help.firewalla.com/hc/en-us/articles/360035362614-What-is-DNS-Booster

    0
    Comment actions Permalink
  • Avatar
    Tonydecker51301

    Confirmed that OpenDNS is the culprit for slow DNS performance.  Shoot :(

    0
    Comment actions Permalink

Please sign in to leave a comment.