4Saw the announcement this morning on the bus — Google Public DNS. My immediate reaction (as recorded on twitter) is — I’ll hate to be OpenDNS right now. David U. at OpenDNS quickly responded saying basically “ARGH! OpenDNS is better! Google could be EVIL! But it’s all good for the DNS space”.
Well. Let’s compare them side by side, from my perspective:
| OpenDNS | Google Public DNS | |
|---|---|---|
| IP Address | 208.67.222.222 208.67.220.220 (Anycast) |
8.8.8.8 8.8.4.4 (Anycast) |
| Cache Size | BIG | Gonna be MASSIVE |
| Latency to Australia | Sucks (170ms) | Sucks Less (150ms) |
| Handling Non-Existing Domain | Resolve to OpenDNS (Configurable) |
NXDOMAIN |
| Configuration Options | Lots! | None |
Well. Please Google put a resolver somewhere in Sydney! Otherwise a local cache + forward is still preferred. But for now running a cheap virtual server with a badly configured resolver from the provider, I am more likely to jump on Google Public DNS because
- It’s just much easier to remember 8.8.8.8 than 208.what?.
- NXDOMAIN works by default — there is no need for me to log into OpenDNS to set up subnet rules under my account.
OpenDNS does have one advantage for developers though — CacheCheck, which allows you to request the cache to be flushed. Very useful when you have just changed some records, and would like to see that applied to the whole OpenDNS cluster. Google on the other hand gives NIL functionality except something listening on port 53.
For enterprise users it could be a different story though. Having ability to fine tune the behavuour of NXDOMAIN handling, blocking certain domains, phishing/malware/botnet protection, etc — these would be much more useful for an organisation. Will Google gradually roll out similar tools? No idea — just like we have no idea that Google is entering into the public resolver market.
Let’s wait & see.
Something to bear in mind is that currently all your DNS queries end up being sourced from the US.
This means that CDN type services that use geolocate on the DNS source query, ie. Akamai and others, will most probably end up sending you traffic from US locations as opposed to from a cluster somewhere a lot closer to you.
Hi there,
For the benighted (Australia dwellers)
http://dnsadvantage.com/dnsadv/index.html
Have a DNS Server in Oz!
Having said that – not sure what it all means :-)
I don’t see it having any advantage in Australia. The 2 IP addresses listed there with UltraDNS (156.154.70.1 and 156.154.71.1), one goes to San Jose and one goes to Los Angeles from Sydney.
Hi Scotty,
I got excited by the fact that THEY had a server in Oz. Obviously didn’t study process well enough. Back to work – trying to figure out voip mysteries now.
Cheers,