Comment

magikmw@lemm.ee ⁨4⁩ ⁨months⁩ ago

I think it depends. In my limited experience, because I have not tested this thoroughly, most systems pick the first DNS adresses and only send requests to the second if first doesn’t respond.

This has lead at least a couple of times to extremely long timeouts making me think the system is unresponsive, especially with things like kerberos ssh login and such.

I personally set up my DHCP to provide pihole as primary, and my off site IPA master as secondary (so I still have internal split brain DNS working in case the entire VM host goes down).

Now I kinda want to test if that offsite DNS gets any requests in normal use. Maybe would explain some ad leaks on twitch.tv (likely twitch just using the same hosts for video and ads, but who knows).

source

Sort:hotnew top

CurbsTickle@lemmy.world ⁨4⁩ ⁨months⁩ ago
It is entirely the case.

DNS queries will go to all on the list, and use whatever responds first.

If you are seeing occasional ad leaks, this is why.

source
AtariDump@lemmy.world ⁨4⁩ ⁨months⁩ ago
When it comes to a “secondary”DNS… there is nothing like a primary and secondary DNS server. These indications are quite misleading but many systems adopted it this way. Pihole only list the DNS servers as primary and secondary, because this is what the providers write on their pages. The bad phrasing is supported especially by how Windows handles it.

Most operating systems implement DNS servers as alternatives, not as fallbacks, i.e. they will query any of both servers from time to time, so it is quite likely that you will loose your Pi-hole filtering capabilities (at least partially) [if you specify a secondary DNS server on your network].

The ONLY DNS server you should have set on your network is a/the PiHole(s).

source