Sonic.net

Is it possible to know which blocklists Sonic uses for its DNS servers? In https://help.sonic.com/hc/en-us/article ... ence-Guide it says "These servers enforce DNSSEC and include selective filtering of domains believed to be involved in malware distribution and botnet C&C."

New customer here, happily using Quad9 over dns crypt and wondering if I should switch to plain DNS with Sonic for performance without losing on household safety.

atrasatti wrote:Is it possible to know which blocklists Sonic uses for its DNS servers? In https://help.sonic.com/hc/en-us/article ... ence-Guide it says "These servers enforce DNSSEC and include selective filtering of domains believed to be involved in malware distribution and botnet C&C."

New customer here, happily using Quad9 over dns crypt and wondering if I should switch to plain DNS with Sonic for performance without losing on household safety.

I have no idea which blocklists Sonic might utilize but you could always use something like Pi-hole with the blocklist(s) you choose and Sonic as the upstream DNS. I mention this since it sounds like you might already have a Rasberry Pi at your disposal.

There's only one blocklist that we use and it's very limited in scope to bot-net command and control systems. Pi-hole is a great solution allowing users to control their own DNS filtering.

Thank you @kgc. If I can make a suggestion for a feature request, maybe you could setup something like Cloudflare with a standard DNS with the current, very limited list and another DNS with a more complete block list. Something like Nextdns where customers can pick their own lists or even upload a custom list would be dreamy.

I also use a VPN for privacy and security when I'm traveling and even they, as a small business, recently implemented custom lists with a very easy Web interface