Preface#
DNS (Domain Name System) is a distributed database system that maps domain names to IP addresses. DNS allows users to access internet resources using easy-to-remember domain names without needing to know the underlying IP addresses. When performing a DNS query, it searches through local cache, root name servers, top-level domain name servers, and authoritative domain name servers in order, until it finds the IP address corresponding to the domain name and returns the result to the user. DNS also has caching mechanisms that can improve network performance and response speed.
Whenever I reinstall AdGuard, I always have to search for DNS services everywhere, so I'll just record it here as a reminder😉
Related Knowledge#
How to Choose DNS
In China, you can generally use several domestic DNS servers that I provide. If you are overseas, it is recommended to choose overseas public DNS servers.- Common domestic DNS servers: 114, Alibaba, Tencent
- Common overseas DNS servers: Google, Cloudflare
What is DoT and DoH
DoT and DoH are both ways of encrypting DNS, and the difference lies in the protocols and ports they use. Both are extensions of the domain name resolution security protocol. Concepts:- DoT stands for DNS over TLS, which uses TLS to transport the DNS protocol.
- DoH stands for DNS over HTTPS, which uses HTTPS to transport the DNS protocol.
The principles of these two protocols are the same, both encrypting the DNS messages between the user and the DNS server, to prevent eavesdropping by intermediate users and leakage of domain name query privacy. DoH is generally more versatile.
How to Refresh DNS Cache
-
Mac System
To refresh the DNS cache on a Mac, open Terminal and enter the specific command based on the version of macOS installed on your device:-
For macOS v13 (Ventura), 12 (Monterey), 11 (Big Sur), 10.15 (Catalina):
sudo dscacheutil -flushcache; sudo killall -HUP mDNSResponder -
For macOS v10.14 (Mojave), 10.13 (High Sierra), 10.12 (Sierra), 10.08 (Mountain Lion), 10.07 (Lion):
sudo killall -HUP mDNSResponder -
For macOS v10.11 (El Capitan), 10.9 (Mavericks):
sudo dscacheutil -flushcache sudo killall -HUP mDNSResponder -
For macOS v10.10:
sudo discoveryutil mdnsflushcache sudo discoveryutil udnsflushcaches -
For macOS v10.6 (Snow Leopard), 10.5 (Leopard):
sudo dscacheutil -flushcache -
For macOS v10.4 (Tiger):
lookupd -flushcachePress Return on the keyboard, enter the administrator password for your account, and then press Return again. There is no notification when the process is complete. However, you can add another command, for example, to receive a notification when the DNS cache is cleared successfully:
sudo killall -HUP mDNSResponder; say dns cleared successfully
-
-
Windows
Clearing the DNS cache on Windows is simple. The process is the same for almost all versions of Windows.
Press Win+R, entercmdto open the command prompt, and enter the following command:ipconfig /flushdns. If the command is successful, you will receive the message "Successfully flushed the DNS Resolver Cache". -
Dnsmasq
Use the following command on your Linux computer:sudo /etc/init.d/dnsmasq restartThen, if necessary, enter your password. You will see responses indicating that the service has stopped and started again.
-
Chrome
In the browser address bar, enter the link chrome://net-internals/#dns and click the "Clear host cache" button.
Well-known Public DNS Servers in China#
Alibaba DNS (Alidns)#
| Type | Address |
|---|---|
| IPv4 | 223.5.5.5 and 223.6.6.6 |
| IPv6 | 2400:3200::1 and 2400:3200:baba::1 |
| DoH | https://dns.alidns.com/dns-query |
| DoT | dns.alidns.com |
Tencent DNS (DNSPod)#
| Type | Address |
|---|---|
| IPv4 | 119.29.29.29 and 119.28.28.28 |
| IPv6 | 2402:4e00::1 and 2400:3200:baba::1 |
| DoH | https://doh.pub/dns-query |
| DoH (SM2) | https://sm2.doh.pub/dns-query |
| DoT | dot.pub |
Baidu DNS#
| Type | Address |
|---|---|
| IPv4 | 180.76.76.76 |
| IPv6 | 2400:da00::6666 |
360 Safe DNS#
| Type | Address |
|---|---|
| IPv4 (Telecom/China Tietong/Mobile) | 101.226.4.6 and 218.30.118.6 |
| IPv4 (Unicom) | 123.125.81.6 and 140.207.198.6 |
| DoH | https://doh.360.cn |
| DoT | dot.360.cn |
ByteDance Volcano Engine DNS#
| Type | Address |
|---|---|
| IPv4 | 180.184.1.1 and 180.184.2.2 |
114DNS#
114DNS is a professional and reliable DNS service.
-
General
Blocks ads and annoying websites.Protocol Address DNS, IPv4 114.114.114.114and114.114.115.115 -
Safe
Blocks phishing, malicious, and other unsafe websites.Protocol Address DNS, IPv4 114.114.114.119and114.114.115.119 -
Family
These servers block adult websites and inappropriate content.Protocol Address DNS, IPv4 114.114.114.110and114.114.115.110
Well-known Public DNS Servers Overseas#
Google Public DNS#
| Type | Address |
|---|---|
| IPv4 | 8.8.8.8 and 8.8.4.4 |
| IPv6 | 2001:4860:4860::8888 and 2001:4860:4860::8844 |
| DoH | https://dns.google/dns-query |
| DoH (IPv6) | https://dns64.dns.google/dns-query |
| DoT | dns.google |
Cloudflare DNS#
| Type | Address |
|---|---|
| IPv4 | 1.1.1.1 and 1.0.0.1 |
| IPv6 | 2606:4700:4700::1111 and 2606:4700:4700::1001 |
| DoH | https://cloudflare-dns.com/dns-query https://1.1.1.1/dns-query https://1.0.0.1/dns-query |
| DoH (IPv6) | https://dns64.dns.google/dns-query |
| DoT | 1dot1dot1dot1.cloudflare-dns.com one.one.one.one |
Quad9 DNS#
Quad9, initiated by IBM, provides free public DNS services, including IPv4/IPv6/DoT/DoH.
| Type | Address |
|---|---|
| IPv4 | 9.9.9.9 and 149.112.112.112 |
| IPv6 | 2620:fe::fe and 2620:fe::9 |
| DoH | https://dns.quad9.net/dns-query |
| DoT | dns.quad9.net |
Ad-blocking and Multi-functional DNS Servers#
Please note that you should verify the availability of such DNS servers before using them, and their security cannot be guaranteed. We are not responsible for any security risks, network accidents, or privacy leaks caused by their use. Please use them at your own discretion.
AdGuard DNS#
AdGuard DNS is another solution for ad blocking, privacy protection, and parental control. It provides many necessary protection features against online ads, trackers, and phishing, regardless of the platform and device you use.
-
Default
These servers block ads, trackers, and phishing.Protocol Address DNS, IPv4 94.140.14.14and94.140.15.15DNS, IPv6 2a10:50c0::ad1:ffand2a10:50c0::ad2:ffDNS-over-HTTPS https://dns.adguard-dns.com/dns-query DNS-over-TLS tls://dns.adguard-dns.com DNS-over-QUIC quic://dns.adguard-dns.com DNSCrypt, IPv4 Provider: 2.dnscrypt.default.ns1.adguard.com IP: 94.140.14.14:5443DNSCrypt, IPv6 Provider: 2.dnscrypt.default.ns1.adguard.com IP: [2a10:50c0::ad1:ff]:5443 -
Family Protection
The following servers provide default functionality + blocking of adult websites + safe search.Protocol Address DNS, IPv4 94.140.14.15and94.140.15.16DNS, IPv6 2a10:50c0::bad1:ffand2a10:50c0::bad2:ffDNS-over-HTTPS https://family.adguard-dns.com/dns-query DNS-over-TLS tls://family.adguard-dns.com DNS-over-QUIC quic://family.adguard-dns.com DNSCrypt, IPv4 Provider: 2.dnscrypt.family.ns1.adguard.com IP: 94.140.14.15:5443DNSCrypt, IPv6 Provider: 2.dnscrypt.family.ns1.adguard.com IP: [2a10:50c0::bad1:ff]:5443 -
No Filtering
The following servers provide secure and reliable connections, but unlike the "Default" and "Family Protection" servers, they do not perform any filtering.Protocol Address DNS, IPv4 94.140.14.140and94.140.14.141DNS, IPv6 2a10:50c0::bad1:ffand2a10:50c0::bad2:ffDNS-over-HTTPS https://unfiltered.adguard-dns.com/dns-query DNS-over-TLS tls://unfiltered.adguard-dns.com DNS-over-QUIC quic://unfiltered.adguard-dns.com DNSCrypt, IPv4 Provider: 2.dnscrypt.unfiltered.ns1.adguard.com IP: 94.140.14.140:5443DNSCrypt, IPv6 Provider: 2.dnscrypt.unfiltered.ns1.adguard.com IP: [2a10:50c0::1:ff]:5443
Google hosts#
| Protocol | Address |
|---|---|
| DNS, IPv4 | 113.205.16.215 and 140.143.226.193 |
| DNS, IPv6 | 2408:8262:12bd:1f22::2333 and 2408:8262:12bd:1f22::3332 |
Appendix#
There are also DNS services provided by universities and other organizations, which can be referred to as follows:
- DNS Server List (Chinese)
- Known DNS Providers (Chinese)
- dns.iui.im (Chinese)
- dns.iui.im Backup (Chinese)