The new firewall for the modern Internet. For help, check out help.nextdns.io.
- Tweets 235
- Following 2
- Followers 9,764
- Likes 11
We are perfecting our widely used "Allow Affiliate & Tracking Links" feature that unblocks links in emails and on deals websites that you manually click.
Starting today, your IP address will automatically be hidden from those websites to preserve your privacy (via TCP proxying).
8
17
194
Hello #Web3 👋! NextDNS now supports and acts as an unfiltered gateway for @ensdomains (.eth), @unstoppableweb (.crypto), @HNS and @IPFS.
Experience the new Web firsthand — on all browsers and devices — without the need to install anything.
Enable it now in the Settings tab.
12
46
185
We are now blocking 1400+ domains linked to #NSOGroup/#Pegasus via our Threat Intelligence Feeds feature.
Thanks @AmnestyTech @tenacioustek for the findings.
5
28
182
We are so proud and excited to see dns0.eu come to life — a lot of tech and experience from NextDNS went into making this a reality.
Please spread the word to your 🇪🇺 European friends and colleagues!
10
30
167
28,718
At NextDNS, we ❤️ @Tailscale.
Today, we are so thrilled to announce that you can now set up NextDNS natively in your tailnet — you can even assign separate NextDNS profiles to specific nodes if you'd like.
Thanks @bradfitz and the team!
tailscale.com/blog/nextdns
3
29
162
Introducing our Apple Configuration Profile Generator: enable NextDNS natively on Apple devices using the new system Encrypted DNS feature — without the need for an app.
Works on iOS 14, iPadOS 14, tvOS 14 and macOS Big Sur.
Available at apple.nextdns.io
12
23
149
Introducing AI-Driven Threat Detection — our proprietary AI engine designed from the ground up for DNS with hundreds of signals, terabytes of training data and real-time decision making.
This is joining our comprehensive set of security features. Enable it in the Security tab.
10
32
140
After launching a year ago, and a few locations later, today we are officially announcing the end of our beta. Subscribe now if you can, and thanks for your support! Stay safe
26
30
139
You can now download the entirety of your DNS logs on NextDNS. Those include every bit of log data we store for you, following our strict policy of "What You See Is What We Have" (WYSIWWH).
Or, in the words of that old Zero Wing game:
ALL YOUR LOG ARE BELONG TO YOU.
6
15
136
To better secure your account, we have added Two-Factor Authentication (2FA) on my.nextdns.io. You can enable it now from your account page.
10
23
116
Responding to the massive #Microsoft credential leak affecting many people and organizations worldwide, we are — as of right now — blocking all potentially malicious #autodiscover domains.
This includes all IANA TLDs and all public suffixes (e.g. autodiscover.co.uk).
4
18
107
We would like to wish everyone a very happy new year!
A few hints of what's in the pipe for early 2021 on our side: "ultra low", "3" and "dark".
Stay put and stay safe!
8
7
109
Introducing Recreation Time — only allow some websites, apps and games during a specific time period each day of the week.
E.g., only allow Facebook, YouTube, Twitch and Fortnite on Wednesdays and Fridays between 6:30pm and 8pm, and on Saturdays and Sundays between 1pm and 8pm.
10
17
108
Introducing Native Tracking Protection: block system-level trackers and abusive telemetry from Xiaomi, Huawei, Windows and others. Those can't be blocked by browser privacy extensions.
6
18
108
We are releasing some improvements to our Logs feature:
1. Streaming — displays queries as they are made.
2. Simple mode — deduplicates A/AAAA/HTTPS queries and hides more advanced queries (that do not result in direct connections), and more.
2
5
93
Introducing our official API — you can now programmatically manage your profiles, fetch analytics and stream your logs.
This is available to all NextDNS accounts today (get your API key on your account page).
Documentation is at nextdns.io/api.
4
13
93
NextDNS switched to the new full ECDSA certificate chain of @letsencrypt. Its smaller size is perfect for faster DoH/DoT handshakes. If you pin our certs, do not forget to update it.
4
9
90
Are you already on iOS 14? Do you want to try the new native Encrypted DNS feature? The first beta of NextDNS for iOS 14 is now available at testflight.apple.com/join/AF…
Note: having a NextDNS account is entirely optional.
11
16
83
Introducing Access — easily provide editing or viewing-only access to any of your profiles to others.
This is available today at the bottom of the Settings tab.
3
11
85
Amplifying this important call for threat intelligence partners from @dns0eu.
Please spread the word if you can.
Help us secure the 🇪🇺 European Internet.
If you are:
- a commercial threat intelligence provider
- a CERT
- a company or institution wanting to protect their users from phishing
And you can provide dns0.eu with a list of malicious domains to be blocked.
[1/3]
19
16
71
45,968
Introducing version 3.0 of our Windows app — state-of-the-art kernel-level DNS interception, MDM deployments and #Windows11 modern UI. Latest 2 are coming soon.
Try the beta today at:
nextdns.io/download/windows/…
Please share bug reports and suggestions at:
help.nextdns.io
9
14
83
Security notice — we deployed a mitigation against the new SAD DNS attack announced earlier this week by researchers from @UCRiverside and @Tsinghua_Uni.
cs.ucr.edu/~zhiyunq/SADDNS.h…
2
9
68
You can now resolve all Handshake domains when using NextDNS (without the need to install anything on your device) @HNS
4
17
66
So many of you have helped us translate NextDNS in many languages — we are immensively grateful for that.
If you can spare some time, please help us with translating our 🇪🇺 European non-profit initiative dns0.eu.
dns0.eu is available in all 24 official languages of the 🇪🇺 European Union.
Please help us improve the translations in your language by upvoting the best translations and downvoting the incorrect ones, or suggesting new ones.
→ docs.dns0.eu/translations/ho…
4
11
66
43,889
You can now choose where your NextDNS logs are being stored (if you enabled them): 🇺🇸United States, 🇪🇺European Union or 🇨🇭Switzerland!
6
11
63
iOS 14/native Encrypted DNS status:
- Our app submission is currently being reviewed by Apple.
- For those who really can't wait, our TestFlight beta is available at testflight.apple.com/join/AF….
- You can now use a Configuration Profile to use NextDNS on iOS 14 (see screenshot).
1
6
49
Hey @AskPayPal, we've been trying to confirm our business identity for more than a month with your support. You keep asking us the same documents, and snooze us for days if not weeks after each exchanges. This is delaying our launch and endangering our company. Please help us.
14
10
55
We are releasing the NextDNS Windows client under the MIT license.
github.com/nextdns/windows
1
9
53
Introducing CNAME Flattening: prevent CNAME-chasing resolvers from making unnecessary queries and pollute the logs with intermediate domains. Recommended for macOS, iOS and when running unbound.
Note: your router may be using unbound as resolver without making it obvious.
5
4
44
Introducing Cache Boost: Minimize DNS queries by enforcing a minimum TTL (Time to live). Head over to the Settings to try it out!
Learn more on our changelog: headwayapp.co/nextdns-change…
5
8
47
During these difficult times, we are protecting you and your close ones against COVID-19 phishing threats (thanks to @ThreatCoalition amazing work).
1
16
45
You can now set up NextDNS natively with @TwingateHQ — one of the best zero trust solutions on the market.
Organizations and pro users can now combine the capabilities of both services on their network 🚀
Read more at twingate.com/changelog/next-…
5
47
For those of you using our Block Page feature, you can now optionally install and trust our NextDNS Root CA to remove the HTTPS warning. Instructions on how to do this at help.nextdns.io/en/articles/…
6
9
44
Proud to partner with @mozilla on this. blog.mozilla.org/blog/2019/1…
3
13
38
We added the ability to export your query logs via the syslog protocol over TCP or TLS.
If you are interested, please DM us to test it. We are curious to learn about your use case.
4
3
42
Introducing Affiliation. Help us spread the word about NextDNS and get rewarded for it while we focus our time improving the service.
We made it as simple as it can be, anyone with a NextDNS account can immediately start sharing their own custom link.
6
1
38
We're translating NextDNS, starting with my.nextdns.io. French, Simplified Chinese and Traditional Chinese are already available. Want to help us improve those or support more languages? Read help.nextdns.io/en/articles/….
Free subscriptions for anyone helping! 🎁
7
10
36
TrackingTheTrackers.com - We made a free online analysis tool to check if a website is disguising third-party trackers as first-party trackers trackingthetrackers.com/
1
15
31
Following latest #Brexit developments — and because data residency matters — we have added a new storage location for Logs & Analytics: 🇬🇧 United Kingdom.
Other options are 🇺🇸 United States, 🇪🇺 European Union and 🇨🇭 Switzerland.
1
31
Say hello to our official open source command-line client for Linux, FreeBSD and macOS! DNS-over-HTTPS, Hardened Privacy Mode, and more. Check it out at github.com/nextdns/nextdns
2
6
24
CNAME Cloaking, the dangerous disguise of third-party trackers — An in-depth exploration of a new method used by tracking companies to disguise their third-party trackers as first-party trackers. medium.com/nextdns/cname-clo…
1
17
20
We're looking for a talented Windows kernel dev with WFP experience for some freelance work. PM us (or retweet if you can).
1
14
20
We've just submitted NextDNS to ProductHunt, spread the word if you can! producthunt.com/posts/nextdn…
11
20
At 4:24pm UTC, a bug in our blocklist management system made a lot of popular domains to be wrongly blocked by our default recommended blocklist. We rolled back the change at 4:40pm, as soon as we noticed the issue. We are sorry for the inconvenience.
1
18
New feature: Service Block Pause! Unblock a service for 30 minutes, 1 hour or until the end of the day so you don’t forget to put it back. It's now easier than ever to trade minutes of Youtube against chores from your kid. Try it now on nextdns.io. Feedback welcome!
3
17
Great write-up & tutorial by @mlapida medium.com/@mlapida/replacin…
1
5
18
New feature: Traffic Destination Countries — See where your Internet traffic goes! Try it now on nextdns.io
5
16
NextDNS first to support blocking of ALL third-party trackers disguised as first-party news.ycombinator.com/item?id…
2
13
New feature: #GAFAM Dominance — See how much of your Internet traffic goes to the "Big Five" (Google, Amazon, Facebook, Apple and Microsoft)! Try it now on nextdns.io
1
5
14
Our official Android app is live on the Play Store! play.google.com/store/apps/d…
2
6
14
Oh, and if you want a custom cool-looking code instead of the randomly assigned one, talk to us!
2
12
A few websites that are disguising third-party trackers as first-party:
Fox News: trackingthetrackers.com/site…
CNN: trackingthetrackers.com/site…
BBC: trackingthetrackers.com/site…
WebMD: trackingthetrackers.com/site…
ESPN: trackingthetrackers.com/site…
Ars Technica: trackingthetrackers.com/site…
... (1/2)
2
6
12
How NextDNS helped me setup a Minecraft bedrock server for the kids medium.com/@clevieuge/how-ne…
4
13
The NextDNS Windows app is finally here! Easiest way to get DNS-over-HTTPS on Windows, bypass censorship & network blocks and block ads & trackers using your NextDNS configuration. Download it now: nextdns.io/download/windows/…
3
3
13
You probably enabled cloudflare DoH in Firefox which is overriding your DNS system setting for this browser.
2
11
You can chose not to logs, what to log, for how long ans where. You are in control. Enabling logs is a good way to monitor who is tracking you and the effectiveness of the filters you selected.
1
11
Shorter version: if you're seeing a lot of "com" queries in your NextDNS logs, try turning this on.
1
10
New feature: Tracker Insights! Quickly see who is tracking you, how much of your web traffic they are tracking, and more. Try it right now on nextdns.io. Feedback welcome!
2
10
OpenWRT will natively support NextDNS in upcoming 19.07.0 release news.ycombinator.com/item?id…
3
10
(2/2) ...
Go.com (Disney): trackingthetrackers.com/site…
Washington Post: trackingthetrackers.com/site…
Walmart: trackingthetrackers.com/site…
Apple: trackingthetrackers.com/site…
NFL: trackingthetrackers.com/site…
T-Mobile: trackingthetrackers.com/site…
State Farm: trackingthetrackers.com/site…
9
We (the founders) are running our own support, what did we do to you ;) ? Our faces and names are at the bottom of nextdns.io, and our privacy policy is here: nextdns.io/privacy
10
What we log is what you see (and you can granularly turn on/off what you want, or turn off everything). If you don't see it, we don't log it.
We don't gather/keep anonymized data (aside from the total counters we show on our website).
1
7
Yes, the app now uses the system Encrypted DNS feature on iOS 14+ instead of the "fake VPN" trick used by all DNS apps on iOS 13 and below.
9
Even if you do, this feature will not block DDNS services' own website or their update API. You can also add your own hostnames to your Allowlist.
1
4
@BrendanEich any plans to have the Secure DNS setting already available in Chrome in Brave? Asking for our users
1
4
In NextDNS case, there is no data to give access to, as absolutely nothing is logged in the context of Firefox TRR.
1
4
It was a bug on our side, it has been reverted immediately, it should be fixed now. Sorry about that.
1
1
3
You can’t achieve this without a root CA. Our root CA priv key is offline and we use a TPM for the revokable intermediary CA able to generate short lived edge CA used to create those dummy certs.
It’s not right, but still, it’s opt-in, so feel free to skip it :)
2
We would fight any behind the curtains data gathering requests (we had none). Also, our system is really not designed that way (see first reply).
3
No, just make sure it's verified when installing, then the profile itself can't/won't change. Not much we can do about that, Apple works that way.
3
We are already using URLhaus from @abuse_ch (among many others) in our new Threat Intelligence Feeds security feature.
2
@RMerlinDev ASUS Merlin's CA root chain seems to miss LetsEncrypt ISRG Root X1, which breaks our new full ECC cert and will break all @letsencrypt based certs by September. Is it possible to update the root chain in a future rev?
1
2
The app is just there for the setup now, so battery consumption is nil. On the system side of things, it's probably negligible (and handled entirely by the OS).
1
2
Awesome. The initial suggested translations are from Google Translate, so feel free to correct more than just details
1
2
This can also be done in Chrome (it's under "Use secure DNS"). It's a phased release though, not sure what's the current %.
1
2