NextDNS

Awesome Privacy ➔ Networking ➔ DNS Providers ➔ NextDNS

An ad-blocking, privacy-protecting, censorship-bypassing DNS. Also comes with analytics, and the ability to shield kids from adult content.

Homepage: nextdns.io
GitHub: github.com/nextdns/nextdns
Privacy: nextdns.io/privacy
Web info: web-check.xyz/check/nextdns.io

Open Source

NextDNS Privacy Policy

Privacy Policy Summary

This service does not sell your personal data
Only necessary user logs are kept by the service to ensure quality
User logs are deleted after a finite period of time
The service does not share user information with third parties
You can retrieve an archive of your data
The terms for this service are easy to read

Score

Documents

About the Data

This data is kindly provided by tosdr.org. Read full report at: #1959

NextDNS Source Code

Author

nextdns

Description

NextDNS CLI client (DoH Proxy)

#dns#dns-over-https

Homepage

https://nextdns.io

License

MIT

Created

27 Sept 19

Last Updated

10 Jun 26

Latest version

v1.47.3

Primary Language

Size

16,960 KB

Stars

4,054

Forks

239

Watchers

4,054

Language Usage

Star History

Top Contributors

Recent Commits

Olivier Poitrey (03 Jun 26)
chore: upgrade go verson to 1.26.4
dependabot[bot] (18 Apr 26)
chore(deps): bump golang.org/x/net from 0.52.0 to 0.53.0 (#1084) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.52.0 to 0.53.0. - [Commits](https://github.com/golang/net/compare/v0.52.0...v0.53.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-version: 0.53.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Olivier Poitrey (18 Apr 26)
bug: strip CIDR from OpenWrt DHCP option DNS address (#1082)
Olivier Poitrey (13 Apr 26)
bug: reset endpoint probe timeouts per candidate Create and cancel a fresh timeout context for each endpoint probe so one candidate cannot leak its expired deadline into later probes.
Olivier Poitrey (13 Apr 26)
bug: synchronize netstatus checker state Synchronize checker startup and shared state updates so Notify and Stop cannot race on the global cancel function or previous interface snapshot.
Olivier Poitrey (13 Apr 26)
bug: refresh DHCP data under a write lock Move DHCP cache refresh onto a write-locked path so concurrent lookups no longer mutate shared maps while only holding an RLock.
Olivier Poitrey (13 Apr 26)
bug: guard zero inflight request limits Treat a configured inflight limit of zero as the default limit so the proxy does not create an unbuffered semaphore channel and deadlock on the first request.
Olivier Poitrey (13 Apr 26)
bug: bound idle TCP client reads Set a read deadline before consuming each TCP DNS query so an idle or slow client cannot hold an inflight slot indefinitely and starve the proxy.
Olivier Poitrey (09 Apr 26)
chore: pin CI Go setup action to 1.26.2
Olivier Poitrey (06 Apr 26)
Disable openwrt 24 backport
Olivier Poitrey (16 Mar 26)
chore: use apk for OpenWrt 25.12 installs Fixes #1073
Olivier Poitrey (16 Mar 26)
Add reconcile backport CI check
Olivier Poitrey (16 Mar 26)
Add reconcile script for OpenWRT
dependabot[bot] (15 Mar 26)
chore(deps): bump golang.org/x/net from 0.51.0 to 0.52.0 (#1078) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.51.0 to 0.52.0. - [Commits](https://github.com/golang/net/compare/v0.51.0...v0.52.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-version: 0.52.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot[bot] (14 Mar 26)
chore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (#1077) Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.41.0 to 0.42.0. - [Commits](https://github.com/golang/sys/compare/v0.41.0...v0.42.0) --- updated-dependencies: - dependency-name: golang.org/x/sys dependency-version: 0.42.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Olivier Poitrey (28 Feb 26)
ci: enhance binary size reporting workflow with PR detection and separate reports for Linux/Windows and Darwin - Added a job to find the pull request associated with the branch. - Created separate jobs for generating binary size reports for Linux/Windows and Darwin. - Updated the comment step to include detailed reports for both platforms. - Improved output handling and error checking for the reporting steps.
dependabot[bot] (28 Feb 26)
chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 (#1070) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.50.0 to 0.51.0. - [Commits](https://github.com/golang/net/compare/v0.50.0...v0.51.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-version: 0.51.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Olivier Poitrey (22 Feb 26)
ci: fix binary-size-report action syntax
Olivier Poitrey (22 Feb 26)
ci: add binary size report on PR
Olivier Poitrey (22 Feb 26)
chore: add an AGENTS.md
Olivier Poitrey (22 Feb 26)
ci: use non github committer for openwrt PR
Olivier Poitrey (22 Feb 26)
chore: update Debian image URL and modify cache key in snapshot-test workflow Replaced the Debian image URL to point to the latest Bookworm release and updated the cache key format for improved cache management.
Olivier Poitrey (22 Feb 26)
chore: more snapshot debug
Olivier Poitrey (22 Feb 26)
chore: improve windows service service installation
Olivier Poitrey (22 Feb 26)
ci: improve QEMU timeout handling and test result verification in snapshot-test workflow Refactored the QEMU execution logic to implement a timeout mechanism and enhanced the test result verification process. The workflow now checks for a specific test marker in the logs while the VM is running, ensuring more reliable detection of successful guest tests and proper handling of timeout scenarios.
Olivier Poitrey (22 Feb 26)
chore: update gitignore
Olivier Poitrey (22 Feb 26)
feat: adapt user-specific conditional profile to linux
Olivier Poitrey (22 Feb 26)
feat: allow simple IP in conditional profile
Olivier Poitrey (22 Feb 26)
feat: adapt user-specific conditional profile to windows
Olivier Poitrey (22 Feb 26)
chore: improve logging and test result verification in snapshot-test workflow Added enhanced logging for QEMU execution and guest output, including capturing the last 200 lines of logs for better visibility. Introduced a test marker check to confirm successful execution of guest tests, improving the reliability of test result reporting.

NextDNS Security

4.3/10

Repo Security Summary

Updated 01 Jun 26

Code-Review 0/10
Maintained 10/10
Packaging N/A
CII-Best-Practices 0/10
Binary-Artifacts 10/10
Dangerous-Workflow 10/10
Token-Permissions 0/10
Security-Policy 0/10
Fuzzing 0/10
License 10/10
Pinned-Dependencies 0/10
SAST 10/10
Branch-Protection 3/10
Signed-Releases 0/10

NextDNS Website

Website

NextDNS - The new firewall for the modern Internet

NextDNS protects you from all kinds of security threats, blocks ads and trackers on websites and in apps and provides a safe and supervised Internet for kids — on all devices and on all networks.

Redirects

Does not redirect

Security Checks

All 65 security checks passed

Server Details

IP Address 104.26.10.186
Location San Francisco, California, United States of America, NA
ISP CloudFlare Inc.
ASN AS13335

Associated Countries

Safety Score

Website marked as safe

100%

Blacklist Check

nextdns.io was found on 0 blacklists

AntiSocial Blacklist
Artists Against 419
Badbitcoin
Bambenek Consulting
CERT Polska
CoinBlockerLists
CRDF
CryptoScamDB
EtherAddressLookup
EtherScamDB
Fake Website Buster
MetaMask EthPhishing
NABP Not Recommended Sites
OpenPhish
PetScams
PhishFeed
PhishFort
Phishing.Database
PhishStats
PhishTank
Phishunt
RPiList Not Serious
Scam.Directory
SecureReload Phishing List
Spam404
StopGunScams
Suspicious Hosting IP
ThreatFox
ThreatLog
TweetFeed
URLhaus
ViriBack C2 Tracker

Website Preview

View full report at web-check.xyz

NextDNS Reviews

More DNS Providers

AdGuard
adguard.com/en/adguard-dns/overview.html

Open-source DNS provider, specialising in the blocking of ads, trackers and malicious domains. They have been independently audited and do not keep logs.

Open Source AdguardTeam/AdGuardDNS

View AdGuard Report
CloudFlare
developers.cloudflare.com/1.1.1.1/setting-up-1.1.1.1

One of the most performant options, Cloudflare's DNS supports DoH and DoT, and has a Tor implementation, providing world-class protection. They have native cross-platform apps, for easy set-up.

Security Audited

View CloudFlare Report

About the Data: NextDNS

Change History

Amended Jun 10, 2026 (github) by @lissy93 #608

API

You can access NextDNS's data programmatically via our API. Simply make a GET request to:

https://api.awesome-privacy.xyz/v1/services/nextdns

The REST API is free, no-auth and CORS-enabled. To learn more, view the API Docs or read the API Usage Guide.

Share NextDNS

Help your friends compare DNS Providers, and pick privacy-respecting software and services.
Share NextDNS and Awesome Privacy with your network!

← Previous

AdGuard

View DNS Providers (3)