In the event you’re privacy-conscious or simply need a quicker connection, likelihood is you’ve got already pointed your gadgets to Cloudflare’s 1.1.1.1 DNS. Cloudflare claims to be a privacy-focused and quick DNS server that is miles higher than your ISP’s sketchy default resolver.
However even after making this variation, you are still handing over your whole on-line life to a single firm you do not management. Then again, operating your personal DNS resolver at dwelling has by no means been simpler or cheaper. So when you have been searching for causes to ditch Cloudflare, I’ve bought a number of.
Associated
I did not know my ISP might see each web site I go to till I checked this setting
Your ISP sees greater than you assume.
Your DNS reveals greater than you notice
Each lookup is an information level another person can see
Each time you kind a URL into your browser, a DNS question fires off earlier than something masses. This question is actually a timestamp-linked file of precisely which area you tried to succeed in. Multiply that throughout each machine on your property community—your telephone, good TV, laptop computer—and you have got an in depth map of your digital life.
Cloudflare claims it will not promote your knowledge to advertisers and that it deletes question logs inside 25 hours. However an unbiased 2020 KPMG audit discovered that Cloudflare had been retaining as much as 0.05% of all knowledge packets passing via its community, together with IP addresses. This wasn’t talked about in Cloudflare’s privateness coverage on the time, and the disclosures have been promptly up to date shortly after. Nonetheless, this was sufficient to display that Cloudflare’s privateness ensures have been solely as robust as the corporate’s willingness to honor them. And if there’s one factor we learn about insurance policies, it is that they have an inclination to vary with little or no discover. Whenever you run your personal DNS server, you are not trusting anybody’s coverage besides your personal.
Even Cloudflare isn’t resistant to outages
Why counting on one supplier remains to be a danger
The danger of relying on a single centralized supplier for one thing as vital as DNS is that if the service supplier faces any points, so will its shoppers. Cloudflare’s 1.1.1.1 resolver went down for 62 minutes globally in July 2025 as a result of a legacy BGP configuration error, after which once more in November 2025, when a single database permission change triggered a four-hour outage that took main on-line providers like ChatGPT, Spotify, Discord, X, and 1000’s extra down with it. One other inner change in February 2026 triggered over six hours of degraded service in February 2026.
If DNS breaks, nothing works, even when the underlying community is completely wholesome. A self-hosted resolver operating on a Raspberry Pi or your NAS is not going to endure a worldwide BGP concern. It is your resolver, operating in your community, and also you alone are accountable for its uptime. On the flip aspect, you are accountable for your personal uptime, which requires energy and community redundancy to be virtually needed.
Block the whole lot on the community stage
Adverts, trackers, and malware stopped earlier than they load
Yadullah Abidi / MakeUseOf
Browser extensions like uBlock Origin would possibly enable you to block adverts on web sites you go to each day, however they’re restricted to your desktop or laptop computer’s internet browser. Your good TV, gaming console, Android telephone, and IoT gadgets do not get any safety. Whenever you run a self-hosted DNS server like Pi-hole or AdGuard House, you block advert and tracker domains on the community stage, earlier than the request even leaves your router.
Establishing Pi-hole on your property community could make the web really feel like a very totally different place. When a tool asks for the IP handle of an advert server, your DNS server simply returns nothing, or a dead-end handle. Which means the advert by no means masses and people pesky trackers by no means telephones dwelling. Public blocklist DNS providers like NextDNS are first rate options, however they cap your month-to-month limits on free plans and restrict the variety of customized lists you’ll be able to run. Self-hosted means no caps, no limits, and no prices.
Give your homelab actual domains
Clear, native URLs as an alternative of messy IP addresses
Picture taken by Yadullah Abidi | No attribution required.
One underrated perk of operating your personal DNS server is that you just get to assign customized native DNS data. As an alternative of memorizing native IP addresses each time you need to entry a NAS or media server, you’ll be able to simply kind in a reputation like nas.native or media.server and entry these providers simply the identical.
Instruments like Pi-hole and AdGuard House each assist DNS rewrites, letting you outline your personal naming construction for each machine and repair in your community. It is a small quality-of-life improve that makes an enormous distinction when you truly begin utilizing it, particularly when you’ve bought a packed dwelling lab.
Lastly see what your community is doing
Logs and insights you by no means get from public DNS
Yadullah Abidi / MakeUseOf
Operating your personal DNS server offers you a quite attention-grabbing dashboard that displays your community. This consists of the whole lot from a real-time feed of each DNS question your community has made, which machine made it, what area was requested, and whether or not the request was blocked or allowed. That is precisely how I finished my gadgets from phoning dwelling, and the way I blocked Google’s monitoring domains on the router stage to see what my seemingly idle Android telephone was as much as.
That is going to be the primary time most individuals will get a real have a look at what their gadgets are literally as much as within the background, and simply how chatty a seemingly idle machine will be. You may discover your Android continuously phoning Google, your TV making dozens of requests to promoting analytics endpoints, and even your PC reaching out to Microsoft’s monitoring infrastructure.
Cloudflare is sweet, however you are able to do higher
Cloudflare is sweet at what it does. It is easy to arrange and infrequently fails. However ok should not be your normal, particularly when there are higher instruments that do the job without cost, all whereas being open-source and operating on {hardware} you already personal.
Associated
I ran a DNS pace take a look at and Google’s 8.8.8.8 wasn’t even within the prime two
The one solution to discover the quickest DNS is to check it your self.
On the finish of the day, no person cares extra about your community than you do. Cloudflare is not inherently evil, and 1.1.1.1 is objectively higher than your router’s default resolver, however that is a really low bar. With a self-hosted DNS server, you acquire visibility, management, resilience, and actual, measurable privateness advantages with little or no ongoing upkeep.
