24
Recommendations to replace AWS DNS? (lemmy.zip)
submitted 2 months ago by pinball_wizard@lemmy.zip to c/selfhosted@lemmy.world
17 comments fedilink hide all child comments

I've been de-googling, de-microsofting, and de-Amazoning my life.

One thing I still use for self hosting is AWS Route 53 for Domain Name Services (DNS).

I don't feel ready to self-host DNS.

Do you all have recommendations for reliable and ethical DNS hosting providers?

Or is self hosting some DNS records less of a big deal than I'm imagining?

Advice on either would be welcome. Thank you!

top 17 comments
sorted by: hot top controversial new old
[-] burning_beard@lemmy.world 7 points 2 months ago

There are plenty of good options out there! Many use Cloudflare, though they are another giant. I've been happy with dsec and freedns, and would recommend both.

Ive used freedns for over a decade; it's simple and straightforward. Their free tier is plentiful, and their subscription costs are reasonable.

I recently moved my self-hosted services to dsec so I could better automate SSL certs. It's been nice and easy too!

[-] immobile7801@piefed.social 3 points 2 months ago

I've been using desec for a couple years as well. Great service and features considering its free.

[-] pinball_wizard@lemmy.zip 3 points 2 months ago

Thank you!

[-] stratself@lemdro.id 4 points 2 months ago* (last edited 2 months ago)

Desec.io is a solid option - it allows for various types of records like TLSA and SRV. It can also generate scoped API tokens e.g. for "only TXT records of the _acme-challenge subdomain of example.com" to use in automated cert renewals, so pretty good for granularity. It's also a nonprofit.

I think selfhosting DNS is beneficial when you wanna control your own DNSSEC keys, but you'd need to account for high availability and safety. With that, you could do what's called a "hidden primary + public secondary" setup to protect your master DNS data from the public prying. You can even use 3rd-party services like ns-global.zone as your secondaries for redundancy and to reduce load on your infra, too. I recommend Technitium and their guidance if you wanna get started

[-] Wxfisch@lemmy.world 4 points 2 months ago

I use cloudflare mostly because I buy my domains through them as they offer at cost domain names for many TLDs. Internally I use PiHole and then just point what I need externally to cloudflare trough a reverse proxy and a DMZ box.

[-] fizzle@quokk.au 5 points 2 months ago

I use cloudflare also but I suspect that OP will find them unfavourable because they're just another giant. I'd like to de-cloudflare myself.

[-] pinball_wizard@lemmy.zip 1 points 2 months ago

Yes. I'm inclined to avoid Cloudflare, if I'm able, for now.

Cloudflare feels like they're doing the same kind of "were too big and cool to pay our staff or think about uptime" that I've been suffering from under AWS, recently.

[-] bmcgonag@lemmy.world 2 points 2 months ago

Just my opinion and experience. Setup a couple of cheap VPS instances, and setup recognition, one primary, one secondary.

[-] non_burglar@lemmy.world 0 points 2 months ago

What do you mean by "recognition"?

[-] frongt@lemmy.zip 2 points 2 months ago

It's probably a typo for replication

[-] mhzawadi@lemmy.horwood.cloud 2 points 2 months ago

If your looking for a great DNS provider, OVH is rock solid. They also register domains, I have all my domains and zones with them.

Also a dedi and a VPS, also they have an API for DNS updates that can be used to get certificates for internal domains

[-] Cyber@feddit.uk 2 points 2 months ago

Just chiming in with my suggestion - if the company's location also benefits you:

Mythic Beasts

A private UK company which also hosts VPS in US and NL

I've moved my domain here and used their DNS API to remove the need to pay for a couple of DynDNS companys.

0 downtime over... dunno... 5 years?

[-] irmadlad@lemmy.world 1 points 2 months ago

It's refreshing to actually see truth in advertising:

This is a service aimed at hobbyists, and shouldn't be used for nuclear power station command and control systems.

[-] msokiovt@lemmy.today 1 points 2 months ago

I have some options: AdGuard (Cypress), ControlD (Austria), Mullvad (Sweeden), and Quad9 (Switzerland) come to mind.

[-] stratself@lemdro.id 3 points 2 months ago

Those are not authoritative DNS providers where you can publish records...

[-] msokiovt@lemmy.today 0 points 2 months ago

All of them, as far as I'm aware, are no-log. That's why I made those recommendations.

[-] pinball_wizard@lemmy.zip 1 points 2 months ago

Thank you!

this post was submitted on 15 Dec 2025
24 points (96.2% liked)

Selfhosted

57010 readers
20 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

  7. No low-effort posts. This is subjective and will largely be determined by the community member reports.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz