Originally Posted by
serpens
Thanks for the suggestion. FWIW, I had already set my preferences to the Cloudfare servers (does that mean I don't need to test?), but I don't know what an "internal DNS" server is. Is it a big deal?
Haven't been here in a while so this post may not be as relevant now.
For the truly paranoid, you may want to bypass DNS servers and use your own recursive caching DNS resolver to help avoid something called a DNS poisoning attack. I'm not particularly paranoid but did it for fun on my pfSense box. They use an implementation called "unbound".
Understanding DNS
Unbound