DNSdist is a state-of-the-art DNS-aware load balancer that protects, balances and filters subscribers’ DNS traffic in front of recursive servers and is used to optimize the DNS traffic of hundreds of millions of internet subscribers. It is optimized to protect against malicious and abusive traffic such as DDoS attacks, DNS tunneling and exfiltration. To meet specific needs and local requirements, DNSdist is completely flexible and customizable based on a LUA scripting language. It also comes with the crucial DNS encryption support for DoH and DoT that are required today, ultimately letting you retain control over your subscribers’ DNS traffic and all the possibilities that come with it. A monitoring interface provides you with data, analyses and notifications about performance and attacks. Of course, DNSdist is built to interact seamlessly with the OX PowerDNS Recursor, but also improves and adds additional functionality (such as encryption) to your existing DNS recursive servers.