From 8aeb8e2de72300b97af91f4152284ae512eea9df Mon Sep 17 00:00:00 2001
From: ediblerope <fredrik@nordhammer.it>
Date: Wed, 22 Apr 2026 14:04:24 +0100
Subject: [PATCH] adguard: parallel upstreams + plain UDP fallbacks for speed

DoH-only sequential upstreams made first-time lookups slow. Add plain
UDP 1.1.1.1/9.9.9.9 alongside DoH and set upstream_mode=parallel so
AdGuard queries all four simultaneously and uses the fastest response.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
---
 services/adguard.nix | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/services/adguard.nix b/services/adguard.nix
index e8d4e05..109e2eb 100644
--- a/services/adguard.nix
+++ b/services/adguard.nix
@@ -14,10 +14,14 @@
         dns = {
           bind_hosts = [ "0.0.0.0" ];
           port = 53;
-          # DNS-over-HTTPS upstreams — encrypts queries to resolvers
+          # Query all upstreams in parallel; take the fastest response
+          upstream_mode = "parallel";
+          # Mix of DoH (encrypted) and plain UDP (low-latency) upstreams
           upstream_dns = [
             "https://dns.cloudflare.com/dns-query"
             "https://dns.quad9.net/dns-query"
+            "1.1.1.1"
+            "9.9.9.9"
           ];
           bootstrap_dns = [ "1.1.1.1" "9.9.9.9" ];
           cache_size = 4194304;