> ## Documentation Index
> Fetch the complete documentation index at: https://docs.joinmassive.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Why do DNS leak tests show servers in a different country?

When running a DNS leak test through our proxy, you may see DNS resolvers in a country different from your selected exit node (for example, German DNS servers appearing when targeting the US). This is expected behavior caused by our security architecture — it is not a DNS leak.

Our proxy servers perform a DNS lookup on incoming requests to verify that hostnames do not resolve to private or local IP addresses. This validation protects against [DNS rebinding attacks](https://en.wikipedia.org/wiki/DNS_rebinding), a class of vulnerability where an attacker tricks a proxy into connecting to internal network resources. Because this validation runs on our infrastructure, the DNS server used may be in a different region than your selected exit node, causing DNS leak test sites to detect it as a separate resolver.

Your actual traffic still exits through a node in your selected country. The validation lookup is purely internal and is invisible to target websites — they only see the connection from the exit node's IP address in the country you specified. The DNS resolver location has no impact on your browsing, scraping, or data collection.