diff --git a/etc/unbound/unbound.conf.d/dns-over-tls.conf b/etc/unbound/unbound.conf.d/dns-over-tls.conf
index 82baa7c4..1a9e7868 100644
--- a/etc/unbound/unbound.conf.d/dns-over-tls.conf
+++ b/etc/unbound/unbound.conf.d/dns-over-tls.conf
@@ -15,10 +15,10 @@ forward-zone:
 
     ## DNS-over-TLS on port 443, no filtering
 
-    # https://appliedprivacy.net/services/dns/
+    # https://appliedprivacy.net/services/dns/ - Vienna, Austria
     forward-addr: 37.252.185.232@443#dot1.appliedprivacy.net
 
-    # https://dnswarden.com/
+    # https://dnswarden.com/ - Germany
     forward-addr: 2a01:4f8:1c1c:5e77::1@443#uncensored-dot.dnswarden.com
     forward-addr: 2a01:4f8:1c1c:75b4::1@443#uncensored-dot.dnswarden.com
     forward-addr: 116.203.35.255@443#uncensored-dot.dnswarden.com
@@ -26,24 +26,24 @@ forward-zone:
 
     ## DNS-over-TLS on port 853, no filtering
 
-    # censurfridns.dk (Copenhagen?)
+    # uncensoreddns.org / censurfridns.dk - Anycast (Copenhagen?)
     forward-addr: 2001:67c:28a4::@853#anycast.censurfridns.dk
     forward-addr: 91.239.100.100@853#anycast.censurfridns.dk
 
-    # Cloudflare DNS - didn't exist in 2015 for forwards.conf
-    # warning: for-profit business (and too big in my opinion)
+    # Cloudflare DNS - anycast
+    # warning: for-profit business (and too big in my opinion), USA based
     forward-addr: 2606:4700:4700::1111@853#cloudflare-dns.com
     forward-addr: 1.1.1.1@853#cloudflare-dns.com
     forward-addr: 2606:4700:4700::1001@853#cloudflare-dns.com
     forward-addr: 1.0.0.1@853#cloudflare-dns.com
 
-    # https://securedns.eu/
+    # https://securedns.eu/ - The Netherlands
     # TODO
 
     ## Malicious domain filtering
 
     # Quad9 - warning: uncommenting others simultaneously will break
-    # malicious domain blocking.
+    # malicious domain blocking. - Anycast, USA based
     forward-addr: 2620:fe::fe@853#dns.quad9.net
     forward-addr: 9.9.9.9@853#dns.quad9.net
     forward-addr: 2620:fe::9@853#dns.quad9.net
@@ -52,17 +52,18 @@ forward-zone:
     # AdBlocking DNS
 
     # AdGuard DNS - warning: for-profit business which task is to lie (to
-    # block ads)
+    # block ads) - anycast (Cyprus based)
     #forward-addr: 176.103.130.130@853#dns.adguard.com
     #forward-addr: 176.103.130.131@853#dns.adguard.com
 
-    # BlahDNS
+    # BlahDNS.com - uncommented due to 443, so even with blocked queries
+    # something might work on a restricted network
     # TODO
 
-    # DNSWARDEN
+    # dnswarden.com - Germany
     # TODO
 
-    # SecureDNS
+    # https://seecuredns.eu/ - The Netherlands
     # TODO
 
     ## Hopefully in the future