Pi-hole - a network-level adblocker

I’m doing that, DNSBL + Ublock Origin
Also it’s relevant to note that pfblockerng DNSBL can block at sub-domain level, not only domain, but the resources regarding RAM usage are huge if you enable that.
To give you an idea, 4GB of ram may be not enough to block porn sites…

You just need to get a feed with porn sites in this example.
There are other feeds you can use to block categories if that is what you need.

1 Like

I have a setting in my router that prevents Firefox, Chrome and so on to connect if they have DoH on. Have tested it on Firefox and it worked.

Screenshot from 2020-11-24 14-00-17

It will be difficult to keep track via Pi-hole otherwise.

2 Likes

That is nice to keep enabled, otherwise people will bypass your pi-hole.

1 Like

I am using built-in adblocker through Fresh Tomato Firmware installed on my router. It seems to be pretty finicky regarding list format. It seems effective for those in the household who have no idea what adblocking is. I run uBlockOrigin Dev Build with Firefox (Nightly x64) as well. These are the lists:
On http://pgl.yoyo.org/adservers/serverlist.php?hostformat=hosts&mimetype=plaintext Peter Lowe’s List
On https://adaway.org/hosts.txt Ad Away
On http://winhelp2002.mvps.org/hosts.txt Suspicious
On https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts Advertising
On https://raw.githubusercontent.com/hoshsadiq/adblock-nocoin-list/master/hosts.txt Cryptominers
On https://s3.amazonaws.com/lists.disconnect.me/simple_malvertising.txt Malicious
On https://v.firebog.net/hosts/Easylist.txt Easy List
On https://v.firebog.net/hosts/Easyprivacy.txt Easy Privacy
On https://easylist.to/easylist/fanboy-social.txt Fanboy Social
On https://raw.githubusercontent.com/notracking/hosts-blocklists/master/hostnames.txt
On https://raw.githubusercontent.com/BlackJack8/iOSAdblockList/master/iPv4Hosts.txt
On https://block.energized.pro/bluGo/formats/hosts.txt

parses to activated - 245085 entries

Interesting lists here: https://energized.pro/

2 Likes

It took me about half an hour two years ago, - if you can install Linux, you can install Pi-hole.

1 Like

Thanks, I already did. Testing out different sites now.

hmmm, a new major update to pfblockerng was just released…
this thread and a new major release, how can that be? my last update showing the feeds is already old :slight_smile:
coincidence…

I love ads. How else would I know about things I didn’t think I needed?

But seriously. I do have a raspberry pi I do almost nothing with. I installed Endeavour on it, but it’s not powerful enough to watch videos on without stuttering. I should really do this with it.

It’s a very nice tool…
I have 2 raspberrys.
RPI3 Model B (Not B+) running Samba server, unifi controller, apache server with php and ldap
RPI4 Model B running RaspbianOS, no problems with Youtube 1080p playback, running all day long as a desktop replacement…

I turn on my Desktop PC just to play COD CW nowadays…

2 Likes

Oddly enough, I don’t think I’ve really ever used Raspbian. Maybe that’s my own fault. I did get USB boot working on it that one time, maybe I just need to conceed for now that Arch based pi stuff just isn’t there yet. But literally if I could just watch football on weekends with it, that’s all I have ever wanted out of that little guy.

3 Likes

You will like, it’s a system made for it.
As far as I’m aware, Arch seems to be more optimized for Droid…

Hi there,

thanks @anon9173994 for pointing me to pi hole. I did a quick setup, and it works. Unfortunately my router has no option to change the DNS, so I switched the DNS for ipv4 in my NetworkManager settings. Do I need to do the same for ipv6?

Thanks in advance,

Christoph

1 Like

If you use IPv6. I only have IPv4 and turn off IPv6 on my computers.

So I would have to get ipv6 address from pi hole and put this as the ipv6 DNS in NetworkManager?

Do you get IPv6 from your ISP? Otherwise you do not need to do anything more.

As far as I know, yes.

I do not know how it works with IPv6 unfortunately. Others have to answer that :wink:

I’ve been using pfSense for a good while now as well. My only annoyance is that wireguard still isn’t integrated into it. There are some user made wireguard packages, but I just couldn’t get them to connect to my VPN. I was contemplating OPNSense for the wireguard, but they don’t have anything nearly as nice as pfBlockerNG.

1 Like

OPNSense is using Wireguard in the userspace… it’s not a good implementation.
Soon, pfsense will have it into the kernel level, there are some topics about it there in the forum.
Not sure if this will be released with pfsense 2.5 which is going to be out soon.

Have you ever watched Lawrence videos in Youtube regarding wireguard?
He speaks about the implementation in OPNSense

Regarding the pfBlocker, in my opinion, it’s the strongest tool that pfsense have today, it’s a pi-hole with other features, just like a swiss army knife…

1 Like

I know Netgear is contributing to bringing Wireguard into the FreeBSD kernel, but I’ve seen nothing about WG making it into pfSense 2.5.

I watch his videos a lot, but I don’t think I’ve seen the one where he goes into WG on OPNSense.

Yea, I don’t think there’s anything else even close to as powerful. It’s so nice to have TLD blocking, for example.

1 Like