Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Me? Even when no domains are being sinkholed, pixelserv-tls breaks some common commercial sites for me (UPS, Amazon Android app, etc). I've come to terms with flipping it on and off depending on who's using my network.
  2. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    I've seen so much mixed behavior. I keep finding myself turning it on and off since I came over to Diversion as my "main" ad-blocker, independent of the 2.3.0 update. I prefer 0.0.0.0 NULL as a response, but it's definitely not as fast as pixelserv-tls serving up a single pixel. My opinion if...
  3. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Heh, as I was clicking reply, I saw your update. Anyway, as you figured out, disable Pixelserv-tls and see if that helps. Then perhaps scale back the blocklist to "Standard" or Standard+ if using Skynet. But you figured it out... Don't forget that Diversion supports hosted whitelists, too (which...
  4. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Use the standard blocklist. Try disabling Pixelserv-tls. I've literally had zero issues whatsoever using the standard Steven Black blocklist; there has never been a need to whitelist even once. Perhaps even use a hosted whitelist...
  5. HairyA00

    SOHOpelessly Broken 2.0

    Oh I don't care, I don't take it personally. If you take things on the internet personally, might as well just unplug your modem. I sense the frustration and it appears that it is founded. I wasn't even really asking a question, albeit I formed it as one. I looked at the date of the firmware...
  6. HairyA00

    SOHOpelessly Broken 2.0

    Asus isn't exactly slow to react, either; before I even knew Merlin existed, I was drawn to Asus for their open-source aspect. I got sick and tired of other manufacturers leaving gigantic holes and never patching a $300 router. Routers made by some of the 'big manufacturers' aren't patched...
  7. HairyA00

    SOHOpelessly Broken 2.0

    Yeah, that's what I thought. Not sure why everyone is in a tizzy. And why is it being reported now? 3.0.0.4.382.50010 is well over a year ago...
  8. HairyA00

    SOHOpelessly Broken 2.0

    Flaws discovered in popular router and NAS brands: https://www.techradar.com/news/flaws-discovered-in-popular-router-and-nas-brands Whitepaper: https://www.securityevaluators.com/whitepaper/sohopelessly-broken-2/ Any of these flaws present a security issue in asuswrt-merlin?
  9. HairyA00

    Disabling Firefox's automatic switch to DoH

    Why not make it an always-on feature? Shouldn't be a reason to configure this; if you're on a network like mine, you should be forced to do what my router says you're going to do. I'm not sure why web browsers think they have the right to manipulate traffic, especially in the case of Google...
  10. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    The following procedure will import your CA cert and trust it system wide. Open Safari/Chrome. Visit http://pixelserv ip/ca.crt. Make sure you replace pixelserv ip with the actual IP address of pixelserv. Find the downloaded file, ca.crt. Double click on `ca.crt' to start Keychain's import...
  11. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Did you install the pixelserv-tls certificate into your keystore on your Mac?
  12. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Did you set DNSFilter Global Mode to ON with it looping back to the router's DNS? Even if a browser, IoT device, etc etc hard-codes DNS, it will be forced back into Diversion. Give it a shot if you haven't already. 192.168.50.1 > LAN > DNSFilter > Enable DNS-based Filtering (ON) Global Filter...
  13. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    192.168.50.1 > LAN > DNSFilter > Enable DNS-based Filtering (ON) Global Filter Mode (Router) Remove all the clients from the Client List unless you have a reason for them to be there.
  14. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Did you process the blacklist after making the changes?
  15. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    It's because the following have now been added to the hard-coded whitelist: aax-us-east.amazon-adsystem.com pagead2.googlesyndication.com to get around the issue, add them to your blacklist and a boatload of ads are going to go away!
  16. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Oh, the difference is noticeable, agreed. Especially on mobile devices with gigantic grey sad-face squares. Just confirming that the existing backup in Diversion blocks both http and https requests, it's just uglier and slower. EDIT: Example from Android.
  17. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    I'm not arguing which is better or faster or even logically more sound. If pixelserv-tls becomes abandonware, I'm suggesting a backup. If one simply disables the pixelserv-tls service and routes to 0.0.0.0, I'm assuming that also blocks https requests? Just not as fast and/or eloquently as...
  18. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Hey @thelonelycoder, can we block https domains similar to the way Pi-hole pulls it off? Instead of answering HTTPS domains with Pixelserv-tls' LAN address, can we not block these domains with NULL? Example of what I'm attempting to explain here: https://docs.pi-hole.net/ftldns/blockingmode/ Or...
  19. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Your suggestion was/is great. Literally haven't had a chance to dive in, and I'm still trying to determine if my setup is optimized at this point.
  20. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Yep that's one way, using the alternate blocking file: https://diversion.ch/diversion/manual/alternate-blocking-file.html It also gives you an opportunity to still block ads (use the Standard list) and not restrict anything else. That way your LAN device on the alternate blocking file will...
Top