Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Yes
  2. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Disable adblocking in Diversion and test if it's any better or worse with it disabled.
  3. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    NOTE: There is currently an issue with the popular DoT/DoH test site provided by Cloudflare where it will fail to use properly signed DNSSEC hostnames during the test, causing the test to fail to correctly detect that you are using DoT. This does not indicate that your setup doesn't work, and is...
  4. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Pretty sure that DNS over TLS being enabled overwrites the WAN setting, so that shouldn't matter. I'm assuming this wiki was used for OpenVPN configs? https://x3mtek.com/policy-rule-routing-on-asuswrt-merlin-firmware/ What do you have for your LAN settings for DNS? Both fields DNS Server 1 and...
  5. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    With some extra configuration, Diversion will work over a VPN tunnel. The important part is that all DNS queries must be answered by the local DNS server Dnsmasq. See the website by @Xentrk with detailed instructions: https://x3mtek.com/policy-rule-routing-on-asuswrt-merlin-firmware/
  6. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Don't think so, no. But that whitelist doesn't change very often. You can literally add all those domains manually to a custom whitelist and add yours.
  7. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Are you using pixelserv-tls? Did you install the certificate on the client in question? Might help...
  8. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    follow dnsmasq.log (f) > Filtered by blocked domains (3) > launch your app and start whitelisting domains Or tone down the blocklists to Standard+. Less is more in my opinion; the standard default blocklist is pretty stellar as-is: https://github.com/StevenBlack/hosts Or use a hosted whitelist...
  9. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    You can only whitelist or blacklist individual domains, or use DNSFilter for a MAC address on your LAN to completely bypass diversion altogether (but it doesn't sound like you want to do that). follow dnsmasq.log (f) > Filtered by blocked domains (3) > launch your site and browse around and...
  10. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    I suppose. I don't see any more or less domains being blocked on average. I find that 80% of domains are still served over port 80. The other 20% over 443.
  11. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Some additional findings... my Nokia 7.1's battery almost lasts twice as long. Not sure if coincidental, but I appreciate the monster battery life with pixelserv-tls installed. Wonder if anyone else has had this experience, or if I'm just imagining things.
  12. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    pool start address = 192.168.99.3 pool end address = 192.168.99.254 You're setting your range to 192.168.99.3-192.168.99.254 (thus reserving 192.168.99.2 for Pixelserv-tls).
  13. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    You're talking about VPN. I don't think @adampk17 was setting up his router as a VPN Client, was he?
  14. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    As far as I know, this DNSFilter setting has been around for quite some time and always worked this way. This functionality was added to prevent devices from hard-coding DNS and bypassing the router's settings (or vice-versa, to filter out particular MAC addresses on your LAN from using your...
  15. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    You can prevent Chrome (or any other IoT device) from circumventing your DNS settings by changing this setting: 1. Router admin page 2. LAN 3. DNSFilter 4. Enable DNS-based Filtering > On 5. Global Filter Mode > Router 6. Apply
  16. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    You can also try installing the pixelserv-tls certificate on your phone. Seemed to have helped me: https://github.com/kvic-z/pixelserv-tls/wiki/Create-and-Import-the-CA-Certificate I've had issues with a few apps on my phone where the desktop is fine with pixelserv-tls running, including...
  17. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    Yeah, definitely tail to log to check for domains that are tripping up the website. Remember with blocklists that sometimes less is more. The more monstrous the blocklist, the more good domains that end up being blocked. Try using Standard for the blocklist or Standard+ if you're using Skynet.
  18. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    My findings are as follows... even with NO sites blacklisted, the Amazon Shopping app fails. As a result, I've uninstalled it and will use Brave when I need to use Amazon on my phone. Otherwise, no other broken apps. So far, so good with my new USB drive with pixelserv-tls server running.
  19. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    amtm > diversion (1) > blocking list (b) > Change composition Standard (1) > Customize hosts list (2) > Add hosts list (1) > Add your list Example list: https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling/hosts
  20. HairyA00

    Diversion Diversion - the Router Ad-Blocker

    https://github.com/StevenBlack/hosts
Top