What's new
  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

I'll dig out my code that customises the dnsmasq instance that is spun up by Diversion. I imagine it's just a case of specifying a different upstream nameserver

DNS options per MAC address while still being forced through DNSMASQ would make me very happy, that's for sure. Really powerful feature if you have different aged users on your network. Even for YazFi... would be awesome to send guests upstream to something like OpenDNS while still going through DNSMASQ for ad-blocking.

For the whole home, I use the following blocklists:

https://hosts-file.net/emd.txt
https://hosts-file.net/exp.txt
https://hosts-file.net/hjk.txt
https://hosts-file.net/mmt.txt
https://hosts-file.net/psh.txt
http://sysctl.org/cameleon/hosts
https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/gambling/hosts
https://hosts-file.net/ad_servers.txt
https://mirror1.malwaredomains.com/files/domains.hosts


For one subset of users, I bypass Diversion and go to one Pi-hole that uses the same blocklists plus customized OpenDNS. Trust me, if I could find an alternative to using OpenDNS, I would... a magic blocklist to filter out the following categories would be great. My guest network also goes upstream to this Pi-hole using YazFi.

Academic Fraud
Drugs
Gambling
P2P/File sharing
Proxy/Anonymizer
Adware
Web Spam
Tasteless


And for one single user on the network, I bypass Diversion and go to one Pi-hole that uses the same blocklists plus Cleanbrowsing Family (not over DoT, that would be another cool feature for DNSFilter):
https://cleanbrowsing.org/filters


What I'm getting at, I suppose, is I am managing three appliances (router plus pi-hole 1 and pi-hole 2). I could just say, "ehh, who cares if the ads aren't blocked for the handful of devices", but I really appreciate the benefit of Diversion or Pi-hole in all cases.
 
Last edited:
DNS options per MAC address while still being forced through DNSMASQ would make me very happy, that's for sure. Really powerful feature if you have different aged users on your network. Even for YazFi... would be awesome to send guests upstream to something like OpenDNS while still going through DNSMASQ for ad-blocking.

For the whole home, I use the following blocklists:

https://hosts-file.net/emd.txt
https://hosts-file.net/exp.txt
https://hosts-file.net/hjk.txt
https://hosts-file.net/mmt.txt
https://hosts-file.net/psh.txt
http://sysctl.org/cameleon/hosts
https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/gambling/hosts
https://hosts-file.net/ad_servers.txt
https://mirror1.malwaredomains.com/files/domains.hosts


For one subset of users, I bypass Diversion and go to one Pi-hole that uses the same blocklists plus customized OpenDNS. Trust me, if I could find an alternative to using OpenDNS, I would... a magic blocklist to filter out the following categories would be great. My guest network also goes upstream to this Pi-hole using YazFi.

Academic Fraud
Drugs
Gambling
P2P/File sharing
Proxy/Anonymizer
Adware
Web Spam
Tasteless


And for one single user on the network, I bypass Diversion and go to one Pi-hole that uses the same blocklists plus Cleanbrowsing Family (not over DoT, that would be another cool feature for DNSFilter):
https://cleanbrowsing.org/filters


What I'm getting at, I suppose, is I am managing three appliances (router plus pi-hole 1 and pi-hole 2). I could just say, "ehh, who cares if the ads aren't blocked for the handful of devices", but I really appreciate the benefit of Diversion or Pi-hole in all cases.
So this is my dnsmasq.postconf: https://pastebin.com/Jy8AZcep
(mydomain is a substitute for my real domain)

You should be able to add:
Code:
sed -i '/servers-file/d' "/opt/share/diversion/.conf/alternate-bf.conf"
echo "server=208.67.222.222" >> "/opt/share/diversion/.conf/alternate-bf.conf"
prior to the
Code:
dnsmasq -C
call to use opendns directly (note: you miss out on stubby/dot if you use it)


In theory, you could craft your own dnsmasq.conf, spawn a new interface with:
Code:
ifconfig br0:alternate_bf IP
and launch it with dnsmasq -C

You wouldn't be able to manage it through Diversion though
 
Last edited:
So this is my dnsmasq.postconf: https://pastebin.com/Jy8AZcep
(mydomain is a substitute for my real domain)

You should be able to add:
Code:
sed -i '/servers-file/d' "/opt/share/diversion/.conf/alternate-bf.conf"
echo "server=208.67.222.222" >> "/opt/share/diversion/.conf/alternate-bf.conf"
prior to the
Code:
dnsmasq -C
call to use opendns directly (note: you miss out on stubby/dot if you use it)


In theory, you could craft your own dnsmasq.conf, spawn a new interface with:
Code:
ifconfig br0:alternate_bf IP
and launch it with dnsmasq -C

You wouldn't be able to manage it through Diversion though
Thanks @Jack Yaz, I am going to take a look in a bit. I'm surprised this seems like a feature many aren't interested in; also surprised that other products don't really do it (Pi-hole, Adguard Home, etc).
 
Hi,

Can someone provide a screenshot of the result of running "diversion help", please?

My router's CPU is maxing at 100% and I want to disable Diversion to eliminate it as a cause, and the only way I seem to be able to interact with the router is by sending it commands over ssh.

To be clear, I am unable to have a usual ssh session, where I log in and run commands. The furthest I have got was logging in, typing a command, and the session would hang.

However, I seem to be able to send it commands by running
Code:
ssh admin@router 'command -arg'
 
Can someone provide a screenshot of the result of running "diversion help", please

IMG_0155.JPG
 
Hi all i tried to look around google to see if anybody else has the same problem as me but i couldn't find any so i decided to post here. I have diversion standard installed in my RT-AC68U. Initially it worked fine however lately i noticed that i am no longer able to access websites on my windows 10 laptop connected via ethernet and also on another laptop connected via wifi. I am however able to access the internet through android and ios. Disabling diversion resolves the problem for my laptops. My routers ip is set as 192.168.1.254. while pixel is at 192.168.1.2. I have assigned an address to my devices through Lan DHCP on the web gui of the router. Anybody here have this problem before? Thanks
 
Hi all i tried to look around google to see if anybody else has the same problem as me but i couldn't find any so i decided to post here. I have diversion standard installed in my RT-AC68U. Initially it worked fine however lately i noticed that i am no longer able to access websites on my windows 10 laptop connected via ethernet and also on another laptop connected via wifi. I am however able to access the internet through android and ios. Disabling diversion resolves the problem for my laptops. My routers ip is set as 192.168.1.254. while pixel is at 192.168.1.2. I have assigned an address to my devices through Lan DHCP on the web gui of the router. Anybody here have this problem before? Thanks
What's on 192.168.1.1? Is the routers IP advertised as the DNS server and Gateway to clients?
 
What's on 192.168.1.1? Is the routers IP advertised as the DNS server and Gateway to clients?
Thanks for the reply. 192.168.1.1 is the modem/router from my ISP. Yes the router(192.168.1.254) is set as the default gateway and DNS server to my devices by default when i checked. BTW this seems to happen sporadically. Disabling and enabling diversion seems to fix it temporarily though. Although not really an ideal solution but since the problem doesn't really happen at a set time interval, its not really a big issue.
 
Last edited:
hmmm.. i looked at the menus and saw an option to create a swapfile. I created one the restart diversion. after which the problem seems to be fixed. I havent had the problem afterwards. Im sure it was not the restart since i did it several times before this and it didnt work. Could it have been a memory problem?
i tried to download my logfile and it was like 500mb sized...
 
I use the "Shopping" Tab in Google on occasion. How do I add it to the whitelist? Not sure of the URL to use...Is it "googleadservices.com"? What if any issues would happen if I leave it in the whitelist? Thanks!

[ANSWER: Added googleleadservices.com and that works. Still curious what downsides there are for leaving this in the whitelist]
 
Last edited:
I have a question if Diversion standard is working in the following situation.

My provider doesn't allow that I use my Asus AC68U as my primary router. If I want to use it I have to connect it to the router of my provider and create a DMZ. Do I need to do special things to make Diversion work or doesn't it matter that I have go through the DMZ of the main router?
Thanks!
 
@thelonelycoder I posted in the pixelserv thread but things there are sort of dead lately. Just a heads up that there will be an issue for all the new macOS 10.15 and iOS 13 users next month without a change to pixelserv code.
 
That's @kvic 's problem to solve
Be that as it may, there are no indications he's still around to solve it. I have not heard from him on any of the various usual channels for months now. So unless something changes, pixelserv will not work as it has in the past for those systems for anyone who doesn't acquire a patched binary.
 

Similar threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top