Diversion Diversion - the Router Ad-Blocker

[thelonelycoder]

That is what my expectation was. I don’t know what the diversion categories are relative to what they were in absolution, but there was a standard blocklist at one point that was mvps, poyo, and someonewhocares. I would recommend you go no further than that. And certainly nothing from hosts-file.net. As @loveleeyoungae found out, those lists are far too aggressive.

The closest to the Standard blocking file in AB-Solution would be the Small list in Diversion:
Small:

http://someonewhocares.org/hosts/zero/hosts
https://pgl.yoyo.org/adservers/serverlist.php?hostformat=hosts&showintro=0&mimetype=plaintext&useip=0.0.0.0
https://raw.githubusercontent.com/hoshsadiq/adblock-nocoin-list/master/hosts.txt
https://zerodot1.gitlab.io/CoinBlockerLists/hosts

Standard:

https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts

Medium:

https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling-porn/hosts
https://adblock.mahakala.is

Large:

https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling-porn/hosts
http://support.it-mate.co.uk/downloads/hosts.txt
https://hosts-file.net/hphosts-partial.txt
https://hosts-file.net/ad_servers.txt
https://hosts-file.net/grm.txt

If Plus hosts are enabled for Skynet, these get added to whichever blocking file type is selected:

https://hosts-file.net/emd.txt
https://hosts-file.net/exp.txt
https://hosts-file.net/hjk.txt
https://hosts-file.net/mmt.txt
https://hosts-file.net/psh.txt

 

[mackun]

Looks like adding googleads.g.doubleclick.net to the whitelist might help.

lovely dear @thelonelycoder !! much appreciates for the speedy support!
yea, adding it to the whitelist does help. only thing is it leaves a HUGE white space where the as was before.. not complaining, certainly better! ha!

 

[thelonelycoder]

lovely dear @thelonelycoder !! much appreciates for the speedy support!
yea, adding it to the whitelist does help. only thing is it leaves a HUGE white space where the as was before.. not complaining, certainly better! ha!

Can't collapse predefined space. This is set in the HTML/CSS source file of the page.

 

[mackun]

Can't collapse predefined space. This is set in the HTML/CSS source file of the page.

noted! gotta learn more

 

[mackun]

i'm back with more question dear @thelonelycoder
i am using chrome. Have 2 different users signed in. on a similar desktop computer.
they opened in each individual browser windows with individual sets of extensions. (more or less similar)
funny thing is, for one user, ads are block correctly. but for the other users, there are ads still showing.
can I know what am i doing wrong?

 

[madition]

Hi guys,

Brand noob to Diversion/Skynet!
Just installed everything via AMTM a couple of days ago and Diversion, Pixelserv, DNSMasq, DNSCrypt and Skynet.
Everything works so sweet!

I have one problem thou, my lady wants to watch free series over at viafree.se that uses viaplay.se - i have whitelisted both domains but i cant see where the ads are from so she still gets "adblocked" from watching the free stuff - any idea how to find out which ads are beeing blocked? Tried watching the logs for ideas but cant find the right one..

Thanks

edit: i solved it myself by watching the dnsmasq log. I spammed the viafree.se site with a browser and whitelisted everything that was blocked, eventually when i cleared enough ads and trackers i was shown with the url mssl.fwmrm.net that was this site ad-service - i deleted all other whitelisted items that i did before and only kept mssl.fwmrm.net and its working now!

Thanks for all these awesome services!

 

[martinr]

i'm back with more question dear @thelonelycoder
i am using chrome. Have 2 different users signed in. on a similar desktop computer.
they opened in each individual browser windows with individual sets of extensions. (more or less similar)
funny thing is, for one user, ads are block correctly. but for the other users, there are ads still showing.
can I know what am i doing wrong?

What are your DNSFilter settings (in the LAN pages)? You’ve not set the ‘rogue’ computer to a different filter mode than the one that’s blocking?

Also, do you have a second browser on each computer eg Firefox or Edge and, if so, does the same thing happen or is it limited the Chrome?

I am right: it’s 2 different computers, and not 2 different user accounts on the same desktop computer?

 

[thelonelycoder]

edit: i solved it myself by watching the dnsmasq log. I spammed the viafree.se site with a browser and whitelisted everything that was blocked, eventually when i cleared enough ads and trackers i was shown with the url mssl.fwmrm.net that was this site ad-service - i deleted all other whitelisted items that i did before and only kept mssl.fwmrm.net and its working now!

That's the spirit! And it's exactly how I do it myself.

 

[thelonelycoder]

i'm back with more question dear @thelonelycoder
i am using chrome. Have 2 different users signed in. on a similar desktop computer.
they opened in each individual browser windows with individual sets of extensions. (more or less similar)
funny thing is, for one user, ads are block correctly. but for the other users, there are ads still showing.
can I know what am i doing wrong?

Looks like these are Windows machines. Make sure they have their DNS Server set to the routers IP.
https://diversion.ch/diversion/faq.html

 

[martinr]

i'm back with more question dear @thelonelycoder
i am using chrome. Have 2 different users signed in. on a similar desktop computer.
they opened in each individual browser windows with individual sets of extensions. (more or less similar)
funny thing is, for one user, ads are block correctly. but for the other users, there are ads still showing.
can I know what am i doing wrong?

Thelonelycoder’s answer made me realise a better reply from me would have been: go to DNSFiltering in the LAN secton, and, if set to Off, switch it on and set the Global Filter Mode to Router.

 

[mackun]

@thelonelycoder @martinr

yup it is a windows machine.
DNSfilter is initially switched off.
I've tried switching it to on with global filter set to router and no custom dns.
My devices' dns server points to my router.

i tried reinstalling.. everything went smoothly but funny why it doesn't work smoothly in my case..
gonna slowly figure it out by slowly following the dnsmasq log.

one thing, under WAN DNS Setting. how should i configure it? automatically? or can I input custom dns here?
I set it to automatically ... and my music player stop streaming

 

[thelonelycoder]

one thing, under WAN DNS Setting. how should i configure it? automatically? or can I input custom dns here?
I set it to automatically ... and my music player stop streaming

In your clients network settings, check that they use your routers IP as as DNS server.
To quickly check it in a command prompt, use this to show the IP configuration:

ipconfig/all

Diversion does not require you to edit any of the WAN or DHCP DNS server settings to change unless you (mis)configured it.

 

[mackun]

In your clients network settings, check that they use your routers IP as as DNS server.
To quickly check it in a command prompt, use this to show the IP configuration:

ipconfig/all

Diversion does not require you to edit any of the WAN or DHCP DNS server settings to change unless you (mis)configured it.

thank you @thelonelycoder . everything is right.. and they seems to be working now when i try going to ad block test sites.
i still get the same result on the site I screenshot above but other sites Seems fine..
I try catching the the ad in the screenshot under the log. but to no avail.
also.. can the ad in the sidebar of facebook be blocked?

 

[thelonelycoder]

thank you @thelonelycoder . everything is right.. and they seems to be working now when i try going to ad block test sites.
i still get the same result on the site I screenshot above but other sites Seems fine..
I try catching the the ad in the screenshot under the log. but to no avail.
also.. can the ad in the sidebar of facebook be blocked?

I'm not using fb and can't help. But you can always right-click on the areain the browser and select to inspect element (may not work in Edge). Find the URL that loads the ad and see if the domain name needs blacklisting.

 

[mackun]

I'm not using fb and can't help. But you can always right-click on the areain the browser and select to inspect element (may not work in Edge). Find the URL that loads the ad and see if the domain name needs blacklisting.

yeah i tried that for that first site.
i believe it loads widget. and the url is already in the standard blacklist.
no idea why it is still appearing.

 

[kernol]

That's not a bug. While updating the blocking file, a smaller temp file is used to lower the memory footprint so that the router does not run out of memory. Sorting, removing duplicates and whitelisted domains is memory intensive. The yoyo file is perfect as a temp blocking file.

When I was experiencing my RAM consumption issues ... I Googled your "yoyo.org" file usage ... and fully enjoyed their home page write up .
For those needing to "en"-lighten up ...
https://yoyo.org/

 

[kernol]

Finally found the issue by reading more carefully the dnsmasq log...
It was DDNSEC... I've found some entries saying "validation result is insecure"

Seems that chain of trust is broken because of pixelserv in the middle monitoring and cannot tell for sure that response was from the correct dns server.
So in order to use Diversion we must disable DNSSEC unless there's a workaround for that...
Maybe @thelonelycoder or @RMerlin knows

Sent from S.G. S9+ Duos

@sentinelvdx - Did you ever figure this one out? I too suffer from several "validation result is insecure" issues with both DNSCrypt and DNSSEC configured. If you have succeeded - could you list the domains that you whitelisted to clear the problem? Sorry - but there are so many domains "in previous posts" - so keen to only whitelist the necessary ones. many thanks.

 

[slvrscoobie]

So I just moved from a raspberry pi hole to Diversion, not running a second box is nice. Question though, is it possible to somehow white list ads from google on google.com for the misses? she googles a ton of stuff and gets upset that she cant click on the 'first row of results' - Ads. as such with Pi hole I was able to just add her phone IP to to allow her to just get the ads on her phone.
Is there a way I could whitelist the ads from google ON google.com results but not have every ad from googleadservices show up on all the other pages or is too impossible?

 

[Zastoff]

So I just moved from a raspberry pi hole to Diversion, not running a second box is nice. Question though, is it possible to somehow white list ads from google on google.com for the misses? she googles a ton of stuff and gets upset that she cant click on the 'first row of results' - Ads. as such with Pi hole I was able to just add her phone IP to to allow her to just get the ads on her phone.
Is there a way I could whitelist the ads from google ON google.com results but not have every ad from googleadservices show up on all the other pages or is too impossible?

Diversion - the Router Ad-Blocker
That`s one way to do it if you want exclude her phone from Diversion

The Info is also on Diversion webpage/faq https://diversion.ch/faq-reader/how-to-exclude-a-client-from-ad-blocking.html

 

[slvrscoobie]

Diversion - the Router Ad-Blocker
that one way to do it if you want exclude her phone from Diversion

Ah! I was looking for that in the FAQ but couldnt find the right setting. Perfect. my other option was to add a google DNS to her phone but if it pulled another ip from the DHCP it would overwrite that so this will be a good fix, thanks!