Menu
What's new
By:
Filters Better Search

Diversion Diversion - the Router Ad-Blocker

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Could someone explain the use of pixelserv-tls?

It's enabled, but not sure what it does.

This is to import a CA for the web UI, is this the routers web UI? Or some other UI that may be useful?
 
tekrich said:
Could someone explain the use of pixelserv-tls?

It's enabled, but not sure what it does.

This is to import a CA for the web UI, is this the routers web UI? Or some other UI that may be useful?
Click to expand...
Edited: Here's some lite reading for you.... majority of people I read disabled it. ;)

What does pixelserv-tls do? - Diversion

What does pixelserv-tls do?
diversion.ch diversion.ch
www.snbforums.com

pixelserv - pixelserv - A Better One-pixel Webserver for Adblock

pixelserv-tls pixelserv-tls is a tiny bespoke HTTP/1.1 webserver with HTTPS and SNI support. It acts on behalf of hundreds of thousands of advert/tracker servers and responds to all requests with nothing to speed up web browsing. Project Blog https://kazoo.ga/pixelserv-tls/ FAQ...
www.snbforums.com www.snbforums.com
 
Last edited:
QuikSilver said:
Here's some lite reading for you....Also I believe most have disabled it.

What does pixelserv-tls do? - Diversion

What does pixelserv-tls do?
diversion.ch diversion.ch
www.snbforums.com

pixelserv - pixelserv - A Better One-pixel Webserver for Adblock

pixelserv-tls pixelserv-tls is a tiny bespoke HTTP/1.1 webserver with HTTPS and SNI support. It acts on behalf of hundreds of thousands of advert/tracker servers and responds to all requests with nothing to speed up web browsing. Project Blog https://kazoo.ga/pixelserv-tls/ FAQ...
www.snbforums.com www.snbforums.com
Click to expand...

Ah, thanks for the links.

So, blocking ads served from HTTPS, and replacing the ad with a pixel. This sounds useful, even though I still get massive wasted space on pages. But makes sense for HTTPS served ads.

What's the reason for disabling it?
 
tekrich said:
Ah, thanks for the links.

What's the reason for disabling it?
Click to expand...
I couldn't exactly remember but I believe it was most people found it was causing more issues blocking items than helping. It hasn't been updated either if I recall. I had it enabled myself at one time but after disabling it I found no issue to turn it back on. Here is an explanation from @thelonelycoder on what happens when you disable it.
www.snbforums.com

pixelserv - pixelserv - A Better One-pixel Webserver for Adblock

Thanks for clarifying - if you no longer use pixelserv-tls, what (if anything) to you now use to remove / replace the blocked content? I don't use anything, Diversion's blocking via 0.0.0.0 does enough!
www.snbforums.com www.snbforums.com
 
QuikSilver said:
I couldn't exactly remember but I believe it was most people found it was causing more issues blocking items than helping. It hasn't been updated either if I recall. I had it enabled myself at one time but after disabling it I found no issue to turn it back on. Here is an explanation from @thelonelycoder on what happens when you disable it.
Click to expand...

Excellent, thanks for your help.
 
Sorry, if this was already answered but is there a way to block specific device from connecting to host?
I would like block Amazon and other IoT devices from pinging to google all the time.

I really love what you are doing! Thank you!
 
Sunki said:
Sorry, if this was already answered but is there a way to block specific device from connecting to host?
I would like block Amazon and other IoT devices from pinging to google all the time.

I really love what you are doing! Thank you!
Click to expand...

I've watched the logs briefly and seen that the analytical, useless-for-the-end-user, stuff is being blocked by Diversion.
 
Sunki said:
Sorry, if this was already answered but is there a way to block specific device from connecting to host?
I would like block Amazon and other IoT devices from pinging to google all the time.

I really love what you are doing! Thank you!
Click to expand...
You need to look into Skynet not Diversion.
www.snbforums.com

Skynet - Skynet - Router Firewall & Security Enhancements

You would need to upload it to a service such as pastebin, then specify the raw file link accordingly. sh /jffs/scripts/firewall banmalware www.google.com/filter.list Replacing the URL with your own. Thanks again Adamm. Regarding storing blacklists as txt files locally on the USB drive...
www.snbforums.com www.snbforums.com
 
QuikSilver said:
Here's some lite reading for you....Also I believe most have disabled it.

What does pixelserv-tls do? - Diversion

What does pixelserv-tls do?
diversion.ch diversion.ch
www.snbforums.com

pixelserv - pixelserv - A Better One-pixel Webserver for Adblock

pixelserv-tls pixelserv-tls is a tiny bespoke HTTP/1.1 webserver with HTTPS and SNI support. It acts on behalf of hundreds of thousands of advert/tracker servers and responds to all requests with nothing to speed up web browsing. Project Blog https://kazoo.ga/pixelserv-tls/ FAQ...
www.snbforums.com www.snbforums.com
Click to expand...

"Most people disable it" no I disagree. Although we would need a poll to collect data ;)

I continue to use it and manually take care of things so that my phone apps like Amazon shopping etc are unaffected by pixelserv.
 
CriticJay said:
"Most people disable it" no I disagree. Although we would need a poll to collect data ;)

I continue to use it and manually take care of things so that my phone apps like Amazon shopping etc are unaffected by pixelserv.
Click to expand...
I can reword it to "majority of people I read disabled it". ;)
 
tekrich said:
I've watched the logs briefly and seen that the analytical, useless-for-the-end-user, stuff is being blocked by Diversion.
Click to expand...

QuikSilver said:
You need to look into Skynet not Diversion.
www.snbforums.com

Skynet - Skynet - Router Firewall & Security Enhancements

You would need to upload it to a service such as pastebin, then specify the raw file link accordingly. sh /jffs/scripts/firewall banmalware www.google.com/filter.list Replacing the URL with your own. Thanks again Adamm. Regarding storing blacklists as txt files locally on the USB drive...
www.snbforums.com www.snbforums.com
Click to expand...

Ah, I thought Diversion was doing this.

Something else I need to take a closer look at.
 
QuikSilver said:
I couldn't exactly remember but I believe it was most people found it was causing more issues blocking items than helping. It hasn't been updated either if I recall. I had it enabled myself at one time but after disabling it I found no issue to turn it back on.
Click to expand...

Code: 
pixelserv-tls 2.3.1 (compiled: Mar 23 2020 07:23:17 flags: tfo tls1_3)

More recently updated than some scripts IMO!
 
Please excuse me, but a quick one off topic: Does anyone know why the PWR command would not be working from my SSH prompt?

Annotation 2020-07-23 104144.jpg
 
Jack Yaz said:
kvic briefly re-appeared to merge my efforts to fix it up to make it fit for purpose with requirements forced by iOS/macOS changes, but it seems like the project is abandoned. i have removed pixelserv from my setup
Click to expand...

Although it may be abandoned, it's still working fine for me. (with the caveat that for certain mobile apps like Amazon Shopping; you may need to employ some manual workarounds because they don't like pixelserv-TLS for some reason - pretty much everything else is fine)

Keep in mind that although FreshJR-QoS was abandoned in June (?) of 2019, we all continued to use it without major issues until FW 384.18 came out, which is the only point that we really needed to update to the newer FlexQoS due to Adaptive QoS changes in the base Asus firmware.
 
abracadabra11 said:
Not quite sure how to get this right. I've tried several combinations and still doesn't seem to work properly.

LAN/DHCP Server Page
DNS Server 1 and 2 are blank (which should default to RTAC68U address)
- I've also tried manually entering the IP address here

WAN Internet Connection
DNS Server 1 and DNS Server 2 are assigned 1.1.1.1/9.9.9.9 (though I tried setting this to blank and the RTAC68U IP)
Connect to DNS Server Automatically is No
DNS Privacy Protocol Set to DNS Over TLS

It's my understanding that given what's set in LAN/DHCP Server Page and WAN Internet Connection, that clients connected to the network should get RTAC68U address assigned as DNS server, and RTAC68U would then filter results poll DNS Servers established under WAN Internet Connection for IP addresses. What am I missing?
Click to expand...
Can anyone help?
 
Quick post regarding pixelserv-tls,

Disabled it yesterday, and ads on my mobile phone were replaced with messy long URLs.

Enabled pixelserv-tls, no messy long URLs.
 
Ninko said:
Just setting up email config, what is meant by SSL Flag?

Thanks
Click to expand...
@elorimer explained it better than I ever could:
elorimer said:
I think it is actually something a little different. I think it works like this. Whether it is encrypted or not is a function of the protocol. So Gmail's smtp server uses smtps protocol, and the exchange of information sets up TLS encryption at the 256 bit level. The configuration dialog helpfully shows you the settings for four SMTP servers. But by default curl will attempt to verify identities, so Gmail's smtp server will want to see your humble little router verified in its CA chain. Which of course, it won't. The SSL flag allows you to specify the "--insecure" command, which tells Gmail's smtp server not to do that. If you go ahead, the connection is still encrypted.

Now, as a matter of safety, your gmail account is going to have 2FA in place. (If not, stop here.) When this is the case, the Gmail server is going to want to see the connection is verified by 2FA, which of course it can't. But the server also checks to see if you have a application-specific password in place, and if that password matches, the gmail server will accept the traffic.

As an aside, I think that field allows you to specify a bunch of curl options if necessary. Haven't come across the necessity for this.
Click to expand...
 
You must log in or register to reply here.

Similar threads

thelonelycoder
Diversion Diversion 5.1.3 - the Router Ad-Blocker, May 09, 2024
33 34 35
Replies
695
Views
85K
KGB7
K
thelonelycoder
Diversion Diversion 5.3 - the Router Ad-Blocker, August 11, 2024
2 3
Replies
40
Views
6K
Kingp1n
K
thelonelycoder
Diversion Diversion 4.3.3 - the Router Ad-Blocker, released April 02 2023
15 16 17
Replies
323
Views
60K
thelonelycoder
thelonelycoder
thelonelycoder
Diversion Diversion - the Router Ad-Blocker v4.2.x (see new thread for 4.3.x)
23 24 25
Replies
499
Views
111K
Treadler
Treadler
ExtremeFiretop
MerlinAU MerlinAU v1.3.4 - The Ultimate Firmware Auto-Updater (GNUTON SUPPORT!)
Replies
18
Views
4K
ExtremeFiretop
ExtremeFiretop
Similar threads
Thread starter Title Forum Replies Date
thelonelycoder Diversion Diversion 5.3 - the Router Ad-Blocker, August 11, 2024 Asuswrt-Merlin AddOns 40
thelonelycoder Diversion Diversion 5.1.3 - the Router Ad-Blocker, May 09, 2024 Asuswrt-Merlin AddOns 695
J Diversion Diversion won't start Asuswrt-Merlin AddOns 2
M Diversion Diversion 5.3 Dnsmasq log file location Asuswrt-Merlin AddOns 2
F Diversion slow down troubleshooting Asuswrt-Merlin AddOns 3
heysoundude Manifest v2 and diversion Asuswrt-Merlin AddOns 4
F Diversion Diversion and Breezeline Customer Portal Asuswrt-Merlin AddOns 5
D Entware Asus RT-AC86U (386.13_2) on AMTM 4.9 - Unable to update Entware Packages and Diversion (4.3.3 to 5.1 or 5.2) Asuswrt-Merlin AddOns 4
L Is Diversion better than NextDNS, PiHole or AdGuard Home? Asuswrt-Merlin AddOns 10
keef Diversion Diversion install is getting the best of me Asuswrt-Merlin AddOns 10

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 646 (members: 15, guests: 631)
Top