DNS Director - Proprietary?

[pjd50]

Hi all. My RT-AC68Us are heading to End of Life. I was thinking of upgrading to another ASUS Router since I like Merlin so much, but for a number of complicated reasons I may have to use a PFSense/OpenSense router (or a LinkSys Router running Open-WRT / DD-WRT).

One of the main features I use and love is DNS Director. Specifically the ability to have global redirection to a DNS server (in this case, AdGuard Home running on my NAS), but SELECTIVELY have "No Redirect" set for the NAS in the Client List.

Is this type of unique configuration proprietary to Merlin (or at least the simple interface that allows one to achieve this)? I tried Googling and it got very complicated re: setting up selective iptables ... is that the way to go if I have to move on from Merlin?

Basically, if you guys tell me I have to use Merlin to use DNS Director, I will find the cash to get a new ASUS router that can run Merlin ... or if it's a configuration that can be done on DD-WRT or PFSense I may go in that direction since it will save me a lot of $ especially in this economy. Thanks!

 

[RMerlin]

You can easily reproduce DNS Director's behaviour on any router that runs under Linux - DNS Director is just a few iptables rules. No idea about how to achieve similar results with pfsense however.

 

[Tech9]

I’ve seen examples online for DNS interception and redirection in pfSense along with known DoH servers blocking. Not very hard to do.

 

[pjd50]

Thanks for the reply @RMerlin and @Tech9. If I end up having to reluctantly move away from ASUS/Merlin, it's good to know I have this capability. I just wish everyone made the interface as nice as DNS Director!!

 

[Tech9]

Your RT-AC68U is supported by Fresh Tomato and you can continue using it with even nicer in my opinion customizable user interface. DNS interception is available option in GUI, ad-block is built-in, nice customizable traffic graphs, VLAN support, etc. Get out of your comfort zone and explore for free with the hardware you already have.

 

[pjd50]

Your RT-AC68U is supported by Fresh Tomato and you can continue using it with even nicer in my opinion customizable user interface. DNS interception is available option in GUI, ad-block is built-in, nice customizable traffic graphs, VLAN support, etc. Get out of your comfort zone and explore for free with the hardware you already have.

Wow, that's a great suggestion I was not aware of at all. Thanks for mentioning it to me - I am going to go check it out and learn about it now. I was thinking it was time I moved on from AC to AX for WiFi... but if I can still get life out of my current hardware (and get security updates!... that's amazing...).

I am using AdGuardHome on my Synology (point the ASUS router to the Synology as the DNS and have unbound running on the NAS) and also use SkyNet... but maybe FreshTomato as everything all in one...

I am excited to see VLAN support!!!

 

[Tech9]

It’s different, but you’ll find what you need. You may like the more modern skinable UI. Your AdGuard Home may continue doing its thing, Skynet is not really needed nor very effective with visible for all slow update community blocklists. RMerlin is involved in this project as well, meet him on their support forum.