Menu
What's new
By:
Filters Better Search

Firewall > URL filter

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

P

PrivateJoker

Very Senior Member
How does this feature actually work?

I like to filter out tracking stuff, ad delivery services, etc., and also block a few websites that I find useless but whose links are everywhere. I had been using OpenDNS for this, but had run into their hard limit of domains that can be blocked.

Now I've been trying the URL blocking built into Merlin's great build, but (at least from my not super technical background) it seems to take more tries to go out and find something, not find it, try again, not find it, etc., then finally tell browser "no I couldn't find that" vs. whatever method OpenDNS is able to use by their block list.

Like I said this is just my subjective observation, I don't know, it could be the same method but I'm comparing from different devices on different days under different conditions. . .

But the more I tend to use IPV6 now, I can't use OpenDNS, they only have an IPV6 recursive sandbox going, so I have to use my ISP's DNSes.

thanks for any input!
 
Well I poked around Asus's website and for a different router they described it as follows: The URL Filter is based on DNS query. So when you want to access the website which has address contains the keyword you set, the router will block the DNS query. But if the local PC already accessed the address before, a DNS cache will be saved in OS. And thus the URL filter function cannot work normal.


Ok I just tested it myself by blocking a sample domain (funnyjunk.com) in OpenDNS and using that as my DNS, within 2 seconds it returns and says "domain blocked. . ."

Then I tried reverting my DNS to normal and adding funnyjunk.com to the blocked list of URLs under Asus RT-N66 firewall, and it took over a minute of trying to resolve before it gave up!

This explains why trying to subvert ad trackers, misc. ads and other stuff using the Asus's built in URL filter is totally useless, it just makes page loads hang (if I'm trying to filter out a banner ad or some such thing on a known good page that might have some unwanted content on it from other domains).

Guess I'll be turning the URL filter back off on the router and I'm kinda stuck not being able to use OpenDNS because it limits you to only 20 or so domains ( going to cnet.com alone grabs content and trackers from almost 20 domains) which I've maxed out and also it doesn't do IPV6, why my ISP's DNS does in fact do.

I don't know if this is a something RMerlin can improve, or if Asus has inherently designed it in a crappy way that cannot be made better?
 
Maybe try a UTM device behind your router and let it do the filtering. They are faster than a router for that kind of filtering.
 
coxhaus said:
Maybe try a UTM device behind your router and let it do the filtering. They are faster than a router for that kind of filtering.
Click to expand...

@coxhaus it's funny you say that, I have been thinking of doing that exact thing, maybe the Astaro. So many options!
 
Look at ryzhov_al's instructions on how to implement a firewall-level ad blocker, using ipset. It might be usable for similar uses.

I might eventually take a look at how Asus implement the various access control features, but with so many things on my todo list, these aren't anywhere near the top yet I'm afraid.
 
You must log in or register to reply here.

Similar threads

TanyaC
cannot add domain to router URL filter
Replies
15
Views
2K
TanyaC
TanyaC
T
Weird issue while applying firewall URL filter with my RT-AC86u router!
Replies
3
Views
408
Tech9
Tech9
M
Finding my Correct Network/Subnet Mask
Replies
10
Views
1K
mykdrocks
M
M
DNS Filter issues with iOS devices when iCloud private relay is on
Replies
5
Views
3K
Treadler
Treadler
J
Allowing just one device to subnet (iptables or Network Services Filter?)
Replies
0
Views
895
JimbobJay
J
Similar threads
Thread starter Title Forum Replies Date
G Feature request: firewall url filter log Asuswrt-Merlin 0
fffddd URL filtering in the firewall does not take effect Asuswrt-Merlin 7
adri Firewall, Port Forwarding, and DoS Question Asuswrt-Merlin 8
Z Dual WAN + Dual Firewall Asuswrt-Merlin 11
K Asus router as adblock/firewall server (but not acting as a router) between modem and mesh routers Asuswrt-Merlin 7
M wan dhcpv6 blocked by firewall Asuswrt-Merlin 2
L is enabling firewall necessary (same for upnp) when on a provider with cgnat? Asuswrt-Merlin 5
M Advance firewall rules Asuswrt-Merlin 5
B Firewall lan - vpn? Asuswrt-Merlin 0
John Tetreault How to open ipv6 firewall to a port on the router? Asuswrt-Merlin 7

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 532 (members: 9, guests: 523)
Top