a) Yes, absolutely. There's only so much CPU in these routers to process frames, I/O etc.. That's why I turn most of the "fluff" off and only use AMTM tooling now.
b) Yes, I agree that is a negative . I still consider it part of the overall security onion.
c) Yes, that's a 3rd layer but everyone in my household won't use uBlock.
FWIW, Gut says Diversion is doing a pretty good job b/c if I have everything setup right, this is all that's getting through to NextDNS.
However, the attractiveness of your services is I could use it as a good alternative for non-ASUS routers. When my MIL calls complaining about she cannot get somewhere... then hopping into NextDNS can fix that easily.
View attachment 21535