What's new
  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Project: Block ads for all network users...

OzarkEdge

Part of the Furniture
There has to be a lot of ad-blocking experience here... I have none and would appreciate some basic advice to get me started in the right direction. How should I go about blocking ads for all network users... desktop, mobile, TV devices(?)? My preference is to not integrate too many functions into one box so that managing one does not involve the other, if that's an option. I currently use Quad9 DoT.

OE
 
As you don't run Merlin firmware, if you run a server at home or an RPi I'd suggest Pi-hole with Steven Black's Diversion blocklist.
 
Try AdGuard with DoT. I remember Asuswrt has presets for it.

OK, I'll test this path of least resistance...

AdGuard Public DNS

Option 2: Configure AdGuard DNS manually
Routers
Default servers
AdGuard DNS will block ads and trackers.
IPv4:
94.140.14.14
94.140.15.15

Our server addresses
DNS-over-TLS
Default server
AdGuard DNS will block ads and trackers.
tls://dns.adguard-dns.com

My ASUSWRT WAN DNS and DoT configuration
1742340621992.png


https://www.dnscheck.tools/ results
1742341825896.png


Per some previous DoT example, I'm omitting tls:// from the TLS Hostname(?)

OE
 
Your settings are correct. The router itself can use different DNS servers, your ISP default for example. There is no ads and trackers to block in what the router needs to resolve for NTP, Trend Micro updates and data sharing, Asus update servers, etc. If something the router needs gets flagged by mistake and filtered upstream - may cause tricky to diagnose issue.

Some of your clients may still show ads. DHCP offers DNS servers to clients, but they are not mandatory. Clients with own DNS settings will go around. Stock Asuswrt doesn't have DNS interception and redirection in GUI. If you want to experiment - here.
 
Last edited:
Simplest method is setting the router to use an ad filtering DNS, like AdGuard. If you want to get more fancy, then having either a Pi or a VM/Docker running Pihole is a great option. Most NAS platforms allow you to install a docker image of Pihole, if you have such a NAS.
 
Similar threads
Thread starter Title Forum Replies Date
OzarkEdge Solved Project: Block Windows program from phoning home... General Network Security 3

Similar threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Back
Top