Looking for the best solution to block ads/trackers on my entire home network.

camerondev@programming.dev

Ah, okay, thats much more simple then.

sic_semper_tyrannis@lemmy.today

thorned_rose@sh.itjust.works

We have an Odroid with AdGuard that's worked great for many years. We used to use Pihole but had niggles that Meany AdGuard was easier. For us we wanted a completely free solution that we had complete control over.

supervent@lemmy.dbzer0.com

I use Adguard's public DNS on my router for convenience, no problems at all. In the past I had pi-hole with some lists that in the end, from time to time, broke things.

faceman2k23@discuss.tchncs.de

I use Ad-Guard instead of Pihole because the pi-hole software used to be missing some of the DNS features I wanted at the time, and I just stuck with it ever since.
I have the main DNS server running on my Unraid Box, and a backup that runs on my HomeAssistant Pi4B.

tgxn@lemmy.tgxn.net

yep, 100% set yourself up a pihole. You'll likely need to set it as your DNS via DHCP in your router, or configure it manually on devices that allow that.

januwu42@lemm.ee

Either Pi-Hole or there is also AdGuard Home

From what I’ve heard their as good as each other it just comes down on what UI you prefer^^

akip@discuss.tchncs.de

Plugging my favorite block lists:

• general browsing https://firebog.net/
• For TV's https://github.com/hkamran80/blocklists
• For Phones https://github.com/craiu/mobiletrackers

xanza@lemm.ee

Light + TIF                     https://sky.rethinkdns.com/1:AAkACAQA
Normal + TIF                https://sky.rethinkdns.com/1:AAkACAgA
Pro + TIF                 https://sky.rethinkdns.com/1:AAoACBAA
Pro plus + TIF               https://sky.rethinkdns.com/1:AAoACAgA
Ultimate + TIF              https://sky.rethinkdns.com/1:gAgACABA

Light + TIF                 https://dns.dnswarden.com/00000000000000000000048  
Normal + TIF                 https://dns.dnswarden.com/00000000000000000000028  
Pro + TIF                 https://dns.dnswarden.com/00000000000000000000018  
Pro plus + TIF               https://dns.dnswarden.com/0000000000000000000000o  
Ultimate + TIF              https://dns.dnswarden.com/0000000000000000000000804  

Light                https://freedns.controld.com/x-hagezi-light
Normal                https://freedns.controld.com/x-hagezi-normal
Pro                https://freedns.controld.com/x-hagezi-pro  
Pro plus                https://freedns.controld.com/x-hagezi-proplus  
Ultimate                https://freedns.controld.com/x-hagezi-ultimate
TIF                https://freedns.controld.com/x-hagezi-tif

DNS based adblocking with Hegezi blocklist and TIF (threat intelligence feeds). Works with any device on your network in one way or another (QUIC, DoH/3, DoT, etc) and doesn't require installing anything. Just changing dns settings.

This is a great list. Blocks about 95% of all advertisements. About 4% are unblockable due to one reason or another, and the remaining 1% get added very quickly. I highly recommend this solution.

ohshit604@sh.itjust.works

Yeah, PiHole is great if you live by yourself otherwise the entire household will have it out for you.

Learned that lesson the hard way.

corgana@startrek.website

OP if you enjoy a fun weekend project, don't go with a pi-hole. It literally only takes about 5 minutes. Also I recommend the blocklistproject lists https://blocklistproject.github.io/Lists/

melroy@kbin.melroy.org

lepinkainen@lemmy.world

This is the lazy option that just works, the free tier is decent but their paid one is so cheap that you can run it for years with the price of a single Rapberry Pi

qjkxbmwvz@startrek.website

I have one SSID with pihole (which I use), and one without. Works pretty well, if you're ok with a VLAN-aware network.

freeman@feddit.org

majestic@lemmy.ml

As an extra step you can block DNS requests to external services from within your network to prevent devices trying to reach hardcoded for example Google DNS servers to bypass your filtering which isn't uncommon with some IoT/streaming devices. Best to both block the known IPs as well as have DNS redirects for the urls that point back to your firewall at whatever IP it's using to serve DNS from. There is a list called DoH servers by name or something like that which you can add to the blocklist to try and prevent usage of any DNS but your own.

diesertypmatthias@lemmy.ml

NextDNS or many other DoH services that are out there (I personally recommend Mullvad).

piyuv@lemmy.world

I install some local adblocker to their devices and they don’t see those ads

camerondev@programming.dev

You can setup DHCP to give the DNS address to every device automatically. Even heavily locked down routers sometimes have the option, but I guess OP will have to try that out.

Pihole also has a built in DHCP, which you can enable and use as long as you disable the router one.

ataridump@lemmy.world

Only Apple the filtering to your MAC addresses.