[HN Gopher] AdGuardHome: Network-wide ads and trackers blocking ... ___________________________________________________________________ AdGuardHome: Network-wide ads and trackers blocking DNS server Author : thunderbong Score : 48 points Date : 2022-10-29 20:29 UTC (2 hours ago) (HTM) web link (github.com) (TXT) w3m dump (github.com) | eyeball wrote: | why would I use this instead of pihole? | simooooo wrote: | It's better in every respect you could name | [deleted] | xen2xen1 wrote: | This is one setting on a regular router IIRC. | goodoldneon wrote: | I could be wrong but I don't think pihole supports DNS over TLS | out of the box. But AdGuard does | msavara wrote: | amelius wrote: | Meanwhile, people use dozens of Npm and Python etc. packages | written and maintained by Russians every day. | | If they wanted to cripple our systems, it would be very easy to | do. | jbverschoor wrote: | So stop using nginx too and anything that uses it | msavara wrote: | You're not gonna believe this. But a few months ago I | switched from nginx to yarp only because of the Russians. I | know it's illogical. But at least I'm doing something. | odysseus wrote: | Is there a performance/weight comparison between this and Pi- | hole? Is AdGuard lighter weight or more bloated compared to Pi- | hole? | | Curious both about load on the raspberry pi _and_ how long it | takes browsers to fetch pages | lloydatkinson wrote: | Can this block the entirety of Facebook as well? Not just the | tracking part. | cloudking wrote: | Yes, just block their domains in the config. | zfa wrote: | Literally has a one-click toggle for blocking Facebook, yeah. | mfashby wrote: | Also, similar piece of software https://0xerr0r.github.io/blocky/ | cloudking wrote: | I've been using this on Home Assistant, very easy to deploy and | configure. Ad and tracker blocking on all mobile browsers is | awesome, load times are so fast. https://www.home- | assistant.io/integrations/adguard/ | Queue29 wrote: | A minimalist alternative (no UI, yarn deps etc.) | https://github.com/shoenig/donutdns | phillipseamore wrote: | Is there anything in this field that actually doesn't block DNS | but hijacks it and serves up 1x1 GIF for any image requests, 1 | frame videos, empty HTML, CSS, JS, fake VAST/VPAID files so that | requests don't have to timeout and fail? I setup a pi-hole a | couple of years ago and the kids begged me to shut it off because | it screwed up with games on their phones (crashed if they | couldn't load ads or got stuck because there was no reply). | robostac wrote: | https://docs.pi-hole.net/ftldns/blockingmode/ | | Pihole has many options for different blocks, but all have | downsides. | phillipseamore wrote: | Don't remember different modes being available the last time, | I'll give it another spin. | bakugo wrote: | Why not teach your kids to play real games instead of ad-ridden | mobile garbage? | phillipseamore wrote: | We'll I decided to teach them they have to pay for stuff | themselves, and at least it taught them to be rather frugal. | The real problem is that they mostly play what the other kids | are playing. | leesalminen wrote: | I think you can configure PiHole to return whatever IP you want | for blocklisted domains. I guess you could set up a box with | nginx that inspects the request content type header and returns | generic content. But, TLS will cause problems here. You'd need | to MITM all the traffic and serve up your own root certs, | install them on devices etc. | kobalsky wrote: | you could just -j REJECT the traffic, that makes the | connection fail immediately because it sends an icmp port- | unreachable packet back. | phillipseamore wrote: | Yeah TLS will be the headache. Just did a quick test with a | self-signed, that works fine but I'll need to create one for | each TLD (wildcard doesn't seem to be allowed as root, at | least in browsers). That's easy to script, hard to install. | So the only issue are devices that I can't install certs on | like our Apple TV's and Rokus. | BLKNSLVR wrote: | PiHole doesn't normally time things out, it returns 0.0.0.0 as | the result. | | The few apps I use, I haven't experienced time out or crashing | issues as a result of PiHole. You might have other network or | DNS issues. | chrisbolt wrote: | NextDNS is a similar solution: https://nextdns.io/ | SparkyMcUnicorn wrote: | Love NextDNS and it is my current choice, but it appears that | the big difference between the two is that NextDNS does not | provide a way to self-host the DNS server. | [deleted] | paulcarroty wrote: | Another Open Source alternative: https://libredns.gr | breytex wrote: | How does this compare to pihole? Do I have to migrate to this? | rjgonza wrote: | There is details on the page: | https://github.com/AdguardTeam/AdGuardHome#comparison-pi-hol... | Ocha wrote: | Would love to hear if anyone have used both and how they | compare to each other. | simooooo wrote: | Adguard can do dns over https/tls | vanillax wrote: | I used both. Adguard Home is wayyyy better. More user | friendly. | zfa wrote: | Pi-hole is a bloated mess compared to this IMO. At the end of | the day pi-hole is still just a fork of dnsmasq with a load | of scripts and a bootstrap gui whacked on top. You need to | add on extra bits and pieces to get anything like modern tech | whereas AGH has https gui, multi-user support, | DoH/DoT/dnscrypt/etc, toggles for quick blocks, access to a | 'realtime' blocklist for emergent threats all baked in. It's | also a single self-updating binary with a single config file | instead of spraying bits all over your OS. Runs on pretty | much anything you can think of, too. | | pi-hole was great back in the day but unless you're just | keeping on keeping on with an existing install there's better | options available now.. AdGuard Home, Blocky, Technitium DNS | etc. | | I often compare pi-hole to DD-WRT inasmuch as it was awesome | back in the day but times have changed and you probably | wouldn't use it as first choice these days given what else is | now available to you. | phlip9 wrote: | AdGuardHome is pretty great. Run it on my OpenWRT router and miss | it every time I use my phone away from home : ) | BLKNSLVR wrote: | Setup a wireguard VPN at home and connect too it from your | phone whenever you're out. | | If you can do OpenWRT, you can do this. ___________________________________________________________________ (page generated 2022-10-29 23:00 UTC)