[HN Gopher] AdGuardHome: Network-wide ads and trackers blocking ...
___________________________________________________________________
AdGuardHome: Network-wide ads and trackers blocking DNS server
Author : thunderbong
Score : 48 points
Date : 2022-10-29 20:29 UTC (2 hours ago)
(HTM) web link (github.com)
(TXT) w3m dump (github.com)
| eyeball wrote:
| why would I use this instead of pihole?
| simooooo wrote:
| It's better in every respect you could name
| [deleted]
| xen2xen1 wrote:
| This is one setting on a regular router IIRC.
| goodoldneon wrote:
| I could be wrong but I don't think pihole supports DNS over TLS
| out of the box. But AdGuard does
| msavara wrote:
| amelius wrote:
| Meanwhile, people use dozens of Npm and Python etc. packages
| written and maintained by Russians every day.
|
| If they wanted to cripple our systems, it would be very easy to
| do.
| jbverschoor wrote:
| So stop using nginx too and anything that uses it
| msavara wrote:
| You're not gonna believe this. But a few months ago I
| switched from nginx to yarp only because of the Russians. I
| know it's illogical. But at least I'm doing something.
| odysseus wrote:
| Is there a performance/weight comparison between this and Pi-
| hole? Is AdGuard lighter weight or more bloated compared to Pi-
| hole?
|
| Curious both about load on the raspberry pi _and_ how long it
| takes browsers to fetch pages
| lloydatkinson wrote:
| Can this block the entirety of Facebook as well? Not just the
| tracking part.
| cloudking wrote:
| Yes, just block their domains in the config.
| zfa wrote:
| Literally has a one-click toggle for blocking Facebook, yeah.
| mfashby wrote:
| Also, similar piece of software https://0xerr0r.github.io/blocky/
| cloudking wrote:
| I've been using this on Home Assistant, very easy to deploy and
| configure. Ad and tracker blocking on all mobile browsers is
| awesome, load times are so fast. https://www.home-
| assistant.io/integrations/adguard/
| Queue29 wrote:
| A minimalist alternative (no UI, yarn deps etc.)
| https://github.com/shoenig/donutdns
| phillipseamore wrote:
| Is there anything in this field that actually doesn't block DNS
| but hijacks it and serves up 1x1 GIF for any image requests, 1
| frame videos, empty HTML, CSS, JS, fake VAST/VPAID files so that
| requests don't have to timeout and fail? I setup a pi-hole a
| couple of years ago and the kids begged me to shut it off because
| it screwed up with games on their phones (crashed if they
| couldn't load ads or got stuck because there was no reply).
| robostac wrote:
| https://docs.pi-hole.net/ftldns/blockingmode/
|
| Pihole has many options for different blocks, but all have
| downsides.
| phillipseamore wrote:
| Don't remember different modes being available the last time,
| I'll give it another spin.
| bakugo wrote:
| Why not teach your kids to play real games instead of ad-ridden
| mobile garbage?
| phillipseamore wrote:
| We'll I decided to teach them they have to pay for stuff
| themselves, and at least it taught them to be rather frugal.
| The real problem is that they mostly play what the other kids
| are playing.
| leesalminen wrote:
| I think you can configure PiHole to return whatever IP you want
| for blocklisted domains. I guess you could set up a box with
| nginx that inspects the request content type header and returns
| generic content. But, TLS will cause problems here. You'd need
| to MITM all the traffic and serve up your own root certs,
| install them on devices etc.
| kobalsky wrote:
| you could just -j REJECT the traffic, that makes the
| connection fail immediately because it sends an icmp port-
| unreachable packet back.
| phillipseamore wrote:
| Yeah TLS will be the headache. Just did a quick test with a
| self-signed, that works fine but I'll need to create one for
| each TLD (wildcard doesn't seem to be allowed as root, at
| least in browsers). That's easy to script, hard to install.
| So the only issue are devices that I can't install certs on
| like our Apple TV's and Rokus.
| BLKNSLVR wrote:
| PiHole doesn't normally time things out, it returns 0.0.0.0 as
| the result.
|
| The few apps I use, I haven't experienced time out or crashing
| issues as a result of PiHole. You might have other network or
| DNS issues.
| chrisbolt wrote:
| NextDNS is a similar solution: https://nextdns.io/
| SparkyMcUnicorn wrote:
| Love NextDNS and it is my current choice, but it appears that
| the big difference between the two is that NextDNS does not
| provide a way to self-host the DNS server.
| [deleted]
| paulcarroty wrote:
| Another Open Source alternative: https://libredns.gr
| breytex wrote:
| How does this compare to pihole? Do I have to migrate to this?
| rjgonza wrote:
| There is details on the page:
| https://github.com/AdguardTeam/AdGuardHome#comparison-pi-hol...
| Ocha wrote:
| Would love to hear if anyone have used both and how they
| compare to each other.
| simooooo wrote:
| Adguard can do dns over https/tls
| vanillax wrote:
| I used both. Adguard Home is wayyyy better. More user
| friendly.
| zfa wrote:
| Pi-hole is a bloated mess compared to this IMO. At the end of
| the day pi-hole is still just a fork of dnsmasq with a load
| of scripts and a bootstrap gui whacked on top. You need to
| add on extra bits and pieces to get anything like modern tech
| whereas AGH has https gui, multi-user support,
| DoH/DoT/dnscrypt/etc, toggles for quick blocks, access to a
| 'realtime' blocklist for emergent threats all baked in. It's
| also a single self-updating binary with a single config file
| instead of spraying bits all over your OS. Runs on pretty
| much anything you can think of, too.
|
| pi-hole was great back in the day but unless you're just
| keeping on keeping on with an existing install there's better
| options available now.. AdGuard Home, Blocky, Technitium DNS
| etc.
|
| I often compare pi-hole to DD-WRT inasmuch as it was awesome
| back in the day but times have changed and you probably
| wouldn't use it as first choice these days given what else is
| now available to you.
| phlip9 wrote:
| AdGuardHome is pretty great. Run it on my OpenWRT router and miss
| it every time I use my phone away from home : )
| BLKNSLVR wrote:
| Setup a wireguard VPN at home and connect too it from your
| phone whenever you're out.
|
| If you can do OpenWRT, you can do this.
___________________________________________________________________
(page generated 2022-10-29 23:00 UTC)