Easy enough to do with NAT unless it uses DNS over https. Then you have to block a lot more than just DNS.
Comment on I got this popup ad on my TV **while watching a DVD**
redcalcium@lemmy.institute 6 months agoThey started to wisen up and hard-coded dns requests to 8.8.8.8 to bypass dns ad blockers now. Heck, some apps like Netflix already do it for years now. If your router can transparently redirect all dns requests to your pi-hole, you should use that feature.
irotsoma@lemmy.world 6 months ago
Trollception@lemmy.world 6 months ago
I deny all DNS traffic except traffic going to my router IP so my pfBlocker will always work.
nsfw_alt_2023@lemmynsfw.com 6 months ago
There’s always DNS over HTTPS. It’s really hard to nab that shit out if it’s going upstream to the same server that’s hosting the content.
bitwaba@lemmy.world 6 months ago
That’s my next project now that I have my pihole set up. My basic ass router from my ISP does not support that though.
Side question: do you know of any openWRT supported routers in the $100-150 range with external antennas? Everything I’ve taken a look at is either an internal antenna, or like $400.
redcalcium@lemmy.institute 6 months ago
What do you mean with internal/external antenna? Does something like asus rt-ax53u ($85) counts as having external antennas? openwrt.org/toh/asus/rt-ax53u
bitwaba@lemmy.world 6 months ago
Yeah. That’s perfect. Thanks!
Hamartiogonic@sopuli.xyz 6 months ago
I recall having similar issues with Chrome. Instead of checking in with the pihole, it just went ahead and bypassed it by using a different DNS.
Stupidmanager@lemmy.world 6 months ago
or use the blocking feature of your firewall. Here’s Roku being persistent and ignoring my pihole. Firewalla for the win.
Image
mosiacmango@lemm.ee 6 months ago
Firewalla’s are great. All the features of pfsense and then some, in a fine little hardware form factor.
PopShark@lemmy.world 6 months ago
The countries listed there are really peculiar to me (I know that’s not the part of the image you were referring to).
Like obviously U.S. is up top because presumably you live there but either way lots of internet traffic goes in/out of the country even for those that don’t… but I wonder why Germany and France? Russia and China can be sort of assumed I guess a lot of malware spawns from there. Especially China imho even though Russia is on the hot seat rn and it’s common to think of the country when thinking of hackers they just don’t have China’s huge internet/tech infrastructure to send out as much… manure I guess overall, everywhere. Russia seems to try to target malware whereas China just spews it indiscriminately. Feel free to correct if I’m wrong I’m no security expert.
I use ControlD for DNS filtering and I don’t think I can view analytics like that by country? Wish I could though it seems really interesting now what my blocked connections would look like by country/region.