Recent content by Christos

let's be more respectful, please.

One reason a travel router is needed is to share a paid wifi voucher among all devices.

But you need much more for building the rest of the ecosystem that it needs to work with.

With opnsense its very easy. Pipes can be used to set hard limits to the bandwidth that a flow can use. https://docs.opnsense.org/manual/shaping.html

Try to cut the line in 2 pipes of 500Mbps each. Assign HTTPS, DNS and VoIP on 1 pipe and enable QoS on it. Assign everything else on the other pipe without any QoS. I hope your CPU can handle this approach.

I had exactly the same issue with delays on Adguard with Opnsense (not pfsense). I gave up and using unbound with blocklists.

Why not looking for an all-in-one solution like the UniFi Express 7 ?

HaGeZi's Pro++ may cause some false blocks.

Opnsense just released this week a major update with BSD 14 (moving from BSD 13), maybe it is a good chance to give it a try.

This is a malware domain, blocked by Mastercard. Use dig command to see which dns providers actually block this malicious domain. (OpenDNS free plan does not block it, while Cisco Umbrella paid tier, blocks it as malware) For example dig a4p.adpartner.pro @9.9.9.9

Also supports TLS, for those who use Unbound and android devices. tls://208.67.222.222 tls://208.67.220.220

We are out of topic, but since we are talking about dns, I would post my thoughts: Cisco Umbrella/Opendns: +Spend the most money on dns infrastructure than anyone else +Don't add any experimental features -Have no malware blocking on the free tier. Google DNS: +Many locations and good...

You can set Domain Overrides on Unbound, so you will use other dns servers for these domains that get blocked. I'm saying this because you may face blocks using other dns services too.

Every list that is included in a BIG list that you may already use.

Some lists (like OISD Big and Hagezi++) include many other lists. Adding those lists is a waste of memory and cpu.