Recent content by Dux

I have Diversion set to exclude devices at IPv4 address 192.168.50.2. Is it currently possible to do this with IPv6 enabled? If so, what address should I put for IPv6 in DNS Director? The only info I could find on this applied to the old pixelserv version, see...

OK, i haven't gotten into VPN on the router, hopefully won't have to. I'm trying to keep things simple & reliable.

Thank you again. since as far as i can tell, firewall NSF + Diversion block what I want (and preventing DNS DoH/DoT bypassing of the same) and nothing more I'll stick with that for now. If the devices manage to bypass that I can try static routing again and if that doesn't work I'll use the...

I'm not sure if I should be asking this here or the Unbound threads. I have been using Diversion lite with a device exclusion for a while, the device skips Diversion ad-blocking & uses WAN DNS as expected. I tried using Unbound via AMTM, default settings, devices globally use Diversion...

Thank you for your suggestions. I made some changes, so hopefully I'll get this right. All port 53 traffic is going through router. For blocking hardcoded DoT & Google DoH, in Network Services Filter, if I just want this to apply to my Rokus only (each with manually-assigned IPs), and nothing...

I'm blocking content on specific clients by setting DNS Director to "Router" & using Diversion filters. Some apps on these devices are hardcoded to use Google DNS. I'm trying to determine if the following is the best way to prevent these devices from using DNS to bypass my router's DNS &...

Thank you.

RT-AX86S, 512 MB RAM. Both approaches are subjectively the same performance wise for now, but I've seen a number of arguments against using the router for anything but routing. If I was using a huge blocklist I'd just use NextDNS or Control D, but with streaming devices blocking more than you...

Drinkingbird: Your advice has been very helpful. It looks like just using the ISP or a fast public DNS at the router and avoiding non-essential router features like DoT, DNSSEC, IPv6 etc. will cause the least friction. I do have a somewhat related question, I'm using DNS Director + Diversion...

OK, thank you for clearing that up. OK, thank you all for your insights. It looks like I'll just forget about DoT via the router for now. DoH at the browser or device level doesn't cause these hangups or noticeable latency issues for my usage, but does it provide any benefit at all for home...

Is there any benefit or detriment to using different DNS-over-TLS servers, eg: Quad9 & Cleanbrowsing? My issue is similar to: https://www.snbforums.com/threads/dns-filtering-brakes-reddit.78907/post-762580 I am currently using Quad9 DoT, Opportunistic profile. In Firefox some sites randomly...

Thank you for your reply! Yes, Diversion does seem to be working properly. Following up, in the Diversion terminal menu some of my custom wild card blacklist entries are appended with #(forced entry) which I believe indicates overlap with a hosts list, however, all hosts lists here should...

I attempted to exclusively use just a small number of custom wildcard blockers, however uiDivStats still shows blocking by hosts lists. I started with the minimal list, in Diversion terminal menu, Blocking list options -> Change composition -> Customizable hosts lists, I deleted the single...

Thank you for your assistance previously. Diversion Lite is working as expected for blocking ads in streaming devices and for excluding ad blocking globally as follows: IP Pool Starting Address: 192.168.50.3 Ad-blocking exclusion IP Address: 192.168.50.2...

I have IPv4 requests mapped to 192.168.50.3 using generic Diversion-Lite blocking, if I also want to apply it to IPv6 requests, what exactly should I specify in the for IPv6 box? Should I leave it blank or do I specify a code (I'm not clear on what you meant by [::])? Thank you.