Messages

How do I know if my DNS requests are using DoT when using this implementation? Do I still set DoT on opnsense' end as well or just in AdGuard?

How do I know if my DNS requests are using DoT when using this implementation? Do I still set DoT on opnsense' end as well or just in AdGuard?

I followed this guide: https://samuelsson.dev/install-adguard-home-on-an-opnsense-router/
How can I ensure that my DNS queries are encrypted using the set up?

I don't have DNSSEC or DNS64 enabled. I am leaning towards the long execute time as well as it seems as though it's adding the lists. What's odd, when I try to remove the lists, it errors out and the sites are still blocked. It leaves me a little apprehensive of the effectiveness of this.
Appreciate the insight so far.

Just an update, I have not yet tried the plugin suggestion. That will be next.
I'm on a clean install, I can view the plugins folder.
I am now trying to add the dnsbl and get the attached error. This is what I see in the log:

2022-08-23T23:27:45-04:00

Notice

unbound

blocklist download : exclude domains matching .*localhost$|^(?![a-zA-Z_\d]).*

Edit: It seems to be certain lists, I was able to apply the SimpleAdList.  Stephen Black list is a no go
I retried the Stephen block list and it errors, but the logs show:

2022-08-23T23:38:40-04:00

Notice

unbound

blocklist download https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts (lines: 142982 exclude: 15 block: 135870)

Delete

Do you know why this isn't an "official" plugin in the repository?

Looking at the 750 or the dc2750 (not sure I'm willing to speed the extra $100+ on the 1U unit as nice as it would be in the rack), they have 3 RJ45, I would use 0 for the WAN and 1 for say the primary VLAN and possibly 2 for Guest. Would that mean that I would be using an extra port on my switch to tag it for that VLAN?
Port 24 on switch would go to Port 2 on the 750 and be tagged with VLAN 2,3,4 and Port 23 on switch would go to Port 3 on the 750 and be tagged in 5? Is that how it works? The switch does support LAGG as well but that is beyond my understanding at this point.

I appreciate the insight. I do have some knowledge of intermediate networking but am somewhat new to VLANing.
I was planning on having the 4 or 5 VLANs on one port on the appliance. Is there an alternative?

Hi everyone, I am coming from a closed source router and pihole system. I've been looking at pfsense/pfblockerng and opnsense.

I need to have DNS over TLS and adblocking. I want to be able to ditch the pihole if possible and run everything from the router.
What are your suggestions? Is there a plugin for adguard or some ad blocking service?

I assume since that was an unbound list it was suitable but will try your suggestion later. I too don't see errors but it is coming up with that message I posted. The other odd things is I can't check for updates and or plugins page. I even ran a factory reset.

Hi, no 10Gb here. Thank you for the help.

[URLs of Blocklists"]

Any BL that I try to apply, I get the following:
Error updating blocklistsAn error occurred during script execution. Check the logs for details
When I go to the logs:See attachment
It SEEMS as though ads are being blocked but can't 100% tell.
I've also tried adding https://unbound.oisd.nl/nsfw/ to the " URLs of Blocklists" field to block that content which does not work. Of note, get the same error when trying to save  and apply.

I recommend PiHole. :)

I use it but want to ditch it. I am trying to reduce the amount of devices that I have running.

I'm looking at either one of these models and am wondering what the inter-vlan routing speeds are?