this post was submitted on 01 Aug 2023
126 points (91.4% liked)
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
54424 readers
372 users here now
⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.
Rules • Full Version
1. Posts must be related to the discussion of digital piracy
2. Don't request invites, trade, sell, or self-promote
3. Don't request or link to specific pirated titles, including DMs
4. Don't submit low-quality posts, be entitled, or harass others
Loot, Pillage, & Plunder
📜 c/Piracy Wiki (Community Edition):
💰 Please help cover server costs.
 |
 |
|---|---|
| Ko-fi | Liberapay |
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Pihole for network wide ad blocking (no ads on all apps on all devices within the LAN) then self-host a vpn to keep your phone within that lan.
Tis what I do at least.
Blocks pretty much everything except Youtube, and Twitchs video ads as they serve their own ads from their own domain's as well as things like sponsored posts on reddit/twitter/facebook.
Don't watch much Twitch, Youtube (re)Vanced is a thing, and Twitter/FB/Reddit can all die in a fire. So none of those are issues for me either.
This is exactly how I've been doing it. Pihole + Wireguard. Set your pihole device as your DNS on everything ya want. It's shocking how much crap tries phoning home. Especially smart TV's and streaming sticks(Roku ex).
I went one further and defined my pihole as the DNS IP that the dhcp server hands out; then set iptables rules on the router to block all external dns access except for the pihole.
If you're on my LAN, you must use the LAN DNS server, or you will not get DNS resolved at all. Enforcing ad and telemetry blocking network wide.
How often do you run into issues with certain sites (stuff like banking or Netflix) not liking the blockage? I'm considering doing this bit the WAF needs to be high and not cause her grief or block her from accessing specific stuff.
I've had 0 issues with things I want to access being blocked, but if you do want to access a blocked site you can add it to the whitelist via piholes web interface in about 30 seconds (manually or just finding it in the history and clicking 'whitelist') or you can disable blocking entirely for 5sec/30sec/5min/indefinitely with 2 clicks (or a custom time).
I considered doing exactly that, but I was afraid of the battery usage, with wireguard always on... Do you have any feedback on that part ?
Hosting a vpn also gives me secure remote access to my various self-hosted services like Radarr/Sonarr/SABnzbd/qbit/etc, without directly exposing them to the open internet.
This, but I personally use Adguard Home + Unbound instead of Pi-Hole + Unbound. Adguard Hone also open source, but it runs as a single service instead of 2. You can easily update it from the web interface when there's a new release, which makes things easier.
Upon re-read I realized you'd like to use a comercial vpn as well (for bypassing restrictions in your country).
You can setup your self-hosted vpn to work in tandem: Your phone stays connected to your own vpn keeping it part of your home LAN, then you setup the device hosting that VPN to also connect to a comercial VPN, routing all LAN traffic headed to WAN to instead go over that comercial vpn escaping the restrictions in your country.
Tailscale ftw!
I use tailscale as a mullvad client. Really happy with both.