DNS-based AdBlock for OpenWRT

There doesn’t seem to be a package yet for my current OpenWRT AP/router, but I hope this will be easily available for Turris Omnia

1 Like

This will be a little bit tricky since Omnia uses Unbound as teh DNSSEC-validating DNS resolver. The package you mentioned would therefore need some porting to work with Unbound instead of dnsamsq.

2 Likes

But you can use this (its in Czech, but translate google can help you)
https://www.turris.cz/forum/topic_show.pl?tid=388

Will this be ported and supported for Turris Omnia? It sounds like a useful feature for the router to have.

Is this still true?
Seems like mine is running dnsmasq:

    Mem: 154320K used, 1916448K free, 4624K shrd, 2552K buff, 55728K cached
    CPU:   0% usr   0% sys   0% nic  99% idle   0% io   0% irq   0% sirq
    Load average: 0.00 0.04 0.05 3/105 21939
      PID  PPID USER     STAT   VSZ %VSZ %CPU COMMAND
    20710  2766 root     S     8600   0%   0% /usr/bin/nuci
    21801  6758 root     R     1100   0%   0% top
     9620     2 root     SW       0   0%   0% [kworker/0:1]
     2681     1 root     S    33616   2%   0% /usr/bin/kresd -c /tmp/kresd.config -
     2766  2765 root     S    17056   1%   0% python /usr/bin/foris -s flup
     1556     1 root     S    10688   1%   0% lcollect /tmp/lcollect
     1650  1649 root     S     7852   0%   0% /usr/sbin/syslog-ng
     1289     1 root     S     6372   0%   0% {sfpswitch.py} /usr/bin/python /usr/s
     2765     1 root     S     4848   0%   0% /usr/sbin/lighttpd -f /etc/lighttpd/l
     1649     1 root     S     4608   0%   0% {syslog-ng} supervising syslog-ng
     6755  1639 root     S     2864   0%   0% sshd: root@pts/0
     1639     1 root     S     2808   0%   0% /usr/sbin/sshd -f /var/etc/ssh/sshd_c
     2905     1 root     S     2736   0%   0% socat OPENSSL-LISTEN:6513,fork,method
    19613     1 nobody   S     2628   0%   0% /usr/sbin/dnsmasq -C /var/etc/dnsmasq
     5377     1 root     S     2060   0%   0% /usr/sbin/hostapd -P /var/run/wifi-ph
     3474     1 root     S     2060   0%   0% /usr/sbin/hostapd -P /var/run/wifi-ph
     1230     1 root     S     1888   0%   0% /sbin/rpcd
     1310     1 root     S     1528   0%   0% /sbin/netifd
        1     0 root     S     1348   0%   0% /sbin/procd
      495     1 root     S     1112   0%   0% /usr/sbin/odhcpd

Seems like adblock in omnia repository is now over a year old though (1.3.3 vs. 2.8.3)
I had to install uhttpd, kmod-ipt-nat6, wget to be able to start the service (and luci-app-adblock for LuCI integration).

Wouldn’t it make sense to support this officially to e.g. block known phishing sites etc.?

dnsmasq still runs in the default Omnia config as the DHCP server.

Insights are in /etc/config, notably /etc/config/resolver and /etc/config/dhcp. The former uses kresd, the latter dnsmasq.

To clarify the default DNS resolver again: Turris 1.x uses unbound, Omnia uses kresd (knot-resolver).