DNS-based AdBlock for OpenWRT

Paul_Totterman · February 22, 2016, 9:38am

There doesn’t seem to be a package yet for my current OpenWRT AP/router, but I hope this will be easily available for Turris Omnia

Ondrej_Caletka · February 22, 2016, 12:38pm

This will be a little bit tricky since Omnia uses Unbound as teh DNSSEC-validating DNS resolver. The package you mentioned would therefore need some porting to work with Unbound instead of dnsamsq.

Pepe · February 22, 2016, 4:06pm

But you can use this (its in Czech, but translate google can help you)
https://www.turris.cz/forum/topic_show.pl?tid=388

thanders · October 13, 2016, 3:06pm

Will this be ported and supported for Turris Omnia? It sounds like a useful feature for the router to have.

spike411 · July 23, 2017, 7:56pm

Is this still true?
Seems like mine is running dnsmasq:

    Mem: 154320K used, 1916448K free, 4624K shrd, 2552K buff, 55728K cached
    CPU:   0% usr   0% sys   0% nic  99% idle   0% io   0% irq   0% sirq
    Load average: 0.00 0.04 0.05 3/105 21939
      PID  PPID USER     STAT   VSZ %VSZ %CPU COMMAND
    20710  2766 root     S     8600   0%   0% /usr/bin/nuci
    21801  6758 root     R     1100   0%   0% top
     9620     2 root     SW       0   0%   0% [kworker/0:1]
     2681     1 root     S    33616   2%   0% /usr/bin/kresd -c /tmp/kresd.config -
     2766  2765 root     S    17056   1%   0% python /usr/bin/foris -s flup
     1556     1 root     S    10688   1%   0% lcollect /tmp/lcollect
     1650  1649 root     S     7852   0%   0% /usr/sbin/syslog-ng
     1289     1 root     S     6372   0%   0% {sfpswitch.py} /usr/bin/python /usr/s
     2765     1 root     S     4848   0%   0% /usr/sbin/lighttpd -f /etc/lighttpd/l
     1649     1 root     S     4608   0%   0% {syslog-ng} supervising syslog-ng
     6755  1639 root     S     2864   0%   0% sshd: root@pts/0
     1639     1 root     S     2808   0%   0% /usr/sbin/sshd -f /var/etc/ssh/sshd_c
     2905     1 root     S     2736   0%   0% socat OPENSSL-LISTEN:6513,fork,method
    19613     1 nobody   S     2628   0%   0% /usr/sbin/dnsmasq -C /var/etc/dnsmasq
     5377     1 root     S     2060   0%   0% /usr/sbin/hostapd -P /var/run/wifi-ph
     3474     1 root     S     2060   0%   0% /usr/sbin/hostapd -P /var/run/wifi-ph
     1230     1 root     S     1888   0%   0% /sbin/rpcd
     1310     1 root     S     1528   0%   0% /sbin/netifd
        1     0 root     S     1348   0%   0% /sbin/procd
      495     1 root     S     1112   0%   0% /usr/sbin/odhcpd

Seems like adblock in omnia repository is now over a year old though (1.3.3 vs. 2.8.3)
I had to install uhttpd, kmod-ipt-nat6, wget to be able to start the service (and luci-app-adblock for LuCI integration).

Wouldn’t it make sense to support this officially to e.g. block known phishing sites etc.?

Bernd_Wechner · July 23, 2017, 9:58pm

dnsmasq still runs in the default Omnia config as the DHCP server.

Insights are in /etc/config, notably /etc/config/resolver and /etc/config/dhcp. The former uses kresd, the latter dnsmasq.

vcunat · July 24, 2017, 12:47pm

To clarify the default DNS resolver again: Turris 1.x uses unbound, Omnia uses kresd (knot-resolver).