How do u block ads...

KS1

using Vanadium? I had GOS - Private DNS: set to Custom, using Mullvad:
base.dns.mullvad.net. It worked good, but today I couldnt connect to website & saw a DNS error message. So I set it back to Automatic in Settings/Network and on Vanadium. Now it connects to websites, but with ads.
So what do you all do to block ads? Custom DNS, different browser, or ad blocking app? Or do you just have patience with the occasional connection error?

User2288

KS1 People seem to occasionally have disconnection problems when using custom dns for some reason. But this usually can be fixed by turning the dns off and on again and forcing a refresh.

Your other option is, if you are not using a vpn, to use a firewall app that blocks ads. There are a few out there.

If you use a vpn just use the vpn's adblocking.

Outside of vanadium, your other option is brave which provides builtin adblocking. Mull is also a firefox based option.

Dude

KS1 set your dns to audguard

[deleted]

Vanadium does not include adblocking (yet). I use Proton VPN and it works great.

KS1

[deleted]
Ok, Im gonna try that. Do I need to upgrade to paid Proton?

KS1

User2288
I will try toggling on/off if these other options dont work for me. Thank you.
Yeah, on my laptop Im using Mullvad browser w/ adblocker extension. Works perfect. Did you find a Mullvad mobile Android app yet?

greendesk

I use NextDNS and it's been great so far.

KS1

greendesk
Is NextDNS a paid subscription? Ive heard good things.

[deleted]

KS1 https://protonvpn.com/free-vpn

User2288

KS1 mullvad has the vpn app, but the browser i believe is not available yet for android.

greendesk

KS1 so far I haven't come close to hitting the max requests of the free tier.

bursucelu

nextdns for me too

KS1

For setting up NextDNS: are you all entering that into GOS Settings/Network....or....entering it in Vanadium Settings, or both?

greendesk

KS1 just gos network private dns setting

[deleted]

User2288 the browser i believe is not available yet for android.

Correct. The Mullvad Browser is not available on smartphones.

https://mullvad.net/en/help/tag/mullvad-browser/

Themble

greendesk Same here. I mostly use Adguard-DNS since it seems the most stable service to me. But every now and then I try others such as DNSForge, BlahDNS or Mullvad DNS. However, they don't seem to be as reliable as Adguard.

KS1

greendesk
Thanks. Im gonna test mullvad DNS just entered on GOS/Network. Turned browser DNS to Off.

lcalamar

So a big YES to NextDNS - I direct all my home traffic to NextDNS on my OPNSENSE router. On my phone I have NextDNS setup for all my traffic when I am not at home. (private DNS setting).

VPN by itself doesn't do much for me regarding ad-blocking. VPN doesn't really do much to hide who you are or what device or provide nearly as much 'privacy' as we are lead to believe (that's a separate topic so if you disagree that's fine but let's not get into it here!).

I use the MULL browser and have 'hardened it a bit' but mostly MULL lets' me install browser add-ons so I use U-Block Origin and that helps a lot.

KS1

lcalamar
"I have NextDNS setup for all my traffic when I am not at home. (private DNS setting)."
Im gonna test that next. Thank you.

And same for me at home. Mull with uBlock origin✌

[deleted]

KS1 Why are you turning browser DNS off? Leave it on the default option and it will use your systems DNS.

If you're looking for a good DNS service then use NextDNS, it has multiple benefits outside of just blocking ads. Run a VPN and use Private DNS settings and link it to Next DNS. Not only are you going to be able to block ads with custom blocklists, but you can use it to identify and block application and system telemetry. Use a hardened Brave, Mozilla, etc browser and you'll be good to go.

If you already use a VPN, without an additional DNS provider, then your VPN provider is processing your DNS queries, which theres nothing wrong with that, you just won't have as much customization as you will with next. If you're using neither a VPN nor third party DNS provider, your ISP is handling your DNS queries. Using NextDNS as a Private DNS host (on top of a VPN), allows you to do the aforementioned ^ and you'll still have the benefits of using the VPN (geolocation spoofing, encrypted traffic, etc).

KS1

[deleted]
I turned it off on browser because I thought it might be overkill. It wouldnt connect to websites. But I turned it back on to "Automatic"/Use current. Im still testing mullvad dns. Thanks for all the suggestions, Im trying NextDNS after Mullvad.

[deleted]

KS1 I don't think you're looking at DNS correctly.

DNS is the system that translates URL's into IP addresses so that your device can connect to sites. Computers speak robot, so they understand IP address and not URL's. Humans are not good at remembering IP address, so we use URL's. When you type www.grapheneos.org into a browser search bar the browser "can't understand" (in simple terms) this to connect, it then goes through a 4 step process, changing it into an IP address and then connecting you to the site.

Option 1. If you are using default DNS browser settings (in most browsers) and no custom DNS provider and no VPN then your DNS queries (the translation of URL's into IP addresses) are being handled by your internet service provider.

Option 2. If you are using default DNS browser settings and no custom DNS provider and you ARE using a VPN, then your DNS queries are being handled by the VPN, additionally your traffic is being encrypted by the VPN, and your location is being spoofed. This also means that whatever DNS filters that your VPN provider implements are in effect and are activley filtering things (such as ad blockers, possible malicious sites, trackers, etc).

Option 3. If you are using default DNS browser settings AND a custom DNS provider (like NextDNS) AND a VPN, Then NextDNS is filtering your DNS queries, and the VPN is encrypting your traffic and spoofing your location, but is no longer handleing DNS queries (sometimes these two can conflict, but I have yet to have that issue on GOS). Since NextDNS is now handling the DNS queries, whatever filters you have chosen to add are actively filtering. In addition to this, you can enabling logging and open apps on the phone and see telemetry (connections being made in the background from apps) and block connections that you don't want (usually analytics, that by being blocked will not effect the app from a user perspective). When added to the blocklist, when you open and use the apps in the future they will no longer send off telemetry infomation, this is the biggest perk of using NextDNS is that you can analyze almost all connections leaving the device and block what you don't want.

Changing the DNS in the browser settings will only change who handles the DNS queries, you'll want to keep it on the default setting (which is normally automatic) so that it will use the DNS handler of your system (depending on the option you choose that I listed above). It is not overkill, this is how DNS works.

When things break (sites won't load), there are multiple things you'll have to look at. It could be a blocklist you've chosen to add in your DNS settings, it could be from "over hardening" the browser (putting things such as cookies/fingerprinting settings on strict), HTTPS only settings, if you disabled java script, etc. If you are using brave, the easiest way to test this is by turning shields off and refreshing, if it fixes your issue, then you know it was the browser settings. If it doesn't, turn shields back on and switch your Private DNS to "automatic" (if you're using a VPN, your VPN will be handling DNS queries, if not then it will be your ISP), refresh and if it fixes it then you know it was a blocklist or particular blocked domain you've added. If you do use NextDNS and choose to block app telemetry then know that a domain you add to a blocklist to block telemetry may also break other sites if they happen to need that domain, so you'll have to play around with it.

There is an additional option on some browsers (such as firefox) where you can make the browser use it's own DNS independent from the system DNS, but I believe that to be uncessary and defeating the purpose of using custom DNS. In this scenario your system (apps, etc) would be using the DNS handler of your choosing (your ISP, your VPN, or NextDNS) and the browser would be using it's own DNS handler (firefox for example allows you to use public NextDNS servers for this), but you would be losing all your custom filtering.

I recommend option 3, it seems to be the most hardened (you will rarely if at all get ads), but you will break more shit.

cheers.