WukZarathustra

smx73
Thank you smx73. I had the same problem. Fortunately it worked.

I have now installed GrapheneOS 😀. The procedure with Stelter or Island is probably only possible if you can't simply add a business account. That's why I'm wondering if I have to do the trick with 2 VPN accounts at all with Stelter and Iceland. In principle, Iceland only simulates another user account. Netguard only has to access the 2nd account via socks5. Then Netguard would continue to block in the main account and in the 2nd account, not block but enable a 2nd VPN. I hope you understand what I mean. Otherwise, please see the instructions above.

DivestOS does not support Google Play services, microG or Sandboxed Play Services (as with GrapheneOS). However, I should have used it.

Thank you for the detailed information. I am also aware of the safety aspect. I just wanted to know if it is theoretically possible with the official builder. There used to be a version for the Pixel (1) XL Marlin. But it is without security updates.
I'm not throwing away the old smartphones. I still install custom roms on them. And with the Pixel XL Marlin, there's probably only LineageOS officially available. At least I don't know of any custom rom that is more secure than LineageOS. And an up-to-date LineageOS would still be more secure than an outdated GraphenOS. I haven't built one myself yet either. But would it be theoretically possible?

Hello, I don't know if it sounds stupid. My English is not so good. But can you build a Pixel XL Marlin a GraphenOS following the instructions "https://grapheneos.org/build"? I know that the hardware is old and there are no security updates for it. But they are still available for Android. At least I would prefer Graphenos. Or even Samsung Galaxy Note 10 Plus. Thanks in advance.

Thanks for the answers. Good that the network traffic can already be cancelled during installation.

I only used the business account with 2nd vpn for security. If there is a reasonable network blocking, I could just use my Fritzbox app. Then I can go with mobile data and foreign WLAN via the pi-hole at home. I think that would be enough.

UpStream

Well, I generally block everything first. Does the in-built function block first and only release the network when authorised? If the network traffic is blocked after installation, then it would be ok. But if I can only block it afterwards, it would be unfavourable for me. I want to use the Google Play Store. I don't want to give Internet access to apps that don't actually need it.

Netguard also blocks adverts and malware.

If the built-in function works well, I could also use the Fritzbox app via VPN. Then I could use my pi- hole at home with mobile data or in foreign WLAN networks. I don't need the Netguard ad blocker in the WLAN at home.
Or is there even a filter function in Graphenos where I can enter host files like firebog?

I use the Netguard by Firewall from GitHub on another smartphone. Now I want to switch to GraphenOS.
I had Netguard and another vpn running in the business account.
The instructions from here https://itsignacioportal.github.io/netguard-pdnsf-any-vpn-combo/
I realised this with Island. I used it with Firefox nightly in foreign networks.

Is there a way to use this in GraphenOS as well. Or is there even a much better option that uses less battery power? Many thanks in advance.

I came to you via the kuketz-blog. The blog praised GraphenOS, as did several others in the neighbourhood. I have now read the article again. It also says that network traffic can be restricted for an app. I have always wished that there was some kind of firewall in the stock or custom roms.

Thank you for your answers. My native language is German. Sorry for my bad English and your understanding. I'll make short sentences now. I use Netguard firewall from GitHub. i would continue to use it in Graphenos.
Sometimes Netguard went down for a short time. You don't always notice it straight away. That's why I'm asking whether additional blocking is possible without root.
I have heard that a VPN firewall does not always block all network traffic. There are supposed to be small gaps. At least this has been recorded by users. But that was a few years ago.

The other question related to the Google photo storage. I'm currently testing PixelOS on a Samsung Galaxy Note 10 Plus. The free unlimited photo storage is active there, as with the original stock.

But that would just be a bonus. I'm determined to buy a Pixel smartphone and run GraphenOS on it. I hope that the apps that require Google services will run on it. The most important apps would be WhatsApp and the DKB banking app. Unfortunately, I need WhatsApp for other parents who only use WhatsApp.
I also like reading Mike kuketz. Many thanks for your help and answers.

Titan_M2
Sorry if my English is not so good. The beginning of the question has strangely disappeared. I'll try to answer it without naming names. I use a good VPN firewall from GitHub/f-Droid. Now VPN also has gaps and the app can also fail at short notice. In this case, it would be nice if I could prohibit WLAN or mobile data from an app via the operating system.

The last question above is about the fact that with Pixel smartphones or Pixel Custom Rom, the photos in Google storage are not counted and therefore have unlimited photo storage. Now Graphenos is completely different, it is still a Pixel smartphone, but not a Pixel-like operating system. That's why I don't think it's there.

One last question relates to the unlimited Google storage for photos. Is this the same with Grapheneos as with PixelOS?
I know it misses the mark and is less privacy friendly, but I still want to use Google. I still think GraphenOS is the most secure and privacy-friendly Custom Rom.