Monday, February 3, 2025
Latest:
DNS Server linuxLinux serverNETWORK ADMINISTRATIONS

Setup a DNS server with automatic Ad Blocking!

Setup an recursive DNS caching server and block annoying ads! Then have your entire network use this as the DNS server for all devices by default!

Install Pi-hole
sudo curl -sSL https://install.pi-hole.net | bash

Change pi-hole password
pihole -a -p [password or blank]

Install Unbound DNS Resolver
sudo apt-get install unbound

Create and edit the pi-hole config file for Unbound
sudo nano /etc/unbound/unbound.conf.d/pi-hole.conf

Copy the example from pi-hole website:
https://docs.pi-hole.net/guides/dns/unbound/

Restart Unbound
sudo systemctl restart unbound

Ad Lists I use:
https://adaway.org/hosts.txt
https://v.firebog.net/hosts/static/w3kbl.txt
https://v.firebog.net/hosts/Easyprivacy.txt
https://github.com/silv3rr/pihole-scripts/blob/master/pihole-whitelist.txt

Update Gravity after you install new lists.

Update router or computer DNS to use your new piholes!

source

by FE-Engineer

linux dns server

You May Also Like

Cara Mengganti Timezone di CentOS Stream 8

Sending Email with HTML body/content in C# Asp.Net Core 5.0 MVC using SMTP server

How to use AWS SES to track user comments on your web site

12 thoughts on “Setup a DNS server with automatic Ad Blocking!

  • Hello, could you please explain a bit more specifically how to configure the FQDN? so instead of displaying an ip adress a "friendly name" ? thx 🙂

  • just amazing. cheers mate. Very cool and step by step tutorial

  • i've been trying to figure out how to do this, but with a modification, seems to be possible, but would require someone with a financial stake in figuring it out.

  • Real Gangstas run unbound with hagezi blocklist and oisd with root.hints

  • its shit i did it with 300k ad blocks defualt then 1.1 mill stil got threw then, you have issues you cant access normal websites

  • If I setup a DNS server, how does it get the ip addresses?

  • if unbound is doing the DNS lookups, does that mean pi-hole does not need internet access?
    other than looking for updates & updating the ad blocker list.

  • 5. how to secure unbound to make sure it's the only one that can use port 53?
    6. how does one block all ports incoming and outgoing? but allows the ports that are needed but only to the apps we trust.

  • 1. How to make this setup very secure?
    2. How to make my dns request also secure?
    3. How to make unbound use DNSSEC?
    4. How to use DNS-over-TLS or HTTPS/3 or QUIC?

Comments are closed.