What is Reddit's opinion of
NextDNS?
From 3.5 billion Reddit comments
➔ NextDNS website
By popularity on Reddit, this Service is:
100 reviews of this app found across Reddit:
Quick and easy solution to prevent this is to:
- set up an account at https://nextdns.io/ (no affiliation to me, I have a samsung tv and did this)
- Go to the "Privacy" tab and under "Native Tracking Protection" choose "Samsung"
​
Now you'll not get these shitty ads on your tv.
IMO: use something to block urls on your shield... be it a pihole, your router or via dns filter rules.. then block this:
*.androidtvwatsonfe-pa.googleapis.com
Clear cache/data for Android TV and you'll get the generic Youtube and Google Play Store ad to cycle indefinitely.
I use Nextdns.io which has the ability to create a "denylist".. then I use the nextdns app on my shield which forces all the dns traffic thru nextdns.io and thus blocks the above url. Has worked since google enabled the new UI flag.
Give https://nextdns.io/ a try. System wide configurable ad blocking, and it uses the iOS built in DNS provider feature.
Very short explanation: your DNS requests go through NextDNS, when your phone requests an ad ("I'd like to load nastyad.adserver.scammyshit.com!") NextDNS replies with "sorry that page doesn't exist okbye!"
DNS-based adblockers, they work system-wide. I use NextDNS https://nextdns.io/. All you have to do is change your DNS in your WiFi settings and then link your IP address on their website. You can also download the app if you want it to work on cellular data too, it’ll install a VPN profile. Last time I checked, they had 78 ad filter lists to choose from. Don’t enable all of them though unless you want a lot of false-positives and have to spend some time looking through the logs to figure out what domains you don’t want to block and whitelisting them. If the filter lists that you chose don’t block ads on Twitch, just manually blacklist cdn-a.amazon-adsystem.com. That worked for me.
OpenDNS lo eviterei come la peste per la loro politica di logging aggressivo.Volendo c'è https://nextdns.io/ che fa circa quello che fa PiHole e, la versione base, è pure gratuita e sta in cloud. C'è da dire che io per privacy mi tengo pihole che punta ad un'istanza di dnscrypt locale, così manco il mio ISP sa che domini sto cercando
NextDNS is founded by Director Engineering of Netflix and Ex-CTO of DailyMotion.
Their privacy policy is here: https://nextdns.io/privacy
They are listed on: https://www.privacytools.io/#adblocking
The only limit is that the free plan is limited to 300k queries a month which is more than enough for me. They are very transparent about everything and I've been using since the early days (when there was no paid plan), no issue whatsoever.
Create your own profile via the Apple configurator, then use the native DNS function in iOS14 - all ads gone everywhere (well, everywhere I've needed them to be gone).
Before you remove adguard app, I would disable or pause it. Then you can try dns.adguard.com and see if it meets your expections. If it doesn't you'll still have adguard app on your phone. I use NextDNS, here's the link if you're interested. https://nextdns.io
I used to use dns.adguard.com, but it breaks deal site links such as Slickdeals. I switched to nextdns.io which you can customize to allow deal sites to work.
Personally, I use NextDNS for that.
I have a Windows DNS server proxying to their servers, but you can also have your FortiGate connect directly there. You can set and unset anti-ad, privacy etc. blacklists in your account.
See nextdns.io
You can block ads and trackers in your browsers and apps without installing any application. On Android 9 and above, You just have to go to :
Settings - > Wifi & Internet - > Private DNS
Select "Private DNS provider hostname" and type
dns.adguard.com or p2.freedns.controld.com or
dot-de.blahdns.com You should also check out https://NextDNS.io, which allows customized blocklists
You could try NextDNS its a DNS server that allows you to many block lists into place including a no google list. Or a even better option make a pihole with custom block list.
Here is a comparison list of telemetry blockers for Windows 10 (yes 10 I can't seem to find any for 7. Maybe one will work)
Good guide by Techlore (yes its win10 again but somethings still apply to 7)
best use an adblocking dns server blocks ads inside the apps too.
go to settings search for private dns> designated dns/custon dns
Here are a few to test out
controld.com (most strict blocks more ads but may break a few apps/websites)
Running your own DNS server is the most secure option if you feel capable of securing your own DNS, but if not, I'm using NextDNS.io currently, which has a stellar privacy policy and an incredible host of privacy features including lots of tracking blockers.
Would you like to try using a private DNS adblock for Zedge?
You can use either dns.adguard.com or https://nextdns.io/
​
On Android version 9+, you can configure Private DNS as follows:
Open Android «Settings» -> «Network & Internet» -> «Advanced» -> Select the «Private DNS» section.
You don't have any network-wide ad blocker running like a Pi-hole or an ad-blocking dns like AdGuard DNS or nextdns.io do you?
And if you can’t/don’t want to run it yourself, you could use NextDNS which will do the same thing for a trivial cost.
I’ve been using it myself for about 4 months and highly recommend it.
Two options:
- Use a free supported DDNS-service and use the hostname you've created in your https://my.nextdns.io dashboard. It will check the associated IP once every minute and correct if necessairy. I use Asus free DDNS-server as I'm running NextDNS CLI Client on my router.
- Below the DDNS settings is an advanced option (collapsed by default) containing a unique address to your profile. Once that's being called, your IP is updated as well. You just have to create something that requests that address (in the background) every x minutes. How to do that is entirely on the OS you're running and whether you're running NextDNS on a client or on a router etc.
Set Trackers & ads blocking to Aggressive and Fingerprinting blocking to Strict in the global shield defaults, that should do the trick.
Moreover, you can change your DNS servers to https://nextdns.io, which allows you to block even more shady stuff.
NextDNS allow to choose from a curated selection of blocklists (covering ads, tracking, malware, annoyances), and create different profiles to apply different blocking and other settings to different devices. You can try their service out for free, without even needing an account, at https://nextdns.io/
You can block ads and trackers in your browsers and apps without installing any application. On Android 9 and above, You just have to go to :
Settings - > Wifi & Internet - > Private DNS
Select "Private DNS provider hostname" and type
dns.adguard.com or p2.freedns.controld.com or
dot-de.blahdns.com You should also check out https://NextDNS.io, which allows customized blocklists
I’m personally a big fan of https://nextdns.io.
It’s not a Safari ad blocker app, but it’s a DNS you can easily set on a system level and then apply ad block lists (and other blocking lists) to. So it works for all ads in all apps, sites etc.
So if any app makes a request to retrieve an ad or a tracking script, NextDNS will say: “sorry, that page doesn’t exist!” and the ad or script cannot load.
It’s $20/year and it works everywhere (iOS, Mac, Windows, you can set it on your router so all devices in your home are going through it etc.)
Not all routers can do it - just depends!
Personally, I use nextdns.io on my phone - that way it works when out and about too. Then AGH just deals with everything else on my network.
There are a lot of apps to block system wide ads, but if you want to block ads while using your desired VPN you can try using a private DNS like NextDNS. Can't guarantee though but worth a try
If you're using Android 9 (Pie) or newer your best option is a private DNS
Go to Settings > Network & Internet > Advanced > Private DNS.
You also need to make a flag change in Chrome
Open chrome://flags/ in chrome browser
Search for DNS
Disable Async DNS resolver
For a DNS resolver I'm currently using https://nextdns.io/ and it seems to be working pretty well at blocking ads except for YouTube.
Basically, using NextDNS you can create an account, which has a dashboard where you can add filterlists. They have their own, but there are many more (AdGuard DNS among them). So when you use NextDNS with your configuration profile it acts as encrypted DNS while also filtering requests depending on how you setup your account.
Create an account on https://my.nextdns.io/ and it will honestly explain everything to you.
Or check out https://nextdns.io/ for general info. They have an FAQ and stuff. Should answer all your questions.
Also, it doesn't charge any battery as far as I'm aware. VPN might, but not much more either. It looks that way, because the battery drain from network requests and stuff (incl. other apps) gets attributed to the VPN app, but it's actually just normally draining, as far as I know.
But it's your call. In any case, definitely no reason not to use NextDNS (or another encrypted DNS provider, I just happen to like them a lot).
" 1 When exceeding the free monthly quota, NextDNS will continue to answer DNS queries like a classic non-blocking DNS service. "
Quote from https://nextdns.io/pricing
NextDNS will give you system wide ad blocking on iOS. The service also works on your router covering all your devices, so between them you can use it home and away. It has the features of a pi-hole but doesn’t need any setup up (or a pi).
I am experimenting with using NextDNS (affiliate link). It works pretty well, and has easy configuration... you set your router to use their DNS servers or you can run their DoH proxy. It’s not totally free though: You get 300k free DNS lookups per month and then have to pay ($20/year). I’m trying to decide if it’s worth it, over administering my own server.
AdGuard DNS doesn't log details about the user (like IP address), but it does log some things. In particular, it logs:
- performance metrics
- how many times trackers have been blocked (so they can remove rules that never get used due to being outdated)
- Requested domains (for 24 hours) to identify and block new trackers
It's still very much a decent option as an adblocking DNS.
Another one to consider is NextDNS. It has some free usage, but the paid plan is also very cheap. It's like having a Pi-Hole as a service.
The website says that the free tier has a cap of 300,000 queries a month before they stop filtering and function as a normal DNS server.
If all you're using it for is secure DNS, I doubt that the filtering will ever matter.
>without Ublock Origin
Forsooth!
With customizable adblocking and DoT & DoH support try NextDNS.io ;) for those oops moments or [LTE] devices with lackluster support for adblocking.
The best you can do is look at a privacy focused DNS provider I use NextDNS https://nextdns.io/?from=mzn3j64c specifically for the IOT devices at home that I struggle to control but it’s a cheap offering and pretty easy to use - I can’t offer any more use than that other than maybe the next time you replace your phone keep your old one as a fake identity but … that’s more a fist in the air than actionable outcome
I’ve gone one step further and set up a NextDNS config with the No Facebook adlist to block any Facebook related connection, except for GIPHY.
I’ve configured all my devices to use this nextdns config so I’m a bit more confident that I’m just not feeding them any data. Of course, we all know they’re much more sneakier than that, but this assures me I’m safe of the most common approaches.
I use NextDNS to block all ads and trackers on all devices on my home network. No need to install browser plugins and it works great at blocking annoying TV ads too… looking at you Samsung.
NextDNS.io . A private DNS for computers/mobiles that bypasses the internet restrictions over there without the need for a VPN, plus acts as an ad/tracker-blocker. And it works for all apps, not just websites.
Not involved with the project, but Pi-hole is clearly the leader in the field when it comes to something you run on a device at your home and have control over. It has been around since 2015 and is robust and mature.
Other DNS-based blocking remote services exist e.g. nextdns but are fundamentally different in the way you configure them and are on other people's servers. Pi-hole gives you much more control... and is more fun (imho).
NextDNS is a DNS service provider that points domain (website url) to its IP address. During the pointing process it can block specific IPs (e.g. tiktok, google ads, etc.) and block them. (Useful Article). It also has Parental Control to block certain Apps and enforce Safe Google & YouTube Search.
Just create an account in nextdns.io and the Setup Guide inside is hopefully understandable.
You would need to set bootstap IPs with 45.90.28.0 and 45.90.30.0 (considering the client support it) but you would lose the benefit of ultra low latency steering.
An alternative is to use NextDNS CLI (https://nextdns.io/cli), it will make sure everything is encrypted while still benefiting from ultra low latency.
Sorry my mistake. I've just looked further as I haven't used just the pure ADGuard DNS and thought it could be configured like the clients can, but it looks like it can't. This would cause me problems as I have sites that won't let me complete a checkout without whitelisting the site (Tesco for instance).
Depending on how many requests you make a month (if you don't want to pay), you could try NextDNS.io. If you have a fixed IP or setup a dynamic DNS, then you can create a configuration and set custom filters and more importantly, whitelist URLs in the interface. It is free for the first 300000 requests a month. After this is resolves the address but doesn't block. There is a paid account available too for around £18 a year, which has unlimited requests. You can get an idea of how many requests you make by signing up for a free account and monitoring the analytics page - this tells you how many requests in the previous 30 days. It is possible you will be under the 300000 limit.
I am sure there are other similar DNS resolvers but haven't used them.
I mean, I’m a serious gadget geek. Like, I was a professional photographer for years and now I build, install and admin networks for a living, and I was impressed with their mesh system. I suppose you’d want to take special precautions regarding privacy with their products, but generally opting out of their privacy notices and switching a DNS provider to a privacy focused solution like https://NextDNS.io is enough to thwart privacy concerns for a general user.
As far as router firmware/software goes, have you tried pfSense? It’s a really elegant and robust solution for the power user… and my preferred solution for SOHO deployment.
For your roku you can change it’s DNS settings (in network options) to point to NextDNS or AdGuard servers. Make a free account on either of them (NextDNS is nicer imo) and point your roku to use their DNS servers instead of the default and enjoy the ad free experience :)
An ad blocker extension is really also an essential now a days, so many sites have intrusive ads.
My experience was they block port 53 so regular DNS did not work however DNS over https did and they use DNS over TLS for their blocking solution. I ended up going with nextdns.io for more control and features in the end.
No need for root for system adblocking.
You can add private dns in Connections > More connection settings > private dns
The 2 most popular dns' are:
- dns.adguard.com
- dns.nextdns.io
I personally use NextDNS.
You can customise filters & level of blocking by going to https://nextdns.io/, and creating account. It'll give you an ID and you put that at the start like yourid.dns.next.io
I'm using nextdns.io dns-over-https from the RT2600ac for the house, and have a profile installed on iPhones to get access to it outside of my house. Works great, a lot faster than what I used to do (RPi Pi-hole - cool devices but they're slow).
Nextdns.io filters typical ads out - not as effective as doing it in the browser but gets a good 85%+
I have to admit that NextDNS.IO reminds me a lot of when DNS Filter was like when it started - scrappy and cheap.
Their priceing seems to fit what we need though they don't have a MSP specific product - no additional logins for example.
If he's on the internet, regardless of parental controls, he will see things that are inappropriate. The most important thing is that he also has access to you for questions and reliable information.
This would also be a good time to tell him that porn is not like real sex. That information on the internet is not always reliable. That he can come to you if he has any questions.
Some ground rules and open communication may be enough.
If you decide that such a tool is really necessary, have a look at NextDNS. It's free and supports all devices. I use it myself because it can block ads too.
The parental controls look like this: https://i.imgur.com/rG2CYRM.png
I hope you can find a solution where you don't have to take away his phone.
There are some benefits, depending how you look at it.
- Control what you block by using what blocklists you want.
- Can add allowlists or allow certain domains.
- Can be used as a DHCP server if your router does not allow DNS changes.
- One less app on your devices.
Keep in mind DNS blocking is not the only solution, it will not block youtube ads, you would need something like ublock origin or simply purchase youtube premium.
I would say if you want a no expense option I would take a hard look at NextDNS and use there recommend list, this service can be used outside of the home also. You get up to 300,000 queries a month for free after that it just stops blocking but still works and will query whatever you want, it is also 20usd/year if you want unlimited. I have there premium and use this with remote users I manage and is a lot easier then me trying to VPN in or Anydesk in to fix an issue or whitelist something. https://nextdns.io/
> Just trying to figure out the best combo for adblocking/privacy
You should replace Google Chrome if you want more privacy.
> Is it safe to say ublock origin + privacy badger is the best route as far as extensions go for chrome?
You don't need Privacy Badger if you already have an ad blocker.
> I've also heard about privacy possum, is this better than badger?
You should not use Privacy Possum because the extension is not updated regularly, the last update was in 2019 (2 years ago).
> Quad9 as my DNS.
For your DNS, you should replace Quad9 by Adguard, NextDNS or Pi-Hole
I thought that, but I haven't changed anything for a couple of weeks and it only started yesterday 😞
I've tried adding nextdns.io into the allowlist too, but nothing changed sadly!
Lots of good advice in this thread! This particular reply (above) offers some good technical tools too. In the same vein as OpenDNS, I’d suggest checking out NextDNS (https://NextDNS.io) which offers a lot of capable blocking power, plus allows you to enforce safe search on common search engines and easily block social media. The only tricky thing with these DNS solutions is that it’s important to test them regularly to see that they’re working like you expect and to protect the network configuration you choose with a strong password. Good luck! It’s tough and you’re definitely not alone with these struggles.
I found links in your comment that were not hyperlinked:
I did the honors for you.
^delete ^| ^information ^| ^<3
I recommend using Private DNS (in Settings - Network & internet - Advanced) with NextDNS r/nextdns to block ads, trackers, and malicious sites. It's super simple and makes using the phone so much better.
It’s fake. Luckily you didn’t believe it at the end and didn’t went through whatever it wanted you to do.
I recommend using NextDNS on all your devices. It blocks nasty websites like this one, in addition to ads and trackers.
Good that you didn’t click anything. It’s fake but if you clicked, you could have fallen for giving away info and such stuff, but luckily you know it already.
I encourage you to setup NextDNS. Not only on your iPhone but also on your computer. It will block those scammy popups alongside other internet junk like ads and trackers. It doesn’t just work for Safari, but for the entire system.
I found links in your comment that were not hyperlinked:
I did the honors for you.
^delete ^| ^information ^| ^<3
Blokada certainly gives you more control than AdGuard DNS. Because Blokada is actively running during application use, it may block ads that a DNS might miss, but the difference should be negligible (I'm happy to be corrected here!)
You should be aware that, while AdGuard DNS doesn't log details about the user (like IP address), it does log some things. In particular, it logs:
- performance metrics
- how many times trackers have been blocked (so they can remove rules that never get used due to being outdated)
- Requested domains (for 24 hours) to identify and block new trackers
So your activity is temporarily tracked.
Another DNS option to consider is NextDNS. It has some free usage, but the paid plan is also very cheap. It's fast, and extremely configurable, and you can control what it logs (including setting it to log nothing). It's basically like having a Pi-Hole as a service.
I found links in your comment that were not hyperlinked:
I did the honors for you.
^delete ^| ^information ^| ^<3
I use NextDNS on all of my devices and I cannot imagine my life without it. It’s free up to 300 000 DNS queries per month. I use it on three devices and fit easily in this limit. It currently shows 139,031 / 300,000 queries this month. Even if you exceed that limit (which I doubt), it’s very cheap. Pricing details here.
This is the answer.
If you don’t have a local DNS server that allows making A records, I suggest using NextDNS as your external dns provider.
NextDNS allows making static A records that have internal IP addresses. Plus tons of other features, like encrypted DNS, filtering, add blocking, etc. You could setup their local DNS resolver in a container that will encrypt and send DNS over HTTPS to prevent ISP snooping on your DNS traffic.
AdGuard ça a l'air sérieux, mais c'est dur de savoir s'ils trackent des trucs. Y'a des solutions de DNS externes comme NextDNS mais pareil, t'es tributaire de leur bonne foi pour ne pas te tracker (même si ce genre de boite doit avoir des audits réguliers).
Sinon tu peux toi-même louer un serveur, faire un "Pi-hole" remote et y connecter ton smartphone, mais c'est plus compliqué et pas forcément aussi performant (car t'as "qu'un" serveur), mais là c'est toi qui gère.
If u use AFWall+ for Internet permissons GrapheneOS has that and with AdAway you can use dns.adguard.com as private DNS resolver and it will block DNS queries to example Ad servers but it isn't customizable but if you want customization you can use NextDNS
Did you check their faq and privacy policy ?
https://nextdns.io/faq#personal-data
https://nextdns.io/faq#dns-data
> When the service comes into contact with user data that shall not be logged, it is discarded as quickly as possible.
Yes thank you!
Another option if installing on a raspberry pi is too technical you can also check out nextdns (nextdns.io But if you can, pihole is the best thing that is easy to setup and a great addition to every home network!
I would not recommend it. It would split your filtering and logging in two places, making it difficult to debug false positives. You will also have to whitelist domains in each systems.
If what you miss is LAN device identification in your logs & analytics, replace pihole with our cli. It will do just that and much more.
It blocks any query with local IPs as answer. This blocks attempts to make you connect to your local-only devices from your computer.
---
From nextdns.io:
"Prevent attackers from taking control of your local devices through the Internet."
Wikipedia: https://en.wikipedia.org/wiki/DNS_rebinding
certificates get revoked by apple alllllll the time....my best advice is to use a DNS blocklist such as adguard DNS....or nextdns.io...you can add the apple revoke servers and it will stop the revokes....
​
Or....check out "NoThx app" or "Nesstool app" from google.....they are made by tutuapp or tweakbox (sorry cant remember which.....) they work as a VPN to block access to apple's revoke servers.....
Link is nextdns.
I'm quite intrigued by it personally - but they do say they'll need to monetise it at some point, and DNS queries can quickly stack up - understandable though. I've not actually tried it yet (I've been sticking with AdGuard for now), but I keep meaning to do a latency test.
I've not seen it get much traction on any of the privacy subs though, so I do wonder how long the service might survive, because they sit in the very niche middle-ground between simple options like AdGuard DNS, and more involved options like setting up your own PiHole
Might want to check into this, Very interesting setup, incorporates into unifi and looks way cool. I am trying it on my home sytem this weekend , before loading it at the business sites.
Since you're using Android 9 (Pie) or newer your best option is a private DNS
Go to Settings > Network & Internet > Advanced > Private DNS.
- You also need to make a flag change in Chrome
- Open chrome://flags/ in chrome browser
- Search for DNS
- Disable Async DNS resolver
For a DNS resolver I'm currently using https://nextdns.io/ and it seems to be working pretty well at blocking ads except for YouTube.
I used to have one, but I switched to nextdns.io and find it way easier to manage. The pi hole was just one more thing in my already long list of servers and apps running in Docker, etc that I have to maintain.
As I mentioned in a previous reply, Stadia doesn't seem to be exclusively communicating using IP addresses once it's achieved the necessary lookup. There are thousands of requests going from the machine where I was playing Stadia to google cloud IPs via dns lookups. I log all lookups in my nextdns.io configuration.
If the router was configured to bypass it's DNS cache for every lookup and there are a metric ton of lookups happening, it can only process so many at a single time therefore introducing latency.
Right, but Stadia doesn't seem to be communicating exclusively by IP address. I can see this because I use nextdns.io as my upstream DNS provider and it logs every single query that comes thru our network and when I look at the requests from the Shield or my computer where I was playing Stadia, there are a TON of requests flowing back/forth while you game. It's wild to see. So that forced fresh lookup was causing the system to bog and introduced latency as you said, yep.
Glossing over your not wanting to pay even once for a good app that helps you,
If you want to get rid of ads, you can use a dns that has filtering built in. I use NextDNS, it has 300k free queries a month (afterwords the filtering just stops till the next month) and supports a lot of tracking and ad blocking lists.
This blocks a lot of ads even on apps because they can’t connect to the ad server. It’s not hard to set up and also means your isp can’t look at your dns queries either.
I have the sub for it because i use it for all my devices now and it’s 20 a year. https://nextdns.io/?from=3gkkgcdk
Routerre feltettem a NextDNS-t (https://nextdns.io) majd Safarira / Chrome az Adguard böngésző pluginjét használom. De van egyébként alkalmazás is mindkettőből.
NextDNS-nek és az Adguardnak is van mobilos alkalmazása / profilja, így ott is reklámmentesen tudok böngészni.
Not related to email at all. There is something unusual about your wifi configuration settings. And it is not good. It is not a problem on your iPad, iPhone or computer -- but on the wireless router settings. You should not be adjusting your wi-fi settings on the router because some could mess something else. But something is definitely not right and needs attention.
A quick and easy way to fix this would be to try this: You can try installing the application for your iPad and iPhone called NextDNS. It is in the app store. But don't take my word for it alone: do some of your own research or get input from others. This may be the easiest way to take care of your problem.
+1 On this
It stopped blocking ads since today.
I am running it on raspberry pi and today morning it switched to the anycast IP. It was connected to ultralow before that. Looks like the problem started after that
Jan 25 06:27:56 raspi nextdns[582]: Connected 217.146.10.59:443 (con=6ms tls=19ms, TCP, TLS13)Jan 25 06:29:33 raspi nextdns[582]: Connected 217.146.10.59:443 (con=6ms tls=15ms, TCP, TLS13)Jan 25 06:31:39 raspi nextdns[582]: Connected 103.127.29.198:443 (con=6ms tls=20ms, TCP, TLS13)Jan 25 06:33:57 raspi nextdns[582]: Connected 103.127.29.198:443 (con=5ms tls=16ms, TCP, TLS13)Jan 25 06:34:00 raspi nextdns[582]: Connected 45.90.28.0:443 (con=54ms tls=449ms, TCP, TLS13)Jan 25 06:34:00 raspi nextdns[582]: Switching endpoint: https://dns.nextdns.io#45.90.28.0,2a07:a8c0::Jan 25 06:34:58 raspi nextdns[582]: Connected 45.90.28.0:443 (con=56ms tls=234ms, TCP, TLS13)Jan 25 06:35:57 raspi nextdns[582]: Connected 45.90.28.0:443 (con=199ms tls=61ms, TCP, TLS13)Jan 25 06:37:10 raspi nextdns[582]: Connected 45.90.28.0:443 (con=53ms tls=67ms, TCP, TLS13)Jan 25 06:39:40 raspi nextdns[582]: Connected 45.90.28.0:443 (con=97ms tls=88ms, TCP, TLS13)
​
https://nextdns.io/diag/f54a20e0-7da3-11ec-9cc9-719bc9b4a5ed
Diag is very poor too
Is it possible you are using a network level DNS filtering system, such as a pi hole or nextdns.io service that is set to block 'trakcers' or 'phone home connections' to samsung's servers?
You may try something like Blokada (https://blokada.org) or NextDNS (https://nextdns.io/)
However I'm not personally aware what domains would need to be blocked to block location services (if it's even possible without breaking other apps)
Glad it works for you, I am a premium member, if you decide to pay please use my link https://nextdns.io/?from=nwmzs7gc it is $20usd a year.
You get 300k queries a month after that it just becomes a regular resolver.
Did you do DNS over TLS to NextDNS through unbound or use the NextDNS app?
Darelphilip already answered.
In addition, and the most important thing, they are transparent and give the user full control over how much data they store and how long they store.
And, they do not share, sell, etc the stored data with anyone.
And, NextDNS help filtering trackers at DNS level not only ads.
https://help.nextdns.io/t/y4hmvar/does-nextdns-collect-and-store-personal-data
In addition, they are transparent and give the user full control over how much data they store and how long they store.
And, they do not share, sell, etc the stored data with anyone.
https://help.nextdns.io/t/y4hmvar/does-nextdns-collect-and-store-personal-data
I’m aware of the “workaround” for the current issue, but don’t forget that major telcos in the EU are advocating against private relay.
Most (if not all) will scoop up your dns queries and connection metadata, and (if you’re lucky) log them in case the authorities come knocking, or they’ll sell them to the highest bidder for “marketing purposes”.
Do yourself a favor and use DNSSEC or similar.
I personally use NextDNS, which supports DNSSEC on iOS, and gives me ad blocking no matter what network I’m connected to. That takes care of the DNS query logging.
As for connection metadata, your best option is probably a VPN, which is essentially what private relay is.
Also, some telcos have legitimate interest in blocking VPN I.e. for Netflix streaming. Netflix will offer an OpenConnect appliance to just about everybody who’s willing to host one. It gives better speeds for end users, and ISPs save a fortune in network fees when they can terminate Netflix streams in their own infrastructure, so everybody wins.
You can block ads and trackers in your browsers and apps without installing any application. On Android 9 and above, You just have to go to :
Settings - > Wifi & Internet - > Private DNS
Select "Private DNS provider hostname" and type
dns.adguard.com or p2.freedns.controld.com or
dot-de.blahdns.com You should also check out https://NextDNS.io, which allows customized blocklists
You can block ads and trackers in your browsers and apps without installing any application. On Android 9 and above, You just have to go to :
Settings - > Wifi & Internet - > Private DNS
Select "Private DNS provider hostname" and type
dns.adguard.com or p2.freedns.controld.com or
dot-de.blahdns.com You should also check out https://NextDNS.io, which allows customized blocklists
Here are a few things you can do to prevent future issues:
- Enable 2FA on all your accounts
- Use a password manager to manage all your passwords
- Setup a DNS blocking service such as NextDNS.io and add blocklists for Discord scam websites (same can be done with a PiHole)
- Change all your passwords when you setup a password manager
You can setup NextDNS (https://nextdns.io/) as your private DNS, it can be customized with several ad/tracker blocking lists
The free account has a 300k a month querie limit (which tbh i already find myself unable to use half of it by the end of the month but ig that depends on how many trackers you have on your device)
Go to nextdns.io and use a temporary account. Enable all options/lists you think are relevant under Security, Privacy, Parental Control, etc. In the Setup tab, you see an ID. Enter the ID in the iOS app to link your account. If you like how everything works, turn the temporary account into a real account to save your settings.
You can block ads and trackers in your browsers and apps without installing any application. On Android 9 and above, You just have to go to :
Settings - > Wifi & Internet - > Private DNS
Select "Private DNS provider hostname" and type
dns.adguard.com or p2.freedns.controld.com or
dot-de.blahdns.com You should also check out https://NextDNS.io, which allows customized blocklists
You can enforce it like this by DNS.
https://nextdns.io/ <-- you go further and use a third party DNS like this which does the above and more.
Yup—I sure do! But with NextDNS being just $20/year, it’s cheaper than both eero Secure and eero Secure+.
And if you take into account the potential cost for hardware if you were to go for a Pi-hole or AdGuard Home, NextDNS is cheaper than those options too.
You can block ads and trackers in your browsers and apps without installing any application. On Android 9 and above, You just have to go to :
Settings - > Wifi & Internet - > Private DNS
Select "Private DNS provider hostname" and type
dns.adguard.com or p2.freedns.controld.com or
dot-de.blahdns.com You should also check out https://NextDNS.io, which allows customized blocklists
You can block ads and trackers in your browsers and apps without installing any application. On Android 9 and above, You just have to go to :
Settings - > Wifi & Internet - > Private DNS
Select "Private DNS provider hostname" and type
dns.adguard.com or p2.freedns.controld.com or
dot-de.blahdns.com You should also check out https://NextDNS.io, which allows customized blocklists
Possibly good for a single machine. However, a great way to have a blocker for every device in your home is to setup your router to use NextDNS. https://NextDNS.io
Works really well for all your computers, phones, smart TVs, Romulo, FireStick, etc. Reviewing your stat logs it is mind boggling how many DNS requests get blocked, and bandwidth saved.
My list of apps
Brave browser-adfree and blocks trackers
Naptime-puts your phone to dozefaster saves battery(needs adb)
volume styles-change your volume pullout highly customizable
nova launcher-No need to describe it
infinity-awesome reddit client(open source)
Floris keyboard-open source keyboard still in beta but i love this one with some glitches thou..
xspotify-not available on playstore search for it on browser sorry i dont have the link for this
one
Buzzkill-Smart notification manager but it does costs in playstore.The cost is worth it for me who gets a lot of spam and offers and loans notification
Trick-a little tedious one time trick to make your phone ad free overall
change your dns to nextdns or AdBlock dns highly suggest this one for someone who has a little time on hand. Also provided the link for nextdns
All apps here are available on playstore with the same name
Change DNS settings on your Xbox to a private DNS. You can setup a raspberry PI for this on a local network and control everything down to every little detail or use something like NextDNS. I use that on my phone to block most ads and it's been nice.
Self hosting is a good option, but i actually replaced my pihole with this https://nextdns.io/
Then on my android i can use dns over https via nextdns and still get pihole benefits outside my network
Try NextDNS. It's free service and allows you to block gambling donains or similiar. It works over DNS and not over VPN. On Android 9+ it's a really easy thing to set up dns host. Just create account and check the tutorial on their site. You don't need to install any app and it doesn't show any notification or status bar icon, which is great, bevause your husband will have no clue what is blocking. Good luck!
- Create a free account with https://nextdns.io
- Enable the OISD.NL blocklist plus the tracking blocker for your phone manufacturer.
- Follow their installation instructions to add it as the "Private DNS" option on your phone (or you can use their app, but it's not quite as neat)
- Enjoy an ad-free phone. Profit. Etc.