- For the domains, yes. I'd personally just install Adblock and place them in the blacklist. This would allow me to block other domains/tracking later without a large fuss.
- IPs...those
firewall.userrules should have worked, if you tested from a client in LAN (FORWARD); and not the router itself (OUTPUT).
You didn't mention if the DNS lookups are blocked when querying the OpenWrt's dnsmasq instance. If not, I believe that's because the dnsmasq.conf additions are incorrect syntax...or incomplete, rather. It's also not advisable to add raw configs and rules; but use OpenWrt's UCI/LuCI web GUI interfaces instead. The UCI file to edit for dnsmasq settings you desire is /etc/config/dhcp. The firewall - /etc/config/firewall.
BTW, snapshots update every ~24 hours, I'd also upgrade to the latest snapshot before installing more packages.