Block porn ads/popups on R6100 128mb nand/ram unit adblock-fast/squid max 5 users

Dear community, I am using mentioned router with the following packages:

zram
Squid basic auth
p910
adblock fast

Since I am using openssl to generate htpasswd I got rid of apache dependencies which results in more free ram.

Ive selected these adblock fast lists:
Adguard Team cname trackers
Adguard Team cname clicktrhoughs
Adguard Team cname ads
Adguard Team cname microsites
Adaway hosts
oisd small

Goal: all these annoying popups filled with porn content shell be either blocked or blanked/blocked. Ive tested some porn domains but seems like either blocklist isnt active OR domain not listed since reachable...

Can I achive this goal or do I have to use clientside popup filters?

Kind regards

Make sure you browser doesn't bypass your adblocker ?

Openwrt isn't responsible for any block lists.

Openwrt isnt able to block on adblock fast basis?

• Have you verified that the block lists you selected include porn advertisement domains?
• Have you verified your browser is not using DoT or DoH?

The block lists are not maintained by OpenWrt.

If it is youtube you need browser side blocking, they serve ads indistinguishable from videos.

ok, better use Openwrt maintained ones? @anon63541380 I mean in general like when u use .cc / .to domains

Blocking is not that easy, there are solutions available like NextDNS, AdguardHome, but there are also adblocker luci apps, and then there are also a few things which can bypass your default dns settings like hardcoded DoH in browsers (secure dns), but some devices can hardcode it.

Even if you did a really good job by using DoH ip blocklists, hijacking port 53 and have a lot of block lists, I have seen some sites putting all their ads behind a reverse proxy on their own ip range, there is not a bulletproof solution

Do any [OpenWrt-maintained lists] exist?

If so, please tell us (as 2 users have discussed this already).

Such do not exist.

Also, I should note:

If you want to block those top-level domains, they're ways to do so at your [OpenWrt-based] router and DNS connection to the Internet, but it's not clear why you associate those domains to "generally blocking porn advertising".

Please show basic configs, and also the firewall additions for transparent bump etc.

Please connect to your OpenWrt device using ssh and copy the output of the following commands and post it here using the "Preformatted text </> " button (red circle; this works best in the 'Markdown' composer view in the blue oval):

Remember to redact passwords, VPN keys, MAC addresses and any public IP addresses you may have:

ubus call system board
cat /etc/config/network
cat /etc/config/dhcp
cat /etc/config/firewall
cat /etc/config/squid
cat /etc/squid/squid.conf

I'd like to block knitting kit adv videos, i am sure nobody in proximity has such vice

Read again ?

What is the purpose?

Maybe your setup does not block anything at all. At least nextdns or clodflare family certainly block most of pron.

AFAIK adblock-fast does not compress the blocklist. On a device which has 128MiB of RAM, consider using adblock-lean which does. This should leave more RAM free or allow to use a larger blocklist.
(full disclosure: I am currently the maintainer of adblock-lean)

This isn't what you asked, but if you're comfortable with a 1Gb raspberry 4 or 5, pihole works very well for me. Install rpi-os, download pihole and install it.

I still get popups, but there are multiple adlists out there. I also dive into the HTML of the Bad Site to see if the crap can be isolated to particular addresses … and add them to the blocklist. Like admiral.

Openwrt should be configured to not use DHCP -advertized DNS servers, - point your lan at the pihole system.

I'm well comfortable with the linux needed to get a RPI running,

mmmv.

I think here the issue is how to get maximum out of minimal device.

Just use an external filtering DNS resolver ... local porn blocking on a 128 MB device is nonsense.
Example for a good filtering resolver:

image1340×648 217 KB

You can install one of doh dot proxies....