12/18/2023 0 Comments Opendns updater edgerouterI used OpenDNS for a while and was pretty happy. If you want to block ads and such but dont want to run your own Pihole, nextdns is the way to go. Or use nextdns ( which can be configured with the blocklists you want. If you want to redirect instead of block port 53 traffic, the a JSON file is required. Assuming you have a USG/UDM, its under networks > your wan network > dns. u/ShawnParr pointed me in the right direction, and I was interpreting the IN/OUT incorrectly. Having it in GUEST_IN doesn't require selecting a Source address/group/network. Putting the firewall rule in WAN_OUT or GUEST_IN worked. Anyone have success setting the rules for this on a USG? With my setup eth0 is WAN and eth1-eth4 are switch0. My EdgeRouter-X has the lastest FW (1.8.5) and my ISP is Comcast. you need to tell the router not to update the nameserver configuration: set interfaces ethernet eth0 dhcp-options name-server no-update. In the past i have used the software which comes with Synology. I am thinking about safe search filters, WIFI restrictions (time, duration) based on mac / collection of mac addresses. More specifically, I wanted to use the OpenDNS FamilyShield DNS servers: 208.67.222.123. Wondered whether anyone had much luck using the features in the UDMP for setting up parental controls. With these firewall rules, changing the DNS on devices to something like 8.8.8.8 allows users to bypass OpenDNS. Hello, I have searched the Ubiquiti community forums but the information there is hard to find as the process to enable IPv6 support is different between EdgeOS versions and pretty situation specific. Today I wanted to properly set up DNS forwarding on my Ubquiti EdgeRouter X. 2001 : Deny All DNS : Before Predefined Rules : Deny : All protocols : Source Network=Kids : Destination Address=blank, Group=Port53.2000 : Allow OpenDNS : Before Predefined Rules : Accept : All protocols : Source Network=Kids : Destination Address=OpenDNS, Group=Port53. I tried setting various rules using port groups and IP groups. I have my network DHCP set to assign OpenDNS to Kids devices through the USG, but I can't seem to prevent the changing of DNS settings on the device itself from bypassing the USG assigned DNS. I'm trying to keep my Kids VLAN from changing the DNS on individual devices, thus forcing them to go through OpenDNS.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |