I only want it do one thing, gives the locally configured IP address when it has the records. Otherwise go talk to 8.8.8.8.
Any suggestions?
Pihole or AdGuard With unbound and quic Protokoll
OPNsense firewall unbound dns.
A lot of people are suggesting pihole. I used pihole for awhile and it was neat. Then I bit the bullet and got an actual mini-pc router with a bunch of NICs on it and put OPNSense on it. I now use Unbound DNS on OPNSense and it has made my network a lot easier to manage & more stable.
Pihole will integrate with unbound. Pihole already caches as well. The advantages of unbound are debatable.
OPNSense ban list is WAY too aggressive.
OPNSense ban list is WAY too aggressive.
I believe you can use different lists, however I will say that I no longer use any sort of DNS adblocking because it broke some applications my wife needed for work. I imagine I could fiddle with the block lists and find ones that are less problematic, but I determined that it ultimately causes more problems than it solves for me.
I use unbound on Opnsense as well.
works well for me except for Paramount app on my TV, it contacts every damn advertising tracker known to man and refuses to start a video if it can’t.
Work arround was to set a static IP on the TV with specified DNS.
If all you want to do is forward to google and redirect internally just use unbound or knot.
I love NextDNS: https://jmcglock.substack.com/p/i-keep-going-back-to-nextdns
I wrote an article about why.
Try https://github.com/gitbls/ndm
It’s command line driven but takes very little in the way of memory / processor.
Any dns server software should do this, dnsmasq is very light, even bind if you want to go full fat.
If it’s for one or two machines you could just edit the hosts file
Technitium for DNS/DHCP/Ad blocking.
After having a lot of trouble with pinole, blocky solved all my issues. Single config file, that’s it.
Adguard Home, Pihole and CoreDNS fits the bill imho. I use AdguardHome for “general purpose”, and CoreDNS for my lab projects.