Build an Ad-Free and Tracker-Free Public DNS with AdGuard Home
Publish: 2019-02-28 | Modify: 2019-02-28
AdGuard Home is a software that provides ad-blocking and anti-tracking capabilities for the entire network. Once installed, it protects all your home devices without the need for any client software. With the rise of IoT and connected devices, it becomes increasingly important to have control over your entire network environment.
In simple terms, AdGuard Home is a public DNS service similar to Google's public DNS 8.8.8.8. Like DNSmasq, AdGuard Home is open-source and can be self-hosted and configured for use on client devices. Previously, I shared a project called PHPDNS that I developed based on DNSmasq, which had a simple interface but is no longer maintained. Here, I recommend AdGuard Home, which has more powerful features.
AdGuard Home is developed in Golang and provides pre-compiled binaries for various platforms, making installation very simple. Here is an example of installing it on CentOS 7. For other systems, please refer to the official documentation.
Key Features of AdGuard Home
- Blocks ads everywhere
- Focuses on privacy protection
- Family protection mode
- Customizable filters
Installation on CentOS 7 x64
The AdGuard Home binary files can be downloaded from https://github.com/AdguardTeam/AdGuardHome/releases. Choose the latest version according to your platform. The installation method for CentOS 7 is as follows:
# Download AdGuard Home
wget http://soft.xiaoz.org/linux/AdGuardHome_v0.93_linux_amd64.tar.gz
# Extract the files
tar -zxvf AdGuardHome_v0.93_linux_amd64.tar.gz
# Enter the AdGuardHome directory
cd AdGuardHome
# Allow port 3000 (required for AdGuardHome initialization)
# Allow port 3000 using firewalld
firewall-cmd --zone=public --add-port=3000/tcp --permanent
firewall-cmd --reload
# Allow port 3000 using iptables
iptables -A INPUT -p tcp --dport 3000 -j ACCEPT
service iptables save
# Start AdGuard Home
./AdGuardHomeAfter running AdGuardHome, you will be prompted to open http://IP:3000 in your browser to perform the initialization process as shown in the screenshot below.
Open http://IP:3000 in your browser and follow the prompts to complete the initialization. During the initial setup, you will be asked to set a username and password (please remember them) for future logins.
Basic Configuration of AdGuard Home
Setting the Language to Chinese
In the AdGuard Home dashboard, you can set the language to Simplified Chinese at the bottom-right corner of the webpage. However, the translation may not be very accurate.
Setting Upstream DNS
By default, AdGuard Home uses Cloudflare DNS as the upstream server. If your server is located in China, you may experience high latency when using Cloudflare DNS. In the settings section, you can change the upstream DNS to a Chinese DNS server, such as Tencent's 119.29.29.29. However, please note that this method does not support DNS over TLS.
Filters
In the filters section, you can see that AdGuard Home has built-in ad-blocking rules. However, these rules may not be optimized for China. If you want to achieve better ad blocking, you need to add your own rules.
Here are some explanations of the filter rules. You can find more rules in the AdGuard Home dashboard or refer to the official documentation.
||example.org^- Blocks the example.org domain and its subdomains.@@||example.org^- Unblocks the example.org domain and its subdomains.127.0.0.1 example.org- Redirects the example.org host to 127.0.0.1 (excluding subdomains).!- Comment symbol.#- Another comment symbol./REGEX/- Regular expression pattern.
Additional Configuration
To manage AdGuard Home more conveniently, you can continue by running the command ./AdGuardHome -s install to install it as a service. Then you can use the following commands for management:
# Start
systemctl start AdGuardHome
# Enable on startup
systemctl enable AdGuardHome
# Restart
systemctl restart AdGuardHome
# Stop
systemctl stop AdGuardHomeDNS communication typically uses port 53 (TCP/UDP), so don't forget to allow traffic on port 53; otherwise, DNS will not work properly.
# Allow port 53 using firewalld
firewall-cmd --zone=public --add-port=53/tcp --permanent
firewall-cmd --zone=public --add-port=53/udp --permanent
firewall-cmd --reload
# Allow port 53 using iptables
iptables -A INPUT -p tcp --dport 53 -j ACCEPT
iptables -A INPUT -p udp --dport 53 -j ACCEPT
service iptables saveConclusion
AdGuard Home supports various systems such as MacOS, Windows, Linux, and Raspberry Pi. It provides binary and Docker installation methods, making installation simple. AdGuard Home also provides an intuitive statistics system for easy usage. If you are planning to set up your own public DNS, AdGuard Home is worth a try.
Additional Resources
- AdGuard Official Website: https://adguard.com/
- AdGuardHome GitHub Repository: https://github.com/AdguardTeam/AdGuardHome
Comments
xiaoz
I come from China and I am a freelancer. I specialize in Linux operations, PHP, Golang, and front-end development. I have developed open-source projects such as Zdir, ImgURL, CCAA, and OneNav.
Random article
- Multi-database management tool: Database .NET
- WordPress Backup Plugin BackUpWordPress V3.0.4 Chinese Version
- How to Export Extensions (.crx) in Chrome Browser
- Alipay, WeChat Pay, QQ Pay: All-in-One QR Code Payment Solution
- MDtoHTML: Rendering MarkDown Files into HTML Pages
- Gin web framework in Golang does not output log issue
- Aliyun Entrepreneurship Program Application Guide: Get a Minimum of 3500 Yuan Cloud Deduction Upon Approval
- Using Qiniu Cloud Storage to Host Images in Typecho without Plugins
- Open Source Web Analytics Tool Piwik
- 2019 Smooth Sailing for Pigs, RAKsmart Gives Away One Million Red Envelopes for Free