Pragmatic IT Solutions
This is how I have set up WireGuard on pfSense in a “Server” mode, with my Peers being my “VPN Clients” to route backup traffic through the WireGuard tunnel back to my internal network.
Selective (Policy Based Routing) with WireGuard and pfSense Read More
Did you know that pfSense has a monitoring system, and if something is wrong, it will send you a notification? This can be your “first-line-of-notification” kind of setup for knowing that your pfSense firewall may need your attention.
These are the blocklists I use:
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/adblock/doh-vpn-proxy-bypass.txt
https://adguardteam.github.io/HostlistsRegistry/assets/filter_2.txt
https://justdomains.github.io/blocklists/lists/adguarddns-justdomains.txt
https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/AmazonFireTV.txt
https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/android-tracking.txt
https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt
https://justdomains.github.io/blocklists/lists/easylist-justdomains.txt
https://justdomains.github.io/blocklists/lists/easyprivacy-justdomains.txt
https://adaway.org/hosts.txt
https://v.firebog.net/hosts/AdguardDNS.txt
https://v.firebog.net/hosts/Admiral.txt
https://raw.githubusercontent.com/anudeepND/blacklist/master/adservers.txt
https://v.firebog.net/hosts/Easylist.txt
https://v.firebog.net/hosts/Easyprivacy.txt
https://raw.githubusercontent.com/nextdns/cname-cloaking-blocklist/master/domains
https://phishing.army/download/phishing_army_blocklist.txt
https://raw.githubusercontent.com/klabacita/pmoreno-list/main/proxies.txt
https://perflyst.github.io/PiHoleBlocklist/SmartTV.txt
https://blocklistproject.github.io/Lists/tiktok.txt
https://raw.githubusercontent.com/WindowsLies/BlockWindows/master/hostslist
https://raw.githubusercontent.com/bambenek/block-doh/master/doh-hosts.txt
https://raw.githubusercontent.com/dibdot/DoH-IP-blocklists/master/doh-domains_abandoned.txt
https://raw.githubusercontent.com/dibdot/DoH-IP-blocklists/master/doh-domains.txt
https://raw.githubusercontent.com/oneoffdallas/dohservers/master/list.txt
https://raw.githubusercontent.com/Sekhan/TheGreatWall/master/TheGreatWall.txt
https://big.oisd.nl/
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/domains/tif.txt
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/domains/ultimate.txt
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/adblock/fake.txt
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/adblock/popupads.txt
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/domains/native.amazon.txt
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/domains/native.apple.txt
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/domains/native.winoffice.txt
https://raw.githubusercontent.com/hagezi/dns-blocklists/main/domains/native.lgwebos.txt
https://raw.githubusercontent.com/DandelionSprout/adfilt/master/Alternate%20versions%20Anti-Malware%20List/AntiMalwareAdGuardHome.txt
https://raw.githubusercontent.com/laylavish/uBlockOrigin-HUGE-AI-Blocklist/main/noai_hosts.txt
https://raw.githubusercontent.com/blocklistproject/Lists/refs/heads/master/smart-tv.txt
Now that v6 of Pi-hole has been released for a few days, and there are some patches available to fix the problems every .0 release of software has, it is time to upgrade. Here are the steps on how to prep and execute a successful upgrade.
Upgrade Pi-hole v5 to v6 – prep and execute Read More
In this video, I will show you how to block TikTok completely on your whole network. I do it from a security and privacy perspective but the same principles apply if you want to block other social networks or online services.
In this video, I will show how I approach and execute an upgrade of pfSense+. Now, the main focus for me is the methodology I use on how to prepare for an update of a very critical component of my network. So even if you don’t have pfSense, you might benefit from watching me explain how I prepare an upgrade, so you can use the same methodology for any kind of software or hardware in your own infrastructure, and have a piece of mind during the upgrade process.
Check the IPTV configuration video here.
Check how to keep the pfBlockerNG setting even when the package is removed.