Block ads and malware sites by using hosts file on router

I browse the web using multiple devices and adding ad-blocker or ad blocking host files to all the devices is a boring thing to do and sometimes it is not possible without jail breaking the device.

I have an old wireless router (TP-Link TL-WR740N v4) and I am using it to test out DD-WRT's ability to use a custom host file on it.

What is DD-WRT?

DD-WRT is a third-party firmware that works for a huge number of wireless routers from a variety of manufacturers. The community of DD-WRT users have created a great list of resources, which makes it easy to understand and use.

You can check this database to find out if your router is supported.

Check DD-WRT database to see if your router is supported

My router is supported!

Download and Install the Firmware

The next step would be to download the firmware suitable to your router. The downloads can be made from ftp.dd-wrt.com

Stable releases were last updated in 2008. I will be using beta firmware. I have selected a firmware version which is known to work without issues on my router (thanks to testing and suggestions from the community)

DD-WRT beta firmware for TP-Link

factory-to-ddwrt.bin is compatible with the router.

Backup TP-Link router's current configurations from http://192.168.0.1 (log in as admin/admin if you are using default credentials) > System Tools > Backup & Restore.

To install the new firmware, go to System Tools >  Firmware Upgrade

Select the file downloaded and click on Upgrade.

TP-Link firmware upgrade

TP-Link firmware upgrade - router restart

TP-Link firmware upgrade success

Log in to DD-WRT Control Panel

The SSID will be dd-wrt. Connect you computer to the new SSID.
The control panel of DD-WRT is accessible from  http://192.168.1.1
The default password is admin/admin. You will be prompted to change the default user name and password.

Change default user id and password

Set SSID and wireless access security

DD-WRT wireless SSID setting

DD-WRT wireless security

You will have to reconnect to the new SSID after applying the new settings.

Maintain your internet connection user ID and password from Setup > Basic Setup > WAN Setup

Connect DD-WRT to internet

We need the internet connection to download hosts file from someonewhocares.org

Enable SSH

We will log on to the router using PuTTY. Before we can do that, we will need SSH services running on the router.

Go to Services > Services and scroll down to Secure Shell section.

Enable SSHd  and set a port. I am using the default SSH port 22.

Activate SSH on DD-WRT

Apply settings.

Now you can log on to the router using the following settings and root user (admin is the default password)

PuTTY connection to DD-WRT

PuTTY connection to DD-WRT

Use ad-blocking hosts file

We will store the hosts file as /tmp/sowchosts and use the 0 hosts files from someonewhocares.org. There are a lot of websites that maintain ad-blocking hosts files. I find this one easy to remember and use.

Maintain "addn-hosts=/tmp/sowchosts" as Additional DNSMasq Options under Services > Services > DNSMasq

Additional hosts file on DD-WRT DNSMasq

This setting tells the router to use an additional hosts file at a specific location.

From the PuTTY connection, run the following command:
wget -qO /tmp/sowchosts http://someonewhocares.org/hosts/zero/hosts && stopservice dnsmasq && startservice dnsmasq


This command downloads the hosts file and places it on the desired location. If the download is successful, it will stop and start the dnsmasq service.

Set the following cron job by maintaining "0 1 * * * root wget -qO /tmp/sowchosts http://someonewhocares.org/hosts/zero/hosts && stopservice dnsmasq && startservice dnsmasq" under Administration > Management > Cron.

DD-WRT setting a cron job

The router I am using doesn't allow me to operate anywhere other than /tmp folder. But the contents of /tmp are removed (and defaults are recreated) after a router restart.

With the cron job, I'll be re-downloading the hosts file which gets lost on router restart. Plus the hosts file on someonewhocares.org is updated regularly, so I get to have the updated one on the router.

Make sure the DNS settings on the devices first use 192.168.1.1 (router) and then other DNS servers (8.8.8.8 for example)


There are a lot more powerful features that I can test and use to my benefit. Getting rid of pop-ups was my priority as iOS devices did not have good options to prevent the endless pop-ups and pop-unders.

Comments

Post a Comment

Popular posts from this blog

OS/DB Migration - CMD. STR, TOC, EXT, R3load, DDLDBS.TPL and more

Image
With increasing need to improve performance or reduce costs or vanishing support for operating systems/databases it becomes inevitable to migrate to a better OS or DB. We feel take a quick look at the primary ingredients of the tools for OS/DB migration handled by R3SETUP. Tools - R3load, R3ldctl and R3szchk R3ldctl creates STRucture files, TemPLate files by reading the technical settings for table/indexes in SAP data dictionary. R3szchk calculates the database size object sizes (EXTent files) for the target system based on the STR files created by R3ldctl. The EXT and STR files can be later split into smaller groups. The most crucial tool R3load is responsible for unloading and loading data from the database. R3load uses the files created by R3ldctl and R3szchk and dumps the data into compressed binary format as .001, .002 .. files. It uses cmd files to achieve the task. If the cmd files are not present, it creates on its own. Files Command files*.cmd  are created i
Read more

Fixing Inconsistent Table - Table activation fails due to inconsistency between DD and DB

If you find a table to be available on the database, but not active in ABAP dictionary, try calling SE14 as DDIC user, enter the table name and choose Table > Reconstruct, Execute. If this method fails follow these steps: Call transaction code SE37 and execute the function module  DD_TABL_ACTM with single test On the next screen, do not change any other field except the following and set them as shown below: MODE: 12 NTAB_PUTSTATE: N TABNAME: <enter the correct table name> Click on Execute The export parameter ACT_RESULT should show 0. To verify if the inconsistency is fixed, call transaction SE14 > Extras > Database Object > Check and  SE14 > Extras > Runtime object > Check.
Read more

301 Redirect Using SAP Web Dispatcher

301 redirects are typically used to redirect accesses that include www to non-www or vice-versa. Example, when you call http://blogger.com, the call is redirected to www.blogger.com. An end-user may prefer to call a URL in any manner. You must ensure that all these calls are redirected to relevant URLs with content. SAP web dispatcher can be configured to send a redirect (301) to the client. To enable redirection add icm/HTTP/redirect_<xx> to the web dispatcher's profile file. The parameter uses the following syntax: icm/HTTP/redirect_<xx> = PREFIX=<URL prefix>[, FROM=<pattern for URL>, FROMPROT=<incoming protocol>, FOR=<pattern for host name:port>,TO=<new URL prefix>, PROT=<protocol>, HOST=<host>, PORT=<port number/name>] Let's say you want to redirect all the HTTP requests on mysource.com on 80 port to mytarget.com on HTTPS 443 port icm/HTTP/redirect_0 = PREFIX=/, FROM=*, FROMPROT=http, FOR=mysource.com:80,
Read more