Currently, I block pretty much all devices from communicating back with the corporate overlords (at least for stats data).
How? Pi-Hole running on a RPi and a ton of Gravity rules and a few custom rules.
Logitech Harmony Hubs: (^|.)myharmony.com$
-- When you need to update your firmware or add/remove activites or devices, you'll need to either disable this rule or disable pi-hole whilst you are working.
One thing to note: You have to have pi-hole running as your primary DNS server. Most (but not all) consumer routers should allow you to setup pi-hole as the primary DNS on your network. If yours does not, you need a better router.
The primary benefit to this is that you no longer need to run an adblocker on your browser (on any machine in your network). I run Brave normally. Below is a test showing Brave's adblocker disabled and still no ads.
Certain devices are also bypassing the primary DNS settings from your local router (Hubitat, Google Home, certain Proprietary/Closed Security systems etc).
In most cases, with a good-enough Router, you can (port) DNAT these back so they also funnel through the local block.
The DNAT isn't perfect, but it'll handle many of the outliers to the pure DNS reconfig option.
Yeah, there are a few devices that do bypass and I've done exactly that (explicit rules that DNAT back to my pi-hole server). Typically my advice for those that don't have routers that support DNAT or port forwarding (which isn't really workaround, but it seems to work in most cases), is to recommend being careful with what they put on their networks. That usually falls on deaf ears, but I do try at least.
A down-n-dirty solution to keeping a device from calling home is to put it on a locally-controlled device and kill the power to it until it is time for an event.
I have two IR mini-blasters that have been outed in other HA forums as being excessively chatty with our Chinee overlords. HE only allows them a brief window of power, firing them up just 5 minutes before they're to launch the Roombas, then killing power as soon as the Roombas start.
Love my pihole as well. Serve me great for a while now. I have around 9 gravity lists. I am thinking of adding restricted mode for YouTube to pihole but got sidetracked with other useless stuffs like yard work and real work.
No, they're Broadlink-RM-Mini3s. The smart guys here haven't cracked them yet, either. IR blasters (of some sort) are the last thing I need to move to HE.
We got rid of our Harmony hubs and replaced with the IP2IR. It's a lot more work to set up (and more expensive), but no worries with Logitech! I use a version of this app and driver:
I took the plunge today and implemented PiHole (standard install) on my PiHome. Wow browsing is SO much better and faster. I truly thank you for sharing this!
I have also found some python scripts that enable DDNS with GiDaddy so now I wonβt have to worry about IP changes next week when we switch internet providers. PiVPN is now using a CNAME which is directed to the root A record which is updated by this script.
Do you run on a separate Pi? Or on a device running other things? I have an RPi 3 running Cast-web-API and MotionEye and OpenVPN and the webCoRE dashboard (very light) and a couple other tiny apps (almost applets). Would I be safe running Pi-Hole on there or would your recommend on it's own device? Also, if you would recommend running a dedicated device does it have to be a full Pi or would a Pi Zero work? I looked at adding Pi-Hole a while ago but didn't want to totally bring my network to a crashing halt.
I understand this is an old thread but because of the smarties in here I wanted to ask if anyone has any better solutions for blocking UToob ads. If I can figure out how to get rid of those ads in all my LAN devices (ROKU, iPad, etc) then I can finally get rid of the browser extensions.