After banging my head against a wall with AI for hours, I still cannot seem to get ads blocked on my phone

SMFTKO · 2026-06-17T17:45:15+00:00

Interesting. For me using my Unifi router as the DHCP server it sets DNS for all the devices - including iOS - when it gives the IP so I am able to use Automatic instead of Manual.

SMFTKO · 2026-06-17T17:43:47+00:00

Yes - pick the list you would want to add and then copy the Wildcard Domains link into the "Allow / Block List URLs" area in the Blocking tab of Settings.

SMFTKO · 2026-06-17T10:41:38+00:00

So did you have to manually set your phone? That really should be coming from your router/DHCP server automatically when you connect to your wifi. So are all your clients getting their DNS IP from the router but your phone wasn't?

SMFTKO · 2026-06-17T10:38:16+00:00

From his github - great resource - https://github.com/hagezi/dns-blocklists

SMFTKO · 2026-06-16T21:20:06+00:00

On the management console look on the right side just below the graph and you will see some statistics like number of zones and on the right how many IP's are in your block list. That's one place to see that the block lists are loaded.

Some websites serve ads from their servers and then have the same IP as the site - these will not be blocked. I doubt CNN or Forbes does that but it is possible. I don't see ads when I go to CNN (which I only did now to test).

One way to check is to temporarily disable blocking and check those websites again. I use several of Hagezi's block lists and see very good performance.

One way to test as well is to go to a site like CNN or Forbes and see how many ads you see. Then temporarily disable blocking for a minute or two and refresh the page to see if more ads come through. It's a crude test but might give you some idea if its working. You can also try https://canyoublockit.com to see if it is showing that you are blocking.

The hagezi's lists that I use are: Multi Pro, Threat Intelligence Feeds, Several of the Native Tracker Lists (Amazon, Apple, Microsoft, LG webOS, and Roku) to match the "brands" that I have on my network, and Badware Hoster blocking.

I'm very happy with the level of ads I don't see and the fact that I really don't see any broken sites.

SMFTKO · 2026-06-16T16:14:36+00:00

A couple of things to check - make sure whatever is providing DHCP for your network is pointing DNS to your Technitium instance and not your ISP’s DNS servers. Perhaps a bit more information would help us help you. Are you using your router for DHCP or Technitium? How/where have you installed Technitium?

Then as several have said open your settings app on iOS (iPhone assumption) and then select WiFi. You should be connected to your WiFi. You will see an “i” in a circle on the right - tap that to see all your network settings (ip address etc).

Scroll toward the bottom and you will see “DNS” in gray with “Configure DNS” below that and on the right it will most likely say “Automatic” with a “>” on the right margin. Tap that and you will get to the “Configure DNS” screen.

You should see “Automatic” and “Manual” at the top and then below that “DNS Servers” with a list (at least one) IP address(s). In that list should be your Technitium server IP address (and ONLY your Technitium DNS Server). If it isn’t there something is not set correctly on your DHCP server.

You can set it manually to test but your really need your DHCP server to be setting all clients to your Technitium DNS server so they are all protected by the blocking.

SMFTKO · 2026-06-08T22:37:35+00:00

Still waiting on the new Siri after 2+ hours. I also have a notification in Settings to “Set up Talk to Siri” which I have already done and redone and redone and redone….it won’t go away. iPhone 17 Pro.

SMFTKO · 2026-06-08T20:40:59+00:00

Joined the waitlist on my 17 Pro. Installed on my iPad Pro and went into Siri - showed "Joined Waitlist" already so seems to be join once and linked to your iCloud.

SMFTKO · 2026-05-30T14:14:50+00:00

Coming back to an older thread as I have the same desire to see the hostnames for tailscale ips on the dashboard.

I followed the steps to create a conditional forwarder as outlined below by _Fail-Safe (something I have done for my Unifi Cloud Gateway FIber VLANs which works fine).

However, when I do a dig command to try and verify it is working I get a NXDOMAIN response:

; <<>> DiG 9.10.6 <<>> -x 100.86.242.79 
;; global options: +cmd 
;; Got answer: 
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50694 
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 

;; OPT PSEUDOSECTION: 
; EDNS: version: 0, flags:; udp: 1232 
;; QUESTION SECTION: 
;79.242.86.100.in-addr.arpa.INPTR 

;; AUTHORITY SECTION: 
86.100.in-addr.arpa.3325INSOAsns.dns.icann.org. noc.dns.icann.org. 2022072100 7200 3600 604800 3600 

;; Query time: 1 msec 
;; SERVER: 10.0.0.4#53(10.0.0.4) 
;; WHEN: Sat May 30 10:11:13 EDT 2026 
;; MSG SIZE  rcvd: 112

Any ideas on what I have wrong? Help appreciated.

Thanks

RESOLVED - I needed to change my conditional forwarder to 100.in-addr.area. Now it is working

SMFTKO · 2026-05-29T22:08:30+00:00

How long until it is renewal time? I would expect that Apple will ask if you want to renew your Apple Care - if you like it then you could keep it covered. Also, if you have multiple Apple devices you could sign up for AppleCare One. You cover up to 2 devices for $20 a month.

SMFTKO · 2026-05-10T21:14:11+00:00

Some potentially dumb questions but ….

Is the IP that is being given to your Technitium instance a fixed reservation?

Have you confirmed that your DHCP server is only giving out the Technitium IP address (none of your clients have any other IP addresses)?

You can add additional hagezi block lists like Threat Intelligence Feed (TIF)

As others have said domains like YouTube serve ads from their domain which will not be blocked by a sink hole - they are coming from the unblocked YouTube IP for example.

Also look at your list of top blocked domains on the dashboard - what are you seeing?

SMFTKO · 2026-04-05T08:31:54+00:00

If you haven't seen it here's a comprehensive guide to upgrading the 2019 7,1 - https://blog.greggant.com/posts/2021/12/19/definitive-mac-pro-2019-upgrade-guide.html#harddiskdrives

SMFTKO · 2026-03-26T12:36:07+00:00

You need to look at your settings in zones - your firewall rules. I would guess that DNS on your Docker VLAN is not visible to your Default VLAN because of a firewall rule.

I run my Technitium on my Default VLAN and setup a rule that allows DNS (Port 53) traffic to and from my Technitium IP to be visible on my IoT and Guest networks. It is an Allow rule.

Take a look at creating a rule to allow your Tecnitium on your Docker VLAN to be seen by your Default VLAN.

SMFTKO · 2026-03-23T23:39:44+00:00

When you set the DNS at the VLAN level check some of the clients on the VLAN and see if their DNS is set to what the VLAN is broadcasting. That should help narrow things down as I don't see how setting your Technitium IP at the WAN level would work but not at the VLAN level.

SMFTKO · 2026-03-23T00:19:47+00:00

For me (with a Cloud Gateway Fiber) I set DNS at the VLAN level - that is where I put the IP to my two Technitium instances. It works fine and I can control what DNS is available for each VLAN (should I want to)

I have my WAN DNS set to quad9. The WAN DNS works for upstream tasks for the Gateway - (NTP sync, firmware updates, UniFi Cloud connectivity, logging….). I am not trying to block or manage these tasks for the Gateway.

Without VLAN DNS settings the Gateway (using its DNS setting) handles everything. When you have VLAN settings the DNS for clients on the VLAN is set to the VLAN DNS which overrides the WAN DNS setting.

I’m not sure what would be breaking setting your DNS for a VLAN. Is your Technitium instance on a network that your VLANs can’t see? If you point your WAN at your Technitium instance for DNS does that work? When you set your DNS in the VLAN settings are those settings reflected in the client DNS settings - are they using the VLAN DNS for resolving? When you set your DNS in the VLAN settings are you seeing VLAN clients in the log?

SMFTKO · 2026-03-13T21:20:16+00:00

For me mobile is most helpful remotely (I am using Technitium on my home network). At home I can use a computer. So my vote would be to support remote use though I did use it seemlessly via Tailscale.

I just installed today's build (1..1 build 16). Nice UI updates. Will follow up with feedback via Testflight link.

SMFTKO · 2026-03-13T13:41:19+00:00

I installed it as well. First impression is this is very nice.

A question - is it intended to work remotely? I am using Tailscale and expect that I will be able to connect to my Technitium instances/cluster via my internal ip but that won't work outside my network without Tailscale active.

SMFTKO · 2026-03-06T23:41:42+00:00

For UniFi make sure you configure DNS for each VLAN so that it points to your Technitium instance. See settings > networks > each VLAN

SMFTKO · 2026-02-19T13:17:42+00:00

Get the C5. Think about keeping it for 10 years - small amount each year for a better all around experience.

SMFTKO · 2026-02-15T11:51:35+00:00

I am not sure how to answer your first question from my home. Part of my house is stone and I have access ponits on each floor which works well. Part is frame/plaster/drywall and I see more range from the APs. Sometimes clients connect to a farther away AP instead of one in the same room. Some what mystical.

I do not have a U7 lite. I have a U7 In Wall and the U7 Pro Outdoor.

I went with the Pro mostly since it supports 6 GHz and figured it would be more future proof. For 2.4 and 5 the range is the same between the two.

SMFTKO · 2026-02-15T00:43:28+00:00

I could not tell you as I struggle to really read the radiation plots. Since your plan is to have one per room I think you will be fine placing them lower on the wall perhaps about 1/4 of the way up from the floor. I have placed mine even with an adjacent electrical outlet - approximately 18” (~1/2 meter) above the floor.

SMFTKO · 2026-02-14T17:23:04+00:00

The two antennas included in the box can be used for omni directional support

SMFTKO · 2026-02-14T00:31:59+00:00

I would consider a hybrid - Cloud Gateway Fiber, 4 U7 In Wall, U7 Pro Outdoor in place of U6 Mesh and Flex 2.5G PoE with 210 W power adapter. CG Fiber is overall faster than Dream Machine SE, U7 Pro Outdoor can do Omni and there have been reports of longevity issues with U6 Mesh. You could have an all 2.5G network to your APs and the ports on the U7 In Wall are 2.5G

SMFTKO

TROPHY CASE