Alozaros DD-WRT Guru
Joined: 16 Nov 2015 Posts: 6437 Location: UK, London, just across the river..
|
Posted: Thu May 25, 2023 7:49 Post subject: |
|
Mile-Lile wrote: | @Alozaros
don't know what to say to you about these l7 filters... I wouldn't advice you to use them... they are like 20 years old... nDPI is way to go since ssl replaced plain http... but nDPI don't fit on low budget routers so BS kept them (l7 filters) for those low memory targets... |
Thanks...Mile-Lile !
My idea was to test ndpi vs Ipset rules there on R9000, as it is in business office and it would be good to filter Facebook, Youtube and ect.(ndpi and risk rules) not interested on L7, but tested those too..like hotmail and yahoo...I already have ipset via txt file and dnsmasq working on R9000...ok..
For the new ndpi/risk rules I use R7000 as a testing ground...and have another R7800 as an edge router with lots of IPset rules too..so yes, Im not interested on low grade routers..only testing on R7000...
Will do more tests later today... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Last edited by Alozaros on Thu May 25, 2023 19:58; edited 1 time in total |
|