Sharing what I've done recently on my network. ![:)]()
Several weeks ago, I learned about a seemingly great new product that was a result of a successful crowd-funded Kickstarter project called the AdTrap (getadtrap.com). In theory, it blocks ads on the network level. Of course, PCs can alternatively use a browser plug-in called Ad Block Plus to do essentially the same thing. However, browser support is typically limited, especially on mobile devices like the iPad. AdTrap works around this by filtering the ad content before ever reaching your router. I never realized that I wanted one until I saw the demo videos. What turned me off was the price. Not to mention the import cost to bring it into Asia.
That got me looking for an alternative solution which eventually brought me to pfSense. I figured that I could build a pfSense appliance using new and used computer parts and it will still cost about the same or lower but can potentially be a hundred times better than AdTrap (the latter being able to do just one thing; block ads). I don't mean to bash the product. It definitely has its advantages, one being it's simplicity in setting up so I'm sure there's really a market for it.
But then again, where's the fun in 'simple'?![:D]()
So after spending a couple of weeks trying to teach my old-dog brain to speak pfSense by running it in a VM environment, I finally gathered up the courage to build the box based on an Intel Atom board. This will eventually replace the Cisco router/firewall I have running for several years.
The pfSense box is essentially set up with Squid3 doing Transparent Proxy and SquidGuard3 as the content filter. The appliance is connected behind the Cisco router (for now) so I can still do the final tweaks behind a different subnet without disturbing family members' access to the internet. When I'm done, it's just a matter of changing switch VLAN settings, re-patching cables and LAN+DHCP address changes on pfSense.
The mini-ITX case and the Intel D2500HN board + a 2nd Intel NIC
![1403138_10152351401777926_1464406201_o_z]()
Almost fully-assembled, save for the hard disk. I eventually found an old 40GB in my junk pile that seemed to work quite well.
![1425281_10152351401712926_1303496999_o_z]()
Now in its own little nook in my datacenter-cupboard, it will soon replace the Cisco router above it.
![913962_10152354527102926_1953392760_o_zp]()
Testing out the ad-blocking capabilities. Below are the before and after screen grabs off the Mercury News website (a good example of how far internet ads has made our browsing experience so stressful). In both grabs, I have Ad-Block Plus disabled in Firefox.
BEFORE (SquidGuard3 disabled):
![MercuryNews_zpsfe5974d5.png]()
AFTER (SquidGuard3 enabled):
![MercuryNewsNoAds_zpsd9632f77.png]()
To filter the ads, I'm using a list from this site: http://pgl.yoyo.org/as/. I've added a few custom ad domains to the list. It doesn't stop here. I'm already working towards blocking child-unfriendly sites. I still don't know where this will end.
Comments and violent reactions are welcome.
Several weeks ago, I learned about a seemingly great new product that was a result of a successful crowd-funded Kickstarter project called the AdTrap (getadtrap.com). In theory, it blocks ads on the network level. Of course, PCs can alternatively use a browser plug-in called Ad Block Plus to do essentially the same thing. However, browser support is typically limited, especially on mobile devices like the iPad. AdTrap works around this by filtering the ad content before ever reaching your router. I never realized that I wanted one until I saw the demo videos. What turned me off was the price. Not to mention the import cost to bring it into Asia.
That got me looking for an alternative solution which eventually brought me to pfSense. I figured that I could build a pfSense appliance using new and used computer parts and it will still cost about the same or lower but can potentially be a hundred times better than AdTrap (the latter being able to do just one thing; block ads). I don't mean to bash the product. It definitely has its advantages, one being it's simplicity in setting up so I'm sure there's really a market for it.
But then again, where's the fun in 'simple'?
So after spending a couple of weeks trying to teach my old-dog brain to speak pfSense by running it in a VM environment, I finally gathered up the courage to build the box based on an Intel Atom board. This will eventually replace the Cisco router/firewall I have running for several years.
The pfSense box is essentially set up with Squid3 doing Transparent Proxy and SquidGuard3 as the content filter. The appliance is connected behind the Cisco router (for now) so I can still do the final tweaks behind a different subnet without disturbing family members' access to the internet. When I'm done, it's just a matter of changing switch VLAN settings, re-patching cables and LAN+DHCP address changes on pfSense.
The mini-ITX case and the Intel D2500HN board + a 2nd Intel NIC
Almost fully-assembled, save for the hard disk. I eventually found an old 40GB in my junk pile that seemed to work quite well.
Now in its own little nook in my datacenter-cupboard, it will soon replace the Cisco router above it.
Testing out the ad-blocking capabilities. Below are the before and after screen grabs off the Mercury News website (a good example of how far internet ads has made our browsing experience so stressful). In both grabs, I have Ad-Block Plus disabled in Firefox.
BEFORE (SquidGuard3 disabled):
AFTER (SquidGuard3 enabled):
To filter the ads, I'm using a list from this site: http://pgl.yoyo.org/as/. I've added a few custom ad domains to the list. It doesn't stop here. I'm already working towards blocking child-unfriendly sites. I still don't know where this will end.
Comments and violent reactions are welcome.