Hi everyone.
I just got my routerboard finally works well, now I want to use it to do more powerful and automated firewall, and even ADs block.
I known some common methods to easily do this, such as host file or url blocking, but they are too limited, I mean, they cannot block many ADs and they are static and not up-to-date.
Is it possible to configure a powerful firewall which can perform like Kaspersky/ESET (firewall part) or ad-block plus?Because I think they are very good from my experience, they block every attacks and most ADs without blocking useful things, and they updates automatically.
There is a list of bad websites in txt file: https://easylist-downloads.adblockplus.org/easylist.txt , and update from time to time, will this help?
Thank you.
you could only use this in conjunction with the transparent webproxy functionality, somehow read the list, and update the proxy access list in RouterOS. I don’t think this is a good idea, such large list would overload the device, maybe if you have really powerful hardware
Thank you, are there any ready-to-use script for this? I’m so unfamiliar with scripts…
That list looks way too broad, installing that in a webfilter will probably break legitimate sites that happen to have one
of those patterns in a URL somewhere.
When you want to block at host level instead of URL pattern, I would advise to check filtered DNS services like
OpenDNS. You can just set the DNS server to use inside your network (can be done via DHCP and setting it in
the router) to the OpenDNS servers, and make an account there where you can set your preferences for blocking.
Of course this will not work when the hostname that serves the ads is just a website server. But in practice the
ads that you most likely want to block (those malware items served by insecure adservers) can be blocked quite
successfully this way. And best of all, it does not load your router and requires little or no attention.
So the opendns already blocked the ads? I’m already using it…
Thanks.
It depends on how you configure it. It will never act as a real adblocker, I think, but at least it can block malicious ads.
Thank you, in fact I’m using Adblocker’s list in my main computer (by IE’s tracking protection), and found it works great, I just want it apply to all my devices such as smartphones, so I think router may helps.
The DNS not always working because I’m currently in a bad country, the government always try to prevent many internet access, they poison the DNS result even if you set it to google or opendns.
You should ask the government to also block the ads then 
But seriously, adblocker list will not work the same way in router as in the browser. If you block these URLs in the router, the browser will try to load these pages, you will have longer waiting time, and a lot of 404 or 403 errors in the browser. This will not be the same experience as with adblocker plugin.
Thank you.