Our great sponsors
-
The Blocklist Project
These lists were created because the founder of the project wanted something with a little more control over what is being blocked. Many lists out there are all or nothing. We set out to create lists with more control over what is being blocked and believe that we have accomplished that. (by blocklistproject)
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
hosts
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
PiHole lists to achieve the same thing:
https://oisd.nl/downloads
https://github.com/blocklistproject/Lists/
Without disagreeing that folks would want an all-in-one solution, a potential alternative is to use a service like https://nextdns.io/ in addition to your VPN.
On iOS you can install a configuration profile that setup a DNS-over-HTTPS endpoint without touching the VPN settings. NextDNS does this when you install their app from what I remember. For other examples, see the profiles offered by AhaDNS.com[0].
On Android there is a Private DNS option where you can also setup a DNS-over-HTTPS endpoint of your choice.
These options may be also a better choice for battery life than a fake VPN connection.
[0]: https://github.com/AhaDNS/setup-guides/blob/master/Apple/iOS...
In iOS from what I know you need a configuration profile for that, I don't think it needs to be signed.
Yes, you can make one with Apple Configurator 2, but there is also some tooling/app that may help, like:
https://dns.notjakob.com/
https://github.com/kkk669/DNSecure
This is particularly unlucky for macOS if you want to use a application-firewall like "Little Snitch" - since Apple removed kernelextensions on macOS (which LittleSnitch and others used before) they now have to also fake a VPN. Because of this, you cannot use a custom DNS and Little Snitch. [1]
[1]:https://github.com/AdguardTeam/AdGuardDNS/issues/214