You can block VPN traffic on the network. On a lot of firewalls it’s just a check box. On Mikrotik style firewalls, you’ll need to specify ports and ranges. You can also block all traffic from the specific device but 80, 443, 53, 67, 68 (https, https, DNS, DHCP) and then add ports as needed. If you really want to lock it down on a home network, there are ways.
Problem is the kids are 11 and 9 year old.
Titties a great motivating factor to push the kid to solve problems.
You can create a NAT rule to redirect any DNS traffic to whatever IP address you want. I ended up having to do this to trick my Chromecasts to use my own DNS server. Obviously this won’t work for DNS-over-TLS or DNS-over-HTTPS.
I’m pretty sure these tips are passed around in Jr. High bathrooms these days.
that takes just a couple clicks on windows *shrug* - also most browsers now allow DOH.
NAT port forwarding all UDP 53 traffic originating from the kids machine to pihole, so even if they configure a different server manually it still goes to pihole
This is exactly what i need. Could you elaborate more on how to do that?
My use case is a school with 300-500 users and they ask me to not see nudes in google images search
Might help for some search engines, but still won’t help with Reddit or most other non-porn sites that host porn
They don’t. There is no defense against porn on Twitter or Reddit.
You would need some sort of software client on the device itself to do the level of filtering you’re looking for.
Correct. That’s why I said: You would need some sort of software client on the device itself to do the level of filtering you’re looking for.
Changing the DNS server is the easiest solution for a layman. It’s definitely by no means a perfect solution, but it would get OP most of the way there.
With DNS over HTTPS (DoH) it is no longer possible to detect DNS queries and block them and has not been for more than a decade.
that will work for one device. when device is changed or temporary device is used or borrowed some one’s device.
I’ll try this & see what result it yeilds.
doesnt sound like a problem to me
Working smarter and harder
That pretty much summarizes the entire history of engineering and science.
As a owner of several Chromecast devices, what is the use case for redirecting them to your DNS? Just to ensure they aren’t phoning home, or is there another benefit? Just curious.
Cloudflare dns (1.1.1.3) blocks adult content, i believe it also sets google to forcably use safesearch.
There’s also many other solutions like it.
But brother, no one goes to twitter to massage their meat stick. Reddit may be a different story.
You think kids would know this ??