A wider reaching solution would be to block everything entirely but necessary ports to the network as a whole then allow extra ports per device as needed. This would get tiring if you have a lot of smart devices like individual smart bulbs and outlets and such but it’s doable and if you really really want to stop your kid from seeing boobies in his bedroom then it’s possible.
You would have to force traffic to go trough a proxy for this. You can only view the domain name on normal traffic.
You think they wouldn’t? It’s basic DNS at this point.
or hear me out, no such devices in bedroom 
I see what you did there…
Safesearch in pfsense works on google, reddit, tumbler, etc… have it working at a church camp no problem. Any site that has NSFW tags will load but when you nav to that content it will show the dnsbl block page.
This right here is the most logical response. Most of us want to deal with it the technical way cause it’s a challenge but putting the damn devices out of it entirely and being a fucking parent is the best decision. Well played, sir.
How about this one? https://en.wikipedia.org/wiki/Pornographic_film
I have a 13 year old boy hitting puberty. I’m kind of using this link as the litmus test to see if I can find something to block or filter, flag, alert me via logs.
This is such an obnoxious issue. All of the DNS filtering options like NextDNS, CloudFlare, Cisco’s offering…they all fall flat on their face. I’m considering setting up a BSD machine with a 4-port network adapter, and running pfsense and whatever else I might need, then just replace the cheeseball Centurylink router I have. I already using a Ubiquiti WAP.
I want to be able to “turn him loose”, in a certain sense, to be able to research stuff on his own and throw at him a few extracurricular activities experimenting with old hardware I have. I just set up an external drive using Ventoy with tons of ISO’s for Windows and Linux and let him learn. He’s been all over Khan Academy and teaching himself how to code in python and javascript.
Right now for homework we just have a desk with a couple of small form factor desktop computers set up for the kids to work at. They don’t have cell phones, nor social media. As they get older I’ll relax lockdown, and they can buy their own cell phones when they get jobs in their late teens.