Out of curiosity, you have to open a port in the router for that to work, right? How does that work in the security aspect? Do you need to do some constant maintenance in your setup or something in order not to be vulnerable?
While you have to open a port for wireguard, it doesnt respond to anything other than your clients with a key. It should be safe enough without any maintenance, but security updates are always a good idea. If you don't want to open port there are alternatives like tailscale or zerotier, but I have never tried them
How much battery do you think this consumes? I've always thought an always on VPN set up but never tried it as I assumed it would drain the battery too quickly.
The battery consumption is negligible. I use Invisible Pro with so many different types of blocks and circumventions that it's almost ridiculous, and it runs at about a 3% in 24 hours. Invisible Pro has to be way up on the battery sucking scale for similar products.
My personal favorite is RethinkDNS, which is technically capable of running your favorite VPN provider alongside blocking ads and blocking/logging domains on a per-app basis.
It's a bit frustrating to set up for my taste, but it definitely works. (Kudos to Mozilla for sponsoring their project, BTW.)
That is true but then it applies to everything and you can't pick and choose which app to filter and which not (I exclude banking app for example), what level of filtering you want for each app (my phone is not rooted so there are some apps which will reject https filtering), and additionally I can quickly turn off and on filtering in the app for example when there's a need for troubleshooting why something is not loading etc. In short, with an app you have more control and access to stats:
I use Blokada - but not the latest version since the company switched from the free open-source standalone app paradigm to a cloud-based continual paid subscription model. It seems like Blokada version 4 (obtained either from the company's webpage or F-droid I forget which) blocks a heck of a lot more stuff than version 5 for some reason.
On the other hand, it also noticeably heats up my phone if a not-well-behaved app (examples include Freemium games) continually resubmits queries over & over again every (or even multiple times a) second. You can block every request that it makes... but it can also keep making them so... at some point you may question whether the cost is worth it.
This arguably relates more to "tracking" than actual advertisements, since there can only be a finite number of the latter but the former can happen all day every day even when the app is not running, if it decides to be aggressive about checking in with its home base. These days, even if you do pay for something, your data is STILL the actual "product" that is the reason the company is in business at all to obtain.:-(
Thank you for helping fill out this list. May I ask why you moved away from Blokada? Version 5 is bad ofc, and 6 is far, FAR worse, but 4 worked well for me.
It looks like AdAway has some nice features since I saw it last, like the ability to whitelist a particular app. If it does not require root permissions, it might be a clear winner even.
I use Blockada 5 and haven't noticed any heating issues, it might be worth a go! I did have to enable most of the lists to get good coverage (and then a couple custom selected on/off over time) but I mostly don't think about it after a little setup. The only thing I do have to worry about is swapping which VPN is on when I want a real VPN- but fortunately the VPN I like (Mullvad) has adblock built in too.
Yeah I still use Blokada 5 on my daily driver - it generally works "well enough" for most things, so I never bothered to switch to 4 on it. But I did notice that if you try to play a game on it, it's like the ad blocker isn't even there, whereas version 4 worked a lot better straight away. I may just not have played around enough with the settings of 5 though:-).
Go to your Settings app. Click on Network and Internet. Click on Private DNS. Click on Private DNS provider hostname and a type. "p2.freedns.controld.com". Click OK and you're done.
RethinkDNS is a great option unless you already have something in place that you want to use as well.
For example, I have a pi-hole and a server that I'd like to use 24/7. There's a few ways to do it, but I'm an idiot and need a simple, hard-to-ruin method. So I use the pi-hole as an exit node with TailScale
Probably a good VPN with adblocking features. Iirc, protonvpn and mullvad do this pretty well. I've tried the dns methods like other people mention and on some public networks, it won't work because they force a specific dns so you need to vpn for it to work.