This guide will help you setup content blocking using the Unbound DNS resolver in OPNsense, and assumes you are already using Unbound.
First, navigate to Services > Unbound DNS > Blocklist.
- In the top left corner, enable advanced mode.
- Check Enable.
- Under URLs of Blocklists, enter one of the two following URLs…
- small.oisd.nl/domains (Blocks Ads)
- big.oisd.nl/domains (Blocks Ads, Tracking, and Malware)
- Additionally, this URL can be added to block content that is inappropriate for children…
- nsfw.oisd.nl/domains (Blocks adult websites)
- Click Apply.
You can visit this ad block test website to verify the blocklists are working. When using the big list I score 86%.
I suggest pairing a network-wide DNS blocklist with on-device content blockers as well. The latter can specifically help in removing whitespace on websites where ads may have otherwise been sitting. You should now notice a reduction in your internet usage, and faster loading of websites and apps.
Credits to https://oisd.nl for maintaining the lists of domains. You can report domains that should be included in the lists.