bound pulls data from The Big Blocklist
Collection and generates an
unbound configuration file
that refuses lookup of the selected domains.
This is useful for blocking ads and malware, in much the same way as pi-hole. You might prefer this method over pi-hole if:
- you're already using unbound
- you don't love dnsmasq (which pi-hole is based on)
- you don't think a DNS resolver should require a web server
- you distrust thousands of lines of bash to make major changes to your system
If the above don't apply to you, or you're looking for an opinionated, ad-blocking resolver with a pretty user interface and automated installer, pi-hole is probably what you want.
- a gnu/linux or *bsd operating system
- a working unbound installation
- python3.6+ (for debian-like systems:
sudo apt-get install python3) - python3 requests library (for
debian-like systems:
sudo apt-get install python3-requests)
python setup.py install
bound is intended to be used with blocklists from The Big Blocklist
Collection.
Run without any options, bound will:
- download the latest "ticked" list from the Big Blocklist Collection
- download all of the blocklists listed in the "ticked" list
- parse, deduplicate, and assemble a list of domains from the retrieved blocklists
- remove any safelisted domains from the list
- write
/etc/unbound/unbound.conf.d/blocklist.confto configure unbound for blocking the listed domains - check the unbound configuration, and exit in case of any errors
- restart unbound
To accomplish the above, you will probably need to run bound as the
root user.
There are options that support running as a non-root user, as well as specifying the blocklist URL, an optional safelist URL, and local blocklist and safelist files.
For a description of all the options, run bound -h.
bound supports blocklists and safelists in the following formats:
advanbusiness.com aoldaily.com aolon1ine.com applesoftupdate.com arrowservice.net
quantummetric.com # Cydia/Bigboss cydia.saurik.com.cdngc.net # Cydia/Bigboss production-ultimate-assets.ratecity.com.au # NewsCorp saber.srvcs.tumblr.com # Tumblr fd-fp3.wg1.b.yahoo.com # Tumblr
127.0.0.1 0koryu0.easter.ne.jp 127.0.0.1 109-204-26-16.netconnexion.managedbroadband.co.uk 127.0.0.1 1866809.securefastserver.com 127.0.0.1 2amsports.com 127.0.0.1 4dexports.com
0 1app.blob.core.windows.net 0 2912a.v.fwmrm.net 0 29773.v.fwmrm.net 0 5be16.v.fwmrm.net 0 888casino.com