Nope. I looked at it and couldn’t come up with a way to do it. Please ignore that though. I would love to eliminate their device but so far I haven’t been able. If you figure it out I would be happy to give it a try. I’m using the passthrough method on my att router. My router does have a public IP on the wan and I shut IPV6 down completely.
I have quite a bit of experience with the tech. I’ve worked for several ISPs over the years. My last gig was sysadmin for a small four town ISP.
It depends on their policies. Some ISPs allow you to purchase your own router. Some don’t. As long as their device supports bridging or in some cases DMZ you can just bypass their device to use your own. That is what I did when I switched to AT&Fee fiber.
I use pfsense as my router os and run pfblockerng for my filter. Anytime I have some problem I can log in to the router and look at what is being blocked and if necessary whitelist the entry that is being blocked.
I also redirect all dns to my router at the firewall and block dns over https. This means that all dns no matter the settings on the client machine are redirected to the router. Its not fool proof but so far so good.
Came here to say this. I use wireguard and it simply works.
My thought is that people who dont like this will stop using proton vpn.
Nothing morally wrong with working around a artificial limitation.
Wireguard so you are always seen as being on the local network. This bit of assholery is easily defeated.
is there a decnet found satan sub around here?
Go away dude. I get that you have hived down the subject to the point of obsession but I’ve got websites that have been up for decades and if they go on a blocklist it will be for another reason. Not because of two barely used DNS records. Further if they become required then I’m sure they will be supported.
I’ll worry about it when it happens until then its obscure and of no importance.
I guess I’ll worry about the obscure when its needed for something.
You don’t think you can run your own DNS? Currently I’m using local bind server at work to filter using commercial blocklists. It forwards all windows domain queries to the local AD servers DNS ensuring all internal windows related domains function normally. The external DNS queries though goes through bind and doesn’t care about anything except the root servers. I have firewall rules in place that prevent anyone from using any other DNS. Even DNS over TLS traffic is diverted to my DNS or blocked. It doesn’t rely on anything or any other organization other than the root servers.
In the twenty something years I’ve used afraid.org for personal use I’ve had very little down time. I’ve tried other services many, many times and other than something like cloudflare there is no point in switching. If you don’t want to use it, don’t. It works just fine and you can’t match the price anywhere else. To give you a sense of how many years I’ve been doing my own DNS I set my first DNS server for a dial up ISP in 95.
Finally, what record types are you referring to not being supported?
I own a lot of domains. Why would I want to run my own DNS when I can use a simple uncomplicated system that is time proven and reliable. They could of course set it up with a fisher price interface for thumb suckers who need flash. What feature do you need beyond standard records and a simple dynamic feature? The price isn’t that bad either.
Yeah, you don’t have to share yours if you don’t want to.
I use afraid.org to keep my dynamic dns pointed at my routers ip. With afraid.org dns you only need a curl statement scheduled on the opendnswrt router to keep the dynamic ip updated.
Its a MEH update on little bobby tables. Who is in his twenties now.
I say that like its the way things are.
Cloudflare is a business. Businesses protect their profits. Online casinos are scams subject to regular massive DDOS by their scumbag competitors and by people who want them shut down. Cloudflare wasn’t going to eat that loss anymore so they kicked them to the curb to save money. Also the time frame wasn’t 24 hours. More like a month. This makes me suspect the scamming casino’s story more.
Wireguard tunnels with a ssh tunnel as a backup.