mirrors/AdGuardHome: Network-wide ads & trackers blocking DNS server

mirror of https://github.com/AdguardTeam/AdGuardHome.git synced 2024-11-22 04:55:33 +03:00

Network-wide ads & trackers blocking DNS server

adblock adguard dns dnscrypt dns-over-https dns-over-quic dns-over-tls golang open-source privacy

Find a file

Simon Zolin 0a66913b4d Merge: * use upstream servers directly for the internal DNS resolver Close #1212 * Server.Start(config ServerConfig) -> Start() + Server.Prepare(config ServerConfig) + Server.Resolve(host string) + Server.Exchange() * rDNS: use internal DNS resolver - clients: fix race in WriteDiskConfig() - fix race: move 'clients' object from 'configuration' to 'HomeContext' Go race detector didn't like our 'clients' object in 'configuration'. + add AGH startup test . Create a configuration file . Start AGH instance . Check Web server . Check DNS server . Wait until the filters are downloaded . Stop and cleanup * move module objects from config.* to Context.* * don't call log.SetLevel() if not necessary This helps to avoid Go race detector's warning * ci.sh: 'make' and then run tests Squashed commit of the following: commit 86500c7f749307f37af4cc8c2a1066f679d0cfad Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 18:08:53 2019 +0300 minor commit 6e6abb9dca3cd250c458bec23aa30d2250a9eb40 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 18:08:31 2019 +0300 * ci.sh: 'make' and then run tests commit 114192eefea6800e565ba9ab238202c006516c27 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 17:50:04 2019 +0300 fix commit d426deea7f02cdfd4c7217a38c59e51251956a0f Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 17:46:33 2019 +0300 tests commit 7b350edf03027895b4e43dee908d0155a9b0ac9b Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 15:56:12 2019 +0300 fix test commit 2f5f116873bbbfdd4bb7f82a596f9e1f5c2bcfd8 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 15:48:56 2019 +0300 fix tests commit 3fbdc77f9c34726e2295185279444983652d559e Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 15:45:00 2019 +0300 linter commit 9da0b6965a2b6863bcd552fa83a4de2866600bb8 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 15:33:23 2019 +0300 * config.dnsctx.whois -> Context.whois commit c71ebdbdf6efd88c877b2f243c69d3bc00a997d7 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 15:31:08 2019 +0300 * don't call log.SetLevel() if not necessary This helps to avoid Go race detector's warning commit 0f250220133cefdcb0843a50000cb932802b8324 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 15:28:19 2019 +0300 * rdns: refactor commit c460d8c9414940dac852e390b6c1b4d4fb38dff9 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 14:08:08 2019 +0300 Revert: * stats: serialize access to 'limit' Use 'conf Config' and update it atomically, as in querylog module. (Note: Race detector still doesn't like it) commit 488bcb884971276de0d5629384b29e22c59ee7e6 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 13:50:23 2019 +0300 config.dnsFilter -> Context.dnsFilter commit 86c0a6827a450414b50acec7ebfc5220d13b81e4 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 13:45:05 2019 +0300 * config.dnsServer -> Context.dnsServer commit ee35ef095ccaabc89e3de0ef52c9b5ed56b36873 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 13:42:10 2019 +0300 * config.dhcpServer -> Context.dhcpServer commit 1537001cd211099d5fad01696c0b806ae5d257b1 Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 13:39:45 2019 +0300 * config.queryLog -> Context.queryLog commit e5955fe4ff1ef6f41763461b37b502ea25a3d04c Author: Simon Zolin <s.zolin@adguard.com> Date: Tue Dec 10 13:03:18 2019 +0300 * config.httpsServer -> Context.httpsServer commit 6153c10a9ac173e159d1f05e0db1512579b9203c Author: Simon Zolin <s.zolin@adguard.com> Date: Mon Dec 9 20:12:24 2019 +0300 * config.httpServer -> Context.httpServer commit abd021fb94039015cd45c97614e8b78d4694f956 Author: Simon Zolin <s.zolin@adguard.com> Date: Mon Dec 9 20:08:05 2019 +0300 * stats: serialize access to 'limit' commit 38c2decfd87c712100edcabe62a6d4518719cb53 Author: Simon Zolin <s.zolin@adguard.com> Date: Mon Dec 9 19:57:04 2019 +0300 * config.stats -> Context.stats commit 6caf8965ad44db9dce9a7a5103aa8fa305ad9a06 Author: Simon Zolin <s.zolin@adguard.com> Date: Mon Dec 9 19:45:23 2019 +0300 fix Restart() ... and 6 more commits		2019-12-11 12:38:58 +03:00
.github	fix typo2	2019-08-02 14:55:58 +03:00
client	- client: add message when dns server is starting up	2019-12-10 17:48:42 +03:00
dhcpd	- DHCP: normalize leases on startup (prioritize static leases over dynamic)	2019-12-03 20:43:22 +03:00
dnsfilter	* use dnsproxy v0.22.0 and urlfilter v0.7.0	2019-12-03 20:55:45 +03:00
dnsforward	Merge: * use upstream servers directly for the internal DNS resolver	2019-12-11 12:38:58 +03:00
doc	* doc: filtering logic with a diagram	2019-12-03 17:01:26 +03:00
home	Merge: * use upstream servers directly for the internal DNS resolver	2019-12-11 12:38:58 +03:00
openapi	+ dns: add "edns_client_subnet" setting	2019-12-10 16:01:17 +03:00
querylog	+ dnsforward: match CNAME with filtering rules	2019-12-03 17:01:26 +03:00
scripts	*(global): upd trackers db	2019-10-10 16:01:20 +03:00
stats	Merge: * use upstream servers directly for the internal DNS resolver	2019-12-11 12:38:58 +03:00
.codecov.yml	Added codecov, goreport	2019-01-25 20:13:57 +03:00
.gitattributes	fix gh language	2018-10-17 13:14:45 +03:00
.gitignore	*(global): CI scripts	2019-10-02 15:41:14 +03:00
.golangci.yml	*(global): CI scripts	2019-10-02 15:41:14 +03:00
.gometalinter.json	Fix review comments	2019-02-11 14:22:36 +03:00
.travis.yml	* use Go v1.13	2019-11-25 14:10:28 +03:00
.twosky.json	+ client: add norwegian language	2019-12-05 14:56:52 +03:00
AGHTechDoc.md	+ dns: add "edns_client_subnet" setting	2019-12-10 16:01:17 +03:00
build_docker.sh	Build latest from tag branch, edge from master	2019-02-11 15:10:36 +03:00
changelog.config.js	+: git-cz config file	2019-07-24 17:26:21 +03:00
ci.sh	Merge: * use upstream servers directly for the internal DNS resolver	2019-12-11 12:38:58 +03:00
Dockerfile	Update ports in docker files	2019-06-04 16:30:55 +03:00
Dockerfile.travis	Merge branch 'master' of ssh://bit.adguard.com:7999/dns/adguard-dns	2019-06-04 16:30:59 +03:00
go.mod	Merge: * use upstream servers directly for the internal DNS resolver	2019-12-11 12:38:58 +03:00
go.sum	Merge: * use upstream servers directly for the internal DNS resolver	2019-12-11 12:38:58 +03:00
LICENSE.txt	Initial commit	2018-08-30 17:25:33 +03:00
main.go	refactor: 💡 optimizing GC	2019-07-24 17:00:05 +03:00
Makefile	Fix version/channel linking	2019-06-20 14:36:26 +03:00
README.md	* use Go v1.13	2019-11-25 14:10:28 +03:00
release.sh	i386/linux: don't build binary with sse	2019-09-11 16:25:40 +03:00

README.md

AdGuard Home

Privacy protection center for you and your devices

Free and open source, powerful network-wide ads & trackers blocking DNS server.

AdGuard.com | Wiki | Reddit | Twitter | Telegram

AdGuard Home is a network-wide software for blocking ads & tracking. After you set it up, it'll cover ALL your home devices, and you don't need any client-side software for that.

It operates as a DNS server that re-routes tracking domains to a "black hole," thus preventing your devices from connecting to those servers. It's based on software we use for our public AdGuard DNS servers -- both share a lot of common code.

Getting Started
Comparing AdGuard Home to other solutions
How to build from source
Contributing
Acknowledgments

Getting Started

Please read the Getting Started article on our Wiki to learn how to install AdGuard Home, and how to configure your devices to use it.

Alternatively, you can use our official Docker image.

Guides

API

If you want to integrate with AdGuard Home, you can use our REST API. Alternatively, you can use this python client, which is used to build the AdGuard Home Hass.io Add-on.

Comparing AdGuard Home to other solutions

How is this different from public AdGuard DNS servers?

Running your own AdGuard Home server allows you to do much more than using a public DNS server. It's a completely different level. See for yourself:

Choose what exactly will the server block or not block.
Monitor your network activity.
Add your own custom filtering rules.
Most importantly, this is your own server, and you are the only one who's in control.

How does AdGuard Home compare to Pi-Hole

At this point, AdGuard Home has a lot in common with Pi-Hole. Both block ads and trackers using "DNS sinkholing" method, and both allow customizing what's blocked.

We're not going to stop here. DNS sinkholing is not a bad starting point, but this is just the beginning.

AdGuard Home provides a lot of features out-of-the-box with no need to install and configure additional software. We want it to be simple to the point when even casual users can set it up with minimal effort.

Disclaimer: some of the listed features can be added to Pi-Hole by installing additional software or by manually using SSH terminal and reconfiguring one of the utilities Pi-Hole consists of. However, in our opinion, this cannot be legitimately counted as a Pi-Hole's feature.

Feature	AdGuard Home	Pi-Hole
Blocking ads and trackers	✅	✅
Customizing blocklists	✅	✅
Built-in DHCP server	✅	✅
HTTPS for the Admin interface	✅	Kind of, but you'll need to manually configure lighthttpd
Encrypted DNS upstream servers (DNS-over-HTTPS, DNS-over-TLS, DNSCrypt)	✅	❌ (requires additional software)
Cross-platform	✅	❌ (not natively, only via Docker)
Running as a DNS-over-HTTPS or DNS-over-TLS server	✅	❌ (requires additional software)
Blocking phishing and malware domains	✅	❌
Parental control (blocking adult domains)	✅	❌
Force Safe search on search engines	✅	❌
Per-client (device) configuration	✅	❌
Access settings (choose who can use AGH DNS)	✅	❌

How does AdGuard Home compare to traditional ad blockers

It depends.

"DNS sinkholing" is capable of blocking a big percentage of ads, but it lacks flexibility and power of traditional ad blockers. You can get a good impression about the difference between these methods by reading this article. It compares AdGuard for Android (a traditional ad blocker) to hosts-level ad blockers (which are almost identical to DNS-based blockers in their capabilities). However, this level of protection is enough for some users.

How to build from source

Prerequisites

You will need:

go v1.13 or later.
node.js v10 or later.

You can either install it via the provided links or use brew.sh if you're on Mac:

brew install go node

Building

Open Terminal and execute these commands:

git clone https://github.com/AdguardTeam/AdGuardHome
cd AdGuardHome
make

(For devs) Upload translations

node upload.js

(For devs) Download translations

node download.js

Contributing

You are welcome to fork this repository, make your changes and submit a pull request — https://github.com/AdguardTeam/AdGuardHome/pulls

Test unstable versions

There are two options how you can install an unstable version. You can either install a beta version of AdGuard Home which we update periodically, or you can use the Docker image from the edge tag, which is synced with the repo master branch.

Docker Hub
Beta builds

Report issues

If you run into any problem or have a suggestion, head to this page and click on the New issue button.

Help with translations

If you want to help with AdGuard Home translations, please learn more about translating AdGuard products here: https://kb.adguard.com/en/general/adguard-translations

Here is a link to AdGuard Home project: https://crowdin.com/project/adguard-applications/en#/adguard-home

Acknowledgments

This software wouldn't have been possible without:

Go and it's libraries:
- packr
- gcache
- miekg's dns
- go-yaml
- service
- dnsproxy
- urlfilter
Node.js and it's libraries:
- React.js
- Tabler
- And many more node.js packages.
whotracks.me data

You might have seen that CoreDNS was mentioned here before — we've stopped using it in AdGuardHome. While we still use it on our servers for AdGuard DNS service, it seemed like an overkill for Home as it impeded with Home features that we plan to implement.

For a full list of all node.js packages in use, please take a look at client/package.json file.