Hello. I am testing eBlocker now on version 4.0.3 VM edition. VM in proxmox.
I have three testing clients: Android mobile phone, Windows 10 laptop, Ubuntu linux 24.04 laptop.
My network setup is non-standard and for that I am testing with eBlocker in-line, not replacing any other of my network components (yet). But I am lacking understanding of the flow.
- I want to keep my own DHCP server.
- I want to keep my AdGuardHome ads blocker but only recording stats. It will not be blocking anything.
- I want to keep my own local DNS resolver (Unbound).
Therefore my currently desired flow for traffic is Client -> eBlocker -> AdGuardHome -> Unbound.
To achieve this I have these settings:
On the client:
- Manually set the DNS server to ip of eBlocker.
- Enabled https and installed cert in firefox browser.
On eBlocker:
- Network mode is Automatic. It shows the correct settings like ip address of eBlocker, the network mask and the Gateway. If I changed to use expert mode it would not need to change.
Now the questions. In this setup for the client with eBlocker set to enabled from the eBlocker dashboard, what type of traffic will go to eBlocker? All plain text DNS queries to port tcp/udp 53. Will it also identify DoT and/or DoH ? What about other non-DNS traffic, will it all go through eBlocker's decryption?
What will happen if I disabled eBlocker for the client in the dashboard? Does eBlocker use its upstream DNS server to simply forward the queries?
What I'm trying to get at is how to have eBlocker used for some not all devices. I am concerned about a single point of failure so understanding the flows and behaviours is very important to me.