I only want it do one thing, gives the locally configured IP address when it has the records. Otherwise go talk to 8.8.8.8.
Any suggestions?
Adguard Home, Pihole and CoreDNS fits the bill imho. I use AdguardHome for “general purpose”, and CoreDNS for my lab projects.
A lot of people are suggesting pihole. I used pihole for awhile and it was neat. Then I bit the bullet and got an actual mini-pc router with a bunch of NICs on it and put OPNSense on it. I now use Unbound DNS on OPNSense and it has made my network a lot easier to manage & more stable.
Pihole will integrate with unbound. Pihole already caches as well. The advantages of unbound are debatable.
OPNSense ban list is WAY too aggressive.
OPNSense ban list is WAY too aggressive.
I believe you can use different lists, however I will say that I no longer use any sort of DNS adblocking because it broke some applications my wife needed for work. I imagine I could fiddle with the block lists and find ones that are less problematic, but I determined that it ultimately causes more problems than it solves for me.
After having a lot of trouble with pinole, blocky solved all my issues. Single config file, that’s it.
Technitium for DNS/DHCP/Ad blocking.
OPNsense firewall unbound dns.