{"id":1061,"date":"2018-07-23T15:47:39","date_gmt":"2018-07-23T19:47:39","guid":{"rendered":"http:\/\/vitamin-max.com\/word\/?p=1061"},"modified":"2018-07-23T15:47:39","modified_gmt":"2018-07-23T19:47:39","slug":"synology-rt2600ac-router-ad-block-script","status":"publish","type":"post","link":"https:\/\/vitamin-max.com\/word\/2018\/07\/synology-rt2600ac-router-ad-block-script\/","title":{"rendered":"Synology RT2600AC Router Ad-Block Script"},"content":{"rendered":"

Most of the scripts online such as this<\/a>, this<\/a>, and this<\/a>, are written for Synology DSM or their NAS. I have been having some issues using these scripts on my Synology Router. Synology does not publish as many official packages for their router as their NAS anyways. <\/p>\n

I think these scripts do not work well because the shell in their router is busybox ash rather than a more advanced shell. My theory is based on the execution errors I get. It appears some functions and syntax that work for others on NAS does not work on the router. <\/p>\n

However I managed to combine a couple of scripts to make it work decently. <\/p>\n

Just scp and upload the following shell script as update blacklist.sh to your Synology Router, to the folder “\/var\/packages\/DNSServer\/target\/script\/”, and execute the shell as root after you SSH in, and it should work. <\/p>\n

\r\n#!\/bin\/sh\r\n# Name: updateblacklist.sh\r\n# Author: Ryan Gibbons <rtgibbons23 @ gmail.com>\r\n# Date: 20160214\r\n# Description: Updated a blacklist data file for Bind that will point a null zone to route each domain to 0.0.0.0\r\n# Inspiration and Thanks:\r\n# \t* http:\/\/www.wilderssecurity.com\/threads\/a-script-for-updating-your-hosts-file.343978\/\r\n# \t* http:\/\/someonewhocares.org\/hosts\/\r\n#       * http:\/\/pgl.yoyo.org\/adservers\/\r\n#       * http:\/\/winhelp2002.mvps.org\/\r\n#       * http:\/\/hosts-file.net\/\r\n# Modified by Jeremy Yan <jeremy at yansc dot com>\r\n# Credit: Ryan Gibbons, dMajo, and Gerzon\r\n\r\n# Process URLs if they offer a zip we'll use it to save them bandwidth. \r\n# Not using host-file.net b\/c it ~350K objects and causes named to consume over 2GB ram\r\nZIP_URLS="http:\/\/winhelp2002.mvps.org\/hosts.zip" # http:\/\/hosts-file.net\/download\/hosts.zip"\r\nPLAIN_URLS="http:\/\/someonewhocares.org\/hosts\/host http:\/\/pgl.yoyo.org\/as\/serverlist.php?hostformat=hosts&showintro=1&mimetype=plaintext"\r\n\r\n# Use a temporary directory to store the downloads and working files\r\nTMPDIR=\/volume1\/@appstore\/DNSServer\/named\/tmp\/updateblacklist\r\nTMPFILE=$(head -c 50 \/dev\/urandom | tr -dc 'a-zA-Z0-9')\r\n\r\nBLACKLISTFILE=\/volume1\/@appstore\/DNSServer\/named\/etc\/zone\/data\/blacklist.db\r\n\r\nmkdir -p $TMPDIR\r\n\r\ni=1\r\n\r\nfor url in $ZIP_URLS; do\r\n\t# Silent curl on each URL comparing the last-modified-since before attempting to downlaod\r\n        curl -s -z $TMPDIR\/$i.zip -o $TMPDIR\/$i.zip $url\r\n        # Unzip to stdout, sed to remove windows newliens and domains ending with period,\r\n        # The $ before the first sed expression is to process the string in bash b\/c version of sed with DSM5.2 doesn't recongize \\r\r\n        # then for each entry in a host file pointing to 127.0.0.1 or 0.0.0.0 create a BIND formated zone statement\r\n        unzip -c $TMPDIR\/$i.zip | sed -e $'s\/\\r\/\/' -e 's\/\\.$\/\/' | awk '\/^(0.0.0.0|127.0.0.1)\/{print "zone \\""$2"\\" { type master; notify no; file \\"\/etc\/zone\/master\/null.zone.file\\"; };"}' >> $TMPDIR\/$TMPFILE\r\n        i=$((i + 1))\r\ndone\r\n\r\nfor url in $PLAIN_URLS; do\r\n        curl -s -z $TMPDIR\/$i -o $TMPDIR\/$i $url\r\n        cat $TMPDIR\/$i | sed -e $'s\/\\r\/\/' -e 's\/\\.$\/\/' | awk '\/^(0.0.0.0|127.0.0.1)\/{print "zone \\""$2"\\" { type master; notify no; file \\"\/etc\/zone\/master\/null.zone.file\\"; };"}' >> $TMPDIR\/$TMPFILE\r\n        i=$(( i + 1))\r\ndone\r\n\r\n# Strip out localhost, localdomain, broadcasthost, localhost.localdomain entries, and install the blacklist\r\ncat $TMPDIR\/$TMPFILE | sed -e '\/"\\(local\\|broadcast\\)\\(host\\)\\?\\(.localdomain\\)\\?"\/d' | sort -fu > $BLACKLISTFILE\r\n\r\nrm $TMPDIR\/$TMPFILE\r\n\r\n\r\n# Include the new zone data\r\n# This section is adopted from dMajo's script\r\nWorkDir="\/var\/packages\/DNSServer\/target\/named\/etc\/zone\/data"\r\ncd ${WorkDir}\r\n\tif [ -f blacklist.db ] && [ -f null.zone.file ]; then\r\n\t\t#grep -q 'include "\/etc\/zone\/data\/ad-blocker.db";' null.zone.file || echo 'include "\/etc\/zone\/data\/ad-blocker.db";' >> null.zone.file\r\n\t\t# Rebuild data null.zone.file\r\n\t\techo 'zone "null.zone.file" {'\t\t\t\t\t> null.zone.file\r\n\t\techo '\ttype master;'\t\t\t\t\t\t\t>> null.zone.file\r\n\t\techo '\tfile "\/etc\/zone\/master\/null.zone.file";'>> null.zone.file\r\n\t\techo '\tallow-transfer {any;};'\t\t\t\t\t>> null.zone.file\r\n\t\techo '\tallow-update {none;};'\t\t\t\t\t>> null.zone.file\r\n\t\techo '\tallow-query {any;};'\t\t\t\t\t>> null.zone.file\r\n\t\techo '};'\t\t\t\t\t\t\t\t\t\t>> null.zone.file\r\n\t\techo 'include "\/etc\/zone\/data\/blacklist.db";'\t>> null.zone.file\r\n\tfi\r\n\r\n# reload the zone entries\r\n\/volume1\/@appstore\/DNSServer\/script\/reload.sh\r\n\r\n<\/pre>\n
Note the pre-requisites:<\/p>\n