blocky
SHA-256A DNS proxy and ad-blocker for your local network, written in Go. It blocks ads, trackers, and malware via blocklists, speeds up queries with caching, and supports DoH/DoT/DoQ.
Smart Download
Download Download Version
v0.29.0 · 9.6 MB
Blocky is a fast, privacy-focused DNS proxy that blocks ads and malware on your network.
Core Features
- Blocking: external lists, regex, allow/denylists per client group, deep CNAME and IP inspection
- Advanced DNS: custom resolution, conditional forwarding, per-group upstream resolvers
- Protocols: UDP/TCP, DoH, DoT, DoQ (RFC 9250)
- Performance: caching, prefetching, parallel upstream queries, low memory
- Security: DNSSEC validation, random upstream distribution, no telemetry
What It Can't Do
- •IPv6 blocking is not enabled by default; some blocklists may cause false positives; caching can slightly increase memory usage; understanding DNS forwarding is needed for advanced setups.
Use Cases
- Ad and tracker blocking on home networks
- Parental control and IoT device filtering via client groups
- Self-hosted DoH/DoT server for secure DNS
- DNS caching proxy to speed up network
Blocky is a high-performance DNS proxy and ad-blocker designed for local networks. It blocks ads, trackers, and malware by using external blocklists (with allowlist support). It supports advanced DNS features: custom domain resolution, conditional forwarding, per-client-group upstream resolvers, and DNSSEC validation. It caches DNS responses to speed up queries and prefetches frequently used domains. Blocky supports modern protocols like DNS-over-HTTPS (DoH), DNS-over-TLS (DoT), and DNS-over-QUIC (DoQ). It integrates with Prometheus and Grafana for monitoring, logs queries to CSV or databases, and exposes a REST API. Configuration is done via simple YAML files. It is stateless, runs as a single binary, and has official Docker images multi-arch (x86, ARM, MIPS). Blocky does not collect any telemetry or user data, ensuring full privacy.
Tags
Getting Started
Download installer
Click the button above to download the installer for your system
Install the software
Double-click the downloaded installer and follow the prompts
Step 1: Download the latest binary from GitHub releases or pull the Docker image spx01/blocky
Step 2: Create a config.yml file (see example in documentation)
Step 3: Run `./blocky --config config.yml` or `docker run -v /path/config.yml:/app/config.yml spx01/blocky`
- Step 1: Download the latest binary from GitHub releases or pull the Docker image spx01/blocky
- Step 2: Create a config.yml file (see example in documentation)
- Step 3: Run `./blocky --config config.yml` or `docker run -v /path/config.yml:/app/config.yml spx01/blocky`
SHA-256 checksum verified
Checksum extracted from GitHub official Release page
SHA256 Checksum
ea95d609868712ab9dc77f245110154dc1392ce3797c2d7db87fc3102805681eThis checksum is extracted from the GitHub Release page. Verify file integrity after download.
All SHA-256 checksums on this platform are extracted from the project's official GitHub Release page, without any modification. You can independently verify them on the GitHub Releases page.
Open Source Transparency
View GitHub SourceUninstall Info
Stop the process/container, delete the binary/image and config files.
No Extra Dependencies
Ready to use after download. No additional runtime required.
Having issues? Check the FAQ below
5 FAQs
Similar Projects
AdGuardHome
Network-wide DNS server that blocks ads and trackers across all home devices without needing client software.
syncthing
A continuous file synchronization program that syncs files between devices securely and automatically, with no central server.
uBlock Origin
uBlock Origin is a wide-spectrum content blocker for Chromium and Firefox that is CPU and memory efficient. Blocks ads, trackers, miners, and malware out of the box.