Block Ads Everywhere
Your browser extension is blocking maybe 30% of the ads hitting your devices right now. The rest are sailing through your apps, your smart TV, your phone games — completely untouched.
Browser-based ad blockers only see what happens inside the browser. Everything else — every in-app banner, every tracking pixel in your email client, every ad network your Samsung TV phones home to at 2am — moves through completely undetected. The ad industry quietly built an entire parallel infrastructure specifically for this gap, and it’s been working for years.
DNS-based ad blocking operates at a different level entirely.
How It Works
Every time a device tries to load an ad, it first has to look up the address of the ad server — the same way your browser looks up any website. DNS filtering intercepts that lookup before the connection happens.
- An app tries to load an ad from
ads.example.com - The DNS resolver checks if that domain is an ad server
- The request is blocked before anything downloads
- The ad never loads — not a placeholder, not a blank space, nothing
The result: faster load times, less data consumption (measurable on mobile), better battery life, and a browsing experience that doesn’t feel like walking through a mall.
What Gets Blocked
Display ads: banner ads, pop-ups, interstitials, pre-roll and mid-roll video ads on websites.
Mobile app ads: in-app banners, interstitials between game levels, most ad-supported app content.
Tracking and analytics: ad trackers, cross-site tracking pixels, analytics that feed behavioral profiles back to ad networks.
What DNS Blocking Can’t Catch
Some ads can’t be blocked at the DNS level, and it’s worth understanding why.
YouTube ads are served from youtube.com itself — the same domain as the content. Blocking that domain kills YouTube entirely. Same logic applies to first-party ads on many large platforms. Sponsored posts in social media feeds are baked into the feed data, not loaded from separate servers.
For these, a browser extension like uBlock Origin runs alongside DNS filtering. The two methods cover different attack surfaces — they’re complementary, not redundant.
Setting Up Ad Blocking
Step 1: Enable Ad Filtering
Ad filtering is enabled by default with Stoix. To verify or adjust:
- Go to your Dashboard
- Navigate to Content Policies
- Confirm “Block Ads & Trackers” is enabled
- Save your settings
Step 2: Test Your Setup
- Visit Ads Test Page — should confirm ads are blocked
- Load a major news site — sidebar ads and tracking scripts should be absent
- Check your Dashboard Analytics — blocked queries should be logging
Step 3: Fine-Tune (Optional)
Some sites require their own ad domains to function. If something breaks:
- Add the domain to your Allowlist
- Adjust filtering level (Strict, Moderate, Light) in Content Policies
- Create custom rules for specific apps or sites
Platform-Specific Notes
iOS and iPhone
After configuring Stoix DNS: Safari has ads blocked automatically, most in-app ads are blocked, and games lose banner ads (reward video ads may still function since they’re often tied to app functionality). If an app detects and refuses to work with the filter, add it to your allowlist.
Android
Android’s Private DNS setting enables system-wide blocking — every app, every browser, every background process. This is where DNS ad blocking performs best across all mobile platforms. For websites that slip through, Firefox with uBlock Origin covers the gap.
Desktop (Mac/Windows)
All browsers are protected simultaneously without individual extension setup. Tracking pixels in email clients get blocked. Background application ad connections are stopped at the DNS level. Layering a browser extension on top covers the first-party ad gap.
Smart TV and Streaming Devices
Configure DNS in the TV or device’s network settings:
- Samsung/LG Smart TVs: DNS in network settings
- Roku: Configure via router DNS
- Fire TV: DNS in system settings
- Apple TV: DNS in network settings
This doesn’t block ads within streaming services (Hulu, YouTube) — those are served from the same domains as the content. What it does block is the substantial amount of tracking and ad-network traffic that smart TVs send independently, separate from what you’re watching.
Troubleshooting
Website Refusing to Load
Some sites detect DNS-level blocking and throw a wall up. Add the domain to your Allowlist, or switch from Strict to Moderate filtering in Content Policies and test again.
App Not Working
Check Dashboard Analytics to identify which domain the app is trying to reach. Add it to your allowlist, restart the app.
Ads Still Showing
- Verify DNS is actually configured on the device — settings sometimes revert
- Restart the device to flush the DNS cache
- Confirm queries are logging in your Dashboard Analytics
- If none of that resolves it, contact support
Advanced: Custom Filter Lists
Block Specific Domains
In your Dashboard Blocklist:
ads.example.com
tracking.example.net
analytics.example.orgWildcards
*.ads.example.com
*.tracking.*Import Lists
Popular pre-built filter lists that can be imported:
- EasyList — General ad blocking
- EasyPrivacy — Tracking protection
- Fanboy’s List — Enhanced ad blocking
Comparing Ad Blocking Methods
| Method | Coverage | Effectiveness | Performance | Setup |
|---|---|---|---|---|
| DNS Filtering | Device-wide | High | Fast | Easy |
| Browser Extension | Browser only | Highest | Medium | Easy |
| VPN w/ Ad Block | Device-wide | High | Slower | Medium |
| Pi-hole | Network-wide | High | Fast | Complex |
The practical takeaway: DNS filtering plus a browser extension covers nearly everything. DNS handles apps and system-level traffic; the extension handles first-party and inline ads the DNS layer can’t touch.
The Privacy Side
Ad blocking is frequently sold as a convenience feature — fewer interruptions, faster load times. The less-discussed part is what ad networks are actually doing when those requests go through.
Every ad load is a data collection event. The domain, the time, what you were doing, device fingerprint details — all of it feeds back into behavioral profiles that follow you across sites and devices. Blocking the connection at the DNS level means the data never leaves in the first place. No request, no record.
This is also why malvertising — malware delivered through ad networks — is a real threat. Legitimate sites serving ads from compromised ad servers have infected visitor devices with no action required from the user beyond loading the page. Blocking ad domains eliminates that vector entirely.
Real-world numbers with DNS ad blocking enabled: news sites load 40–60% faster, mobile data usage drops 30–50%, battery life improves 10–20%, and overall bandwidth consumption falls roughly 30%.
Most people install an ad blocker to stop pop-ups. They keep it running once they notice how much faster everything is.
Next Steps
- Set up tracking protection
- Learn about malware protection
- Explore content filtering for families
- Customize your rules
Questions? Check our FAQ or contact support.