There are a few ways to help with “additional peace of mind”. None of them are fool proof and smart kids will find a way around them. Especially if they have a cell phone or a cell phone with hotspot capability.
-
Do this step! It is needed no matter which solution you pick.
www.ipfire.org - Force clients to use IPFire DNS Server -
setup the IPFire DNS Server with a highly filtered outside DNS server.
- I do not have a suggestion for this since I do not use one, but there are lots of good suggestions on the internet.
- I would not use this since it is easier to get around
-
enable URL filter and enable the conventional Proxy (not Transparent).
-
Enable IP Address Blocklists and add some additional blocks for your kids.
- this is probably the best way since it uses the IPFire framework with some added work on your part.
-
Add a pi-hole device
- this requires adding another device (a raspberry pi) to your local network.
- this is what I use but it is not recommended or supported by IPFire.
- see:
https://community.ipfire.org/search?q=pi-hole%20order%3Alatest
https://community.ipfire.org/search?q=pihole%20order%3Alatest
Also see:
https://community.ipfire.org/t/pi-hole-and-ipfire-which-way-round/401/16
-
Implement a RPZ solution
- I have been experimenting with this. To me it is easy to add to IPFire.
- BUT it is not supported by IPFire.
- I plan to request it be added to IPFire but I am still experimenting with it and I am not ready to submit.
- Some RPZ info here:
https://community.ipfire.org/search?q=RPZ%20order%3Alatest
I threw lots of info at you. Sorry for that. Speak up with your questions.