Quad9 will integrate the HaGeZi Threat Intelligence Feeds (TIF) lists

Awesome, great blocklists and will benefit plenty of folks. Usually my go-to although currently trying the built-in UniFi lists and they’re not as good.
 
Can't grumble at more feeds being added to Quad9, some of the more recent ones added do seem to be keen on blocking genuine sites from time to time
 
Last edited:
Still have a soft spot for Quad9 from the old IBM/X-Force days, good to see they are adding new TI sources.
 
Great news

Taking a look thanks

Code:
# Last modified: 01 Sep 2025 18:40 UTC
# Version: 2025.0901.1840.06
# Syntax: Hosts (including possible subdomains)
# Number of entries: 691626

ip/dns/adlist/print
Flags: X - disabled
 0   url="https://raw.githubusercontent.com/hagezi/dns-blocklists/main/hosts/pro.txt" match-count=53988
     name-count=414704

 1   url="https://raw.githubusercontent.com/hagezi/dns-blocklists/main/hosts/tif.txt" match-count=0
     name-count=691626
 
Ah, wasn’t aware. Thanks.
Chris, if you don't care about local granular control you can check out the free tier from ControlD (Windscribe's DNS company). They allow you select a blocklist (the Hagezi range, OISD, 1Hosts etc) and use their DNS with that blocklist for free. Hagezi Pro or Pro Plus include a large subsection of TIF already, meaning you'd get a decent, off the shelf ads+TIF coverage with good response time. Their CDN is fairly decent (I get 2ms to them), and they have DoH/DoT/DoQ available. Alternatively, you can select multiple of their own curated lists (eg ads, malware and phishing) and use those at the same time in a single endpoint, free of charge. Worth considering if that's all that matters to you.

ETA: I have a lot of time for Quad9/PCH, they're good people. I know a couple of the netops/engineers and they care a lot about fast DNS and online safety.
 
Last edited:
Chris, if you don't care about local granular control you can check out the free tier from ControlD (Windscribe's DNS company). They allow you select a blocklist (the Hagezi range, OISD, 1Hosts etc) and use their DNS with that blocklist for free. Hagezi Pro or Pro Plus include a large subsection of TIF already, meaning you'd get a decent, off the shelf ads+TIF coverage with good response time. Their CDN is fairly decent (I get 2ms to them), and they have DoH/DoT/DoQ available. Alternatively, you can select multiple of their own curated lists (eg ads, malware and phishing) and use those at the same time in a single endpoint, free of charge. Worth considering if that's all that matters to you.

ETA: I have a lot of time for Quad9/PCH, they're good people. I know a couple of the netops/engineers and they care a lot about fast DNS and online safety.
Thanks mate, wasn't aware of this, and I see there's direct support in UniFi for this also. Will have a play around at some point.
 
Thanks mate, wasn't aware of this, and I see there's direct support in UniFi for this also. Will have a play around at some point.
Happy to help. FWIW ControlD's malware list outpaced even Quad9 (themselves excellent), and left Cloudflare's malware DNS in the dust. It really is excellent.
 
Back
Top Bottom