How to block only bad sites | Pluckeye


The following assumes you have already installed Pluckeye, and that you know how to open a console window for typing pluck commands.

This guide also assumes your delay is 0 so that the commands described herein have immediate effect. If your delay is not 0, you can set it to 0 first.

  pluck delay 0

Option 1 : Use a DNS filtering provider and locking DNS settings

The following requires Pluckeye v0.99.59 or newer.

blocking “bad sites”

First, you need the IP address of a dns filtering provider such as CleanBrowsing, Safe Surfer, or OpenDNS. As an example, the IP address to use CleanBrowsing’s family filter is

Second, configure your computer or home router to use that DNS provider. If you’ve never done this, see CleanBrowsing’s excellent guide on accomplishing this. It’s not that hard.

Third, you must allow the specific IP. In this example, we imagine that we have configured our computer to use CleanBrowsing’s family filter at That is the IP address we use here.

  pluck + allow

Note that if you configured the DNS on your router instead of your computer, you’ll want to allow the IP address of your router instead. An example router IP address is

  pluck + allow

Stop here. Do not proceed until the IP rule has become effective or you will lose Internet.

You can verify the IP rule has become effective by using pluck export along with the IP address you specified above.

On Windows:

  pluck export | findstr

On macOS or Linux:

  pluck export | grep

Once that is done, configure Pluckeye to block other DNS traffic. This can be accomplished using the following commands.

  pluck + block port 53
  pluck + block port 853
  pluck + block port 5353
  pluck + block port 8443
  pluck + nodoh
  pluck + system

Congratulations, you now have DNS-based filtering set up and enforced by Pluckeye!

If you do nothing else, you’ll still have images and videos blocked by default. If you want to allow images, videos, and the rest by default, read on.

allowing everything else

If you now feel it is safe for you to allow images, video, and a few other things by default, you may do so using the following gobbledygook.

  pluck - block image/
  pluck - block video/
  pluck - block application/mp4
  pluck - block application/octet-stream
  pluck - block application/vnd.rn-realmedia
  pluck - block application/vnd.rn-realmedia-vbr
  pluck - block application/x-bittorrent
  pluck - block application/x-iso9660-image
  pluck - block application/x-shockwave-flash
  pluck - block application/x-silverlight
  pluck - block audio/x-pn-realaudio
  pluck - block protocol wss

Alternatively, you can clear your Pluckeye configuration completely using pluck clear, and then you can start this guide from the beginning.


There you have it.

If you find this setup works well for you, or falls short in practice, please do provide feedback.