Idk about that @GHOST I'd say FOSS operating systems for your phone and PC is the most important step. You don't need to filter and block malicious tracking domains if your devices don't ping them in the first place. It's also a losing battle to try to counter iOS and Windows tracking from a routers perspective. A simple VPN on Linux or GrapheneOS basically destroys nearly all vulnerabilities with even the most malicious networks. It is a very important step, but FOSS OS is the most important, and most impactful.

Depends on your thread model - if you run 30 devices in your home network, the router solution makes sense.

For nearly all threat models you need to have both FOSS OSes AND a FOSS router. I'm just pushing back on the claim that the router is most important.

What are good routers to buy if your current internet router does not support VPNs? Any FOSS options?

OS choice absolutely matters, but calling network controls a losing battle misses the point. They’re not there to fully defeat telemetry. They’re there to catch leaks, enforce boundaries, and audit behavior when users and apps screw up. Privacy isn’t one magic layer. It’s containment, layer by layer.

Great article... I feel a little lost reading it. Most went over my head. I would love a step by step guide on best practices for those with minimal tech ability. I run adguard on home server.

My gateway decides where my traffic goes 😂

It's a losing battle if and only if you're running untrusted software on your devices. You can't stop the leak with a band aid. You have to turn off the valve at the source.

100%

You want a Router that can run something like openwrt.

#DoH

I don't have a router, cellular is cheaper and works everywhere not just at home..

OpenWRT One. Comes pre installed with OpenWRT, is quite inexpensive, and has great features like dual flash chips for safe firmware updates.