You can use nextdns [0]
pretty much to the same effect of a pihole, yet you can get up and running in minutes. You can then configure wherever you please: your browser, your laptop, your phone, or even your router.
Agreed. At the end of the day there is no one tool that will fend off all of it. However, NextDNS/Pihole + uBlock Origin gets you most of the way there. uBlock Origin is particularly helpful for blocking first-party ads.
I use NextDNS in my network and I'd say it's well worth the price. I could of course accomplish it with PiHole, but NextDNS just works, and covers my phone when I'm not at home.
On Android 12+ (if my memory serves well), you can use DNS over TLS without having to install any additional software. It seems to cover all of the connections, but I don't think DoT is used when your phone connects to your network for VoWifi and eSIM provisioning connections (I didn't see them in my NextDNS logs)
Thank you for this! I had tried OpenDNS setup through my router but it blocked some stuff I didn't want it to and wouldn't, for anything, release the block so I moved back off of it. I'm definitely going to give nextdns a shot!
NextDNS also has a free plan, albeit you'll hit the limit quickly.
I don't expect everyone to pay for a service like this, but I think that paying for a service like this is reasonable if you can afford it. There's always a modicum of trust that you must confer on the provider (they're resolving all your DNS queries, and you can view logs if choose to), but paying for it does better in aligning incentives. Otherwise self-hosting is the most privacy-friendly option of all.
[0]: https://nextdns.io