@Gary Gapinski : I was researching this yesterday and pfsense has interesting instructions on blocking the use of alternative DNS servers. This could help limit the outbound DNS and avoiding. You can punch holes for known good devices.
Blocking DNS queries to external resolvers - PFSenseDocs
@halfelite : You don't need $200-300 APs to do multiple SSID/VLAN tagging. The Unifi AP AC Lite for $85 can do it.
Ubiquiti Networks - UniFi® AP AC LITE
Blocking DNS queries to external resolvers - PFSenseDocs
@halfelite : You don't need $200-300 APs to do multiple SSID/VLAN tagging. The Unifi AP AC Lite for $85 can do it.
Ubiquiti Networks - UniFi® AP AC LITE