How to remove subway ads when connected to WiFi

A trip on the subway is often accompanied by a desire to while away the time on the Internet, but an attempt to connect to a free network MT_FREE or Moscow_WiFi usually turns into a challenge. Instead of quick access to news, the user is faced with aggressive Captive Portal, which forcibly opens the browser with videos and banners. This is not only annoying but also a potential security threat, as traffic is redirected through advertising gateways.

Many passengers are unaware that there are several technical ways to minimize this visual noise or even avoid it altogether. Advertising integration The subway access point is integrated at the provider level, so it's impossible to completely remove it "server-side," but you can block it from displaying on your device. In this article, we'll discuss proven methods for operating systems. Android And iOSthat will help you save your nerves and battery life.

It's worth noting that the effectiveness of these methods may vary depending on the operating system version and network configuration updates in the underground. Using third-party DNS servers is the most effective way to block advertising domains at the request level. Next, we'll take a detailed look at the algorithms that will allow you to use the internet without intrusive video.

The nature of intrusive advertising on public networks

The mechanism for advertising to appear when connecting to WiFi in the metro is based on technology Captive PortalWhen your device connects to a hotspot, the router doesn't allow it full internet access, but redirects all HTTP requests to a special authorization page. This is where the banner ads that cover the entire screen are loaded.

Providers serving the metro use DNS Hijacking to redirect traffic. This means that even if you try to open a search engine, you'll be redirected to a site with ads until you've logged in (often via SMS). The problem is compounded by the fact that modern browsers and operating systems are actively implementing the protocol. HTTPS, which conflicts with redirection mechanisms, causing connection errors or infinite download loops.

⚠️ Attention: Some ad bypass methods may violate your WiFi provider's terms of service. Use these methods at your own risk, understanding that your provider reserves the right to block suspicious connections.

Furthermore, constantly loading heavy media ads drains your hotspot bandwidth and your smartphone's battery. Understanding how this mechanism works allows you to choose the right tool to combat it, whether changing your DNS or using specialized apps.

📊 How often do you use WiFi in the metro?
Daily
A couple of times a week
Rarely
Never, I use mobile internet

Using private DNS to block ads

The most elegant and secure solution for modern smartphones is to set up Private DNS (Private DNS). This method redirects all your device's DNS requests to a server that automatically filters known advertising domains, including those used by your Metro provider.

Unlike installing third-party apps, this method works at the system level and doesn't require root access. For Android 9.0 and later and iOS 14, this feature is built-in by default. You'll need to find the network connections section in Settings and enter the server address.

  • 📱 Open your device's settings and find "Connections" or "Wi-Fi & Internet."
  • 🌐 Go to the "Other connection settings" section and select "Private DNS."
  • 🔢 Enter the server address, for example: dns.adguard.com or 1dot1dot1dot1.cloudflare-dns.com.
  • ✅ Save the changes and restart the WiFi module.

After applying these settings, when you try to connect to MT_FREE The authorization page may either not open at all (indicating ad blocking) or open in a "clear" form. If automatic redirection doesn't work, try opening any website in incognito mode.

Setting up ad blockers on Android

Operating system users Android have more extensive capabilities for customizing network connections. In addition to the system DNS, you can use local VPN filters, which don't change your IP address but pass traffic through a local filter.

One of the most popular solutions is the application AdGuard or its free analogues, such as BlokadaThese programs create a local tunnel through which all device traffic passes. HTTPS and system filters must be enabled in the settings of these applications.

It's important to understand that when the local filter is enabled, the system may warn you that your traffic may be intercepted. This is standard behavior for Android when using local VPN profiles, and in this case, it's safe, as your data isn't sent to third-party servers.

☑️ Setting up AdGuard for the Metro

Completed: 0 / 5

It's also worth paying attention to the browser settings itself. If you use Chrome or Firefox, make sure they don't have "Bandwidth Saver" features enabled, which may route ads through their compression servers, bypassing your local ad blockers.

Solutions for iPhone and iPad owners

In the ecosystem iOS The approach to blocking ads on public networks has its own unique characteristics due to Apple's strict security policies. The private DNS setting mentioned above is also effective here, but there are also additional tools.

For iPhone users, a great solution would be to install a configuration profile or use blocker apps such as Lockdown or AdGuard ProThese applications use the framework NetworkExtension to filter traffic without having to create a full VPN tunnel, which saves battery life.

When you first connect to the metro network, iOS may persistently prompt you to log in through the portal. If the ad still gets through, try the following:

  • 🍎 Go to “Settings” → “Wi-Fi”.
  • ℹ️ Click on the “i” icon next to the metro network (e.g. MT_FREE).
  • 🚫 Scroll down and select "Forget this network".
  • 🔄 Enable "Private Wi-Fi Address" in that network's settings, if available.

⚠️ Attention: The "Private Wi-Fi Address" feature generates a random MAC address for each network. In some rare cases, this can cause problems with SMS authentication if the provider associates the number with a specific MAC address in its database.

Using a browser Safari with content blockers enabled may also help. Install extensions like 1Blocker or Wipr, which can block elements on the login page, making it blank or hiding the video player.

Comparison of ad bypass methods

The optimal method depends on your technical savvy and the device model. Below is a table comparing the main methods by efficiency and implementation complexity.

Method Complexity Impact on battery Efficiency
Private DNS Low Absent High
Local VPN (AdGuard) Average Average Very high
Airplane mode (hack) Low Low Average
Third-party browsers Low Absent Low

As can be seen from the table, the setting Private DNS is a "golden mean," requiring no extra software and draining battery life. However, if your subway provider updates its list of blocked domains, this method may stop working, requiring you to switch to more sophisticated tools.

Why doesn't a regular browser ad blocker help?

Regular extensions block elements on a page that's already loaded. In the case of subway WiFi, ads are loaded before you reach the desired page, at the DNS/HTTP Redirect level, so the browser ad blocker simply doesn't have time to take effect.

Alternative methods and workarounds

There are lesser-known, but sometimes effective, hacks that allow you to bypass the advertising stage. One such method involves manipulating connection times and using specific ports.

Try disabling your mobile data before connecting to WiFi. Sometimes the authentication system freezes while waiting for a response from the gateway and allows you to connect without opening an advertising page. Switching to "3G Only" mode before connecting to WiFi also helps, forcing the system to recheck network priorities.

Another interesting method is to use WiFi management apps such as WiFi AnalyzerThey allow you to see hidden connection details. If you see that you're connected but there's no internet (exclamation point icon), try entering the address in your browser. http://1.1.1.1 or http://neverssl.comThese sites often force a login window, but without heavy advertising, they allow you to quickly enter the code from the SMS.

Keep in mind that settings interfaces may change with OS updates. If you can't find the option in the menu, search your phone's settings by entering "DNS" or "Private."

Frequently Asked Questions (FAQ)

Is it safe to enter a phone number for authorization after enabling the DNS filter?

Yes, it's safe. The DNS filter blocks the loading of advertising scripts and tracking domains, but it doesn't prevent data from being transmitted to the provider's authorization servers, as they are whitelisted or are gateway target domains.

Why does my phone's battery drain quickly after connecting to the metro?

This is due to the constant signal search and reconnection attempts in poor tunnel conditions, as well as the background loading of heavy advertising. Using ad blockers reduces the load on the processor and radio module.

Is it possible to completely disable Captive Portal on Android?

It's difficult to completely disable Captive Portal Detection without root access, but you can make it less intrusive by disabling the offline notification in Developer Options or via ADB commands.

Do these methods work for other public networks (cafes, shopping centers)?