Menu
EN
Support
AdGuard Blog Big Sur: the good, the bad, and the ugly

Big Sur: the good, the bad, and the ugly

November 11, 2020 6 min read

Not so long ago we released AdGuard v2.5 for Mac, which, among else, made a heavy accent on compatibility with soon-to-come macOS Big Sur. The v2.5.1 patch that followed recently was packed with more compatibility-oriented changes.

I have to say that befriending AdGuard and Big Sur is not a simple task at all. Apple shakes things up really hard this year when it comes to macOS.

First of all, it's because of the deprecation of Kernel Extensions. If you're a frequent reader of our Blog, you probably remember that we mentioned this as early as in March. You can find plenty of information on this topic if you're intrested in digging deeper, but the bottom line is that Kernel Extensions is an API that AdGuard used to rely on in earlier versions, and with Big Sur macOS moves to a new API, and it's very, very different. All internal AdGuard processes had to be rebuilt, accommodating to the new API.

But that's not the only factor. The introduction of Big Sur comes with Apple switching from Intel processors to ARM. As you might guess, it takes its toll as well. Let's take a closer look at both reasons.

ARM support

We'll deal with this one first, because everything is fairly straightforward here. Apple has allowed developers to get so called Developer Transition kit, which includes an ARM-based Mac Mini computer prototype, among other things.

We've tested it out and are happy to report that AdGuard works smoothly with ARM processors.

Moving to Network Extensions

Network Extensions is an API that comes in place of the old Kernel Extensions API. Why Apple did it in the first place? Their motive is to prevent developers from working within the Kernel and confine them to User mode. And proper implementation of Kernel Extensions is quite challenging. You make a mistake and you'll end up crashing the system. Transitioning to User mode all the features that earlier were only possible to implement on Kext level should make the OS more stable altogether, or at least in theory that is. Unfortunately, everything comes at a cost.

As for AdGuard, as already mentioned, the API we'll have to use for system-wide filtering from now on is called Network Extensions. And — you guessed it — adopting it was rather painful as well. Big Sur is the first OS that marked the commonplace use of Network Extensions. We've reported a boatload of bugs and spent countless hours talking to Apple devs. Luckily, all wasn't in vain — all critical issues with Network Extensions have been resolved.

That said, not all these essential changes made it into macOS Catalina, so you'll have to rely on the ol' trusty Kernel Extensions there.

Despite all our efforts, though, there are still some restrictions when it comes to Network Extensions. Here's a rundown on known problems and ways to fix them:

Compatibility with local proxies

Some things have changed in regard to AdGuard working simultaneously with a proxy. Right off the bat, some good news: any remote (non-local) proxy will work normally in Big Sur alongside AdGuard and doesn't require any additional actions from you. But with a local proxy (localhost), you have to remove it from System settings and configure it in AdGuard.

To configure an upstream proxy in AdGuard for Mac in Big Sur, you need to go to AdGuard menu -> Advanced -> Advanced Settings.... Click on the Value area of the upstream.proxy setting to configure a proxy.

Enter a string that looks like scheme://user:password@host:port, where

  • scheme is either http, https, socks4 or socks5, depending on your proxy type.

If you use socks5 proxy type, set the value of the upstream.proxy.socks5udp setting to true to make AdGuard route UDP traffic to the proxy server.

  • user and password are corresponding username and password of your proxy (if needed). Ignore either or both when not applicable
  • host is the IP address of your proxy server
  • port is the desired port number to be used by the proxy server

Example: socks5://localhost:6322 will configure a SOCKS5 local proxy that listens to port 6322 and doesn't require a username or a password.

Click Apply to make AdGuard route all traffic that went through it to the configured proxy server.

Instructions for some popular local proxies

Depending on what local proxy you're using, there may be slight differencies in setup and other specifics. More detailed instructions for a couple of popular proxies (Surge, Shadowsocks) can be found in our Knowledge Base.

VPN apps with legacy API

Despite AdGuard is displayed as a VPN in System settings, it shouldn't cause any conflicts when working alongside other VPN-based apps. However, if you're using a VPN-based app that was downloaded from outside the AppStore, there's a chance it uses the old VPN API and you have to exclude it from filtering:

  1. Open AdGuard's menu.
  2. Select Preferences....
  3. Switch to the Network tab.
  4. Click the Applications... button.
  5. Find the app you want to exclude and uncheck the checkbox next to it.

Alternatives to using a Network Extension

It's impossible to foresee each and every possible problem that can pop up in Big Sur, there are countless various hardware/software and settings configurations. If you face any compatibility issues, please contact our support team, but feel free to try one of these workarounds first:

Using "Automatic proxy" filtering mode

You can try switching AdGuard to Automatic proxy mode. This makes the system treat AdGuard like a proxy and thus avoid compatibility problems caused by Network Extensions.

  1. Open AdGuard's menu.
  2. Select Preferences....
  3. Switch to the Network tab.
  4. Click the Select Mode... button.
  5. Select Automatic Proxy.

Now AdGuard has automatically added a .pac file to your Mac's network settings, so that the system will consider AdGuard a proxy and try to send all traffic through AdGuard.

Take into account that some apps may ignore this system setting and their traffic will not be filtered.

Enabling Kernel extensions

This is kind of a last resort. To enable Kernel Extensions, you would need to disable System Integrity Protection (SIP) first. It has a chance to work, but also carries a risk of causing more problems than it'll solve. If you feel determined, follow the instruction from this Knowledge Base article.

Once again, we only recommend using this method if everything else fails, and even then cautiously.

In conclusion

As you can see from this article, Big Sur is good news, bad news, and everything in between. Time will tell which side the pendulum swings, and whether there will be more problems or new possibilities in the future. For now, best you can do is arm yourself with knowledge from this article and be ready to face any potential complications — and let's hope Apple will enter the overdrive mode and fix everything in no time!

Liked this post?
Upd: November 12, 2020 Originally posted on November 11, 2020 6 min read AdGuard for Mac Industry news
Vasily Bagirov Vasily Bagirov

Recommended articles
18,385 18385 user reviews
Excellent!

AdGuard for Windows

AdGuard for Windows is more than an ad blocker. It is a multipurpose tool that blocks ads, controls access to dangerous sites, speeds up page loading, and protects children from inappropriate content.
By downloading the program you accept the terms of the License agreement
Read more
18,385 18385 user reviews
Excellent!

AdGuard for Mac

AdGuard for Mac is a unique ad blocker designed with macOS in mind. In addition to protecting you from annoying ads in browsers and apps, it shields you from tracking, phishing, and fraud.
By downloading the program you accept the terms of the License agreement
Read more
18,385 18385 user reviews
Excellent!

AdGuard for Android

AdGuard for Android is a perfect solution for Android devices. Unlike most other ad blockers, AdGuard doesn't require root access and provides a wide range of app management options.
By downloading the program you accept the terms of the License agreement
Read more
18,385 18385 user reviews
Excellent!

AdGuard for iOS

The best iOS ad blocker for iPhone and iPad. AdGuard eliminates all kinds of ads in Safari, protects your privacy, and speeds up page loading. AdGuard for iOS ad-blocking technology ensures the highest quality filtering and allows you to use multiple filters at the same time
By downloading the program you accept the terms of the License agreement
Read more
18,385 18385 user reviews
Excellent!

AdGuard VPN

74 locations worldwide

Access to any content

Strong encryption

No-logging policy

Fastest connection

24/7 support

Try for free
By downloading the program you accept the terms of the License agreement
Read more
18,385 18385 user reviews
Excellent!

AdGuard Content Blocker

AdGuard Content Blocker will eliminate all kinds of ads in mobile browsers that support content blocker technology — namely, Samsung Internet and Yandex.Browser. While being more limited than AdGuard for Android, it is free, easy to install and still provides high ad blocking quality.
By downloading the program you accept the terms of the License agreement
Read more
18,385 18385 user reviews
Excellent!

AdGuard Browser Extension

AdGuard is the fastest and most lightweight ad blocking extension that effectively blocks all types of ads on all web pages! Choose AdGuard for the browser you use and get ad-free, fast and safe browsing.
Read more
18,385 18385 user reviews
Excellent!

AdGuard Assistant

A companion browser extension for AdGuard desktop apps. It offers an in-browser access to such features as custom element blocking, allowlisting a website or sending a report.
Read more
18,385 18385 user reviews
Excellent!

AdGuard DNS

AdGuard DNS is a foolproof way to block Internet ads that does not require installing any applications. It is easy to use, absolutely free, easily set up on any device, and provides you with minimal necessary functions to block ads, counters, malicious websites, and adult content.
Read more
18,385 18385 user reviews
Excellent!

AdGuard Home

AdGuard Home is a network-wide software for blocking ads & tracking. After you set it up, it’ll cover ALL your home devices, and you don’t need any client-side software for that. With the rise of Internet-Of-Things and connected devices, it becomes more and more important to be able to control your whole network.
Read more
18,385 18385 user reviews
Excellent!

AdGuard Pro for iOS

AdGuard Pro has much to offer on top of the excellent iOS ad blocking in Safari already known to the users of the regular version. By providing access to custom DNS settings, the app allows you to block ads, protect your kids from adult content online, and safeguard your personal data from theft.
By downloading the program you accept the terms of the License agreement
Read more
18,385 18385 user reviews
Excellent!

AdGuard for Safari

Ad blocking extensions for Safari are having hard time since Apple started to force everyone to use the new SDK. AdGuard extension is supposed to bring back the high quality ad blocking back to Safari.
Read more
18,385 18385 user reviews
Excellent!

AdGuard Temp Mail

A free temporary email address generator that keeps you anonymous and protects your privacy. No spam in your main inbox!
Read more
18,385 18385 user reviews
Excellent!

AdGuard for Android TV

AdGuard for Android TV is the only app that blocks ads, guards your privacy, and acts as a firewall for your Smart TV. Get warnings about web threats, use secure DNS, and benefit from encrypted traffic. Relax and dive into your favorite shows with top-notch security and zero ads!
Read more
Downloading AdGuard To install AdGuard, click the file indicated by the arrow Select "Open" and click "OK", then wait for the file to be downloaded. In the opened window, drag the AdGuard icon to the "Applications" folder. Thank you for choosing AdGuard! Select "Open" and click "OK", then wait for the file to be downloaded. In the opened window, click "Install". Thank you for choosing AdGuard!
Install AdGuard on your mobile device