[kmin93]

If you have a Raspberry Pi, look into using Pi-hole[1]. It provides network-wide blocking when installed on your home network by proxying requests. I also use AdGuard Pro[2], which provides a similar function when I'm outside my home network. Both happen to be open source software[3][4], so that's a plus.

[1]: https://pi-hole.net/

[2]: https://adguard.com/en/adguard-ios-pro/overview.html

[3]: https://github.com/pi-hole/pi-hole

[4]: https://github.com/AdguardTeam/AdguardForiOS

[ktta]

Still doesn't block ads from the Facebook mobile app.

Even if you install a root cert to MITM, some apps pin certs.

[saagarjha]

Of course, there are ways around this: you could make a copy of Facebook that doesn’t pin certificates.

[ktta]

True. Not for iOS though, atleast without a jailbreak.

[jsjohnst]

> Not for iOS though, atleast without a jailbreak.

If you have persistence, no jailbreak is needed. Would require you to binary patch the executable then resign the binary using your own Apple Dev account. Far from trivial, but still doable and without Jailbreaking.

[slackoverflower]

And jailbreaks are getting harder and harder to find by each iOS update.