Basically enable a list from what you want to be protected.
As you could understand here The FireHol 1 list concatene the top 5 of these lists and demultiply the entries. So without specific need, FireHol 1 is a good list to active and could be the only one.
NOTE
Nethserver needs to act as gateway if the IPlist being efficient for all your network client (smartphones, workstations, smartTV, IOT, …)
3. DNS blacklist
simply cut and paste https://github.com/NethServer/dns-community-blacklist.git as your Download URL
Sincerely here I choose one per category, but these list are like in your uBlock and/or piHole
You could find more list on github: https://github.com/topics/pihole-blocklists but
since malwares and most threats will be block via FireHol1 list we want to focus on Ads and annoyance here:
Adguarddns
Stevenblack
Wally3k
NOTE
Nethserver needs to act as DNS Server if the DNSlist being efficient for all your network client (smartphones, workstations, smartTV, IOT, …), unless it will be only protect your Nethserver and the container you have on it.
I activated few list by batch of 5 or 10 until I reached 35 list everything was fine.
and my understanding
Everything you/I/we hit save it do an git pull (update the list) and github probably have a rules saying if you reload the same repository x times within a period but nothing as been change they flag you.
So in my case I reload the page (hit the button save) maybe 8 times within 5 minutes.
Or simplier, it could be one list who deny access to github
Does it make sense ?
What about you, how did happened to you, what is the context ?
so in my case I found the list who is blocking github it is Firehol webserver.
but based on the logs, it seams to block Cloudflare DNS (1.1.1.1) so NS can’t resolve github.com
but this feature worth the time to debug it
it easily protect the traffic IN/OUT of your network and block ads and malware and …
without using a lot of CPU and MEMORY like suricata (IPS) do.