So, I've already moved the HTTPS cert to the root directory via magisk module so it's not considered a personal https cert any longer. I kept getting ~55+ notifications a day from adaway saying x, y , z apps didnt' support the certificate, so I turned off notifications for "Other" from adaway...
My phone is rooted and I've been told the local http proxy method is the way to go.
I was told on a reddit forum that Adguard supports DNS filtering in local http proxy mode.
Is this true?