Pi-hole® - A black hole for Internet Advertisements

The original post: /r/pihole by /u/Effective-Ad-2448 on 2024-11-14 19:45:40.

My PiHole runs as a Promox LXContainer.

In the Pi-Hole diagnosis I get this message:

Long-term load (15min avg) larger than number of processors: 4.4 > 2

This may slow down DNS resolution and can cause bottlenecks.

Is this normal?

The original post: /r/pihole by /u/Effective-Ad-2448 on 2024-11-14 19:32:19.

How can I bring the real name into this list?

I use a FritzBox as router and I added the IP of the PiHole for the local DNS entry.

DHCP function should be in the FritzBox.

https://preview.redd.it/0lmi9ned5x0e1.png?width=160&format=png&auto=webp&s=3adfc4d74a529dff398207de1ba171718097ffb4

The original post: /r/pihole by /u/Sandpaper_Pants on 2024-11-14 18:13:10.

That's about it

The original post: /r/pihole by /u/Klaus_Steiner on 2024-11-14 10:10:42.

I can provide more details as I understand what is needed.

Internet for phones and computers is what is expected as far as latency and speeds. When it comes to Google home, Alexa, any smart devices that have to communicate via Google home or Alexa are slow as hell.

Reference point, my friend has an Alexa and when he says Alexa fan on - it chimes before he even finishes releasing the n when he says on - and the fan is instantly responsive.

My network, same scenario - Alexa fan on (or any smart device) it thinks anywhere from 3 seconds to 30 seconds and will time out if it doesn't do it by 30 seconds. Google Assistant acts the same way. This has been an issue as long as I have had my network set up, it's not a new issue.

Fiber modem > USG Pro 4 > Netgear 24 port gigabit switch > unifi AP I have 3 APs total, 1 doesn't interact with IoT stuff. Too far away. 1 is on the other side is a unifi 5 port switch.

I have an unbound pihole hanging off the Netgear switch. This pi also runs the unifi sw.

I have a vlan for IoT devices that doesn't allow cross-talk between networks.

Let me know other context that is relevant. I will provide details as I can.

The original post: /r/pihole by /u/tbkizle on 2024-11-14 08:08:07.

Hello, I was looking into setting up dns sec with my unbound + pi-hole setup and I seem to be running into a odd issue? I have it enabled as far as I can tell in unbound, but when I enable dnssec in pi-hole.

This is what I get for dig to unbound directly:

dig  +dnssec u/127.0.0.1 -p 5335

; <<>> DiG 9.18.28-1~deb12u2-Debian <<>>  +dnssec @127.0.0.1 -p 5335
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50659
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags: do; udp: 1232
;; QUESTION SECTION:
;dds.georgia.gov.               IN      A

;; ANSWER SECTION:
dds.georgia.gov.        30      IN      A       104.18.75.48
dds.georgia.gov.        30      IN      A       104.18.74.48
dds.georgia.gov.        30      IN      RRSIG   A 13 6 300 20241115085140 20241113065140 34505 cloudflare.net. 7oT9uOc0Txlvu8XJM1uQafbKsU45zP1nRjcXjhicb9h/sxAK7Fy7C7Cy eositizmkqPekfPcH5uewjnWSjvOfw==

;; Query time: 0 msec
;; SERVER:  (UDP)
;; WHEN: Thu Nov 14 02:58:58 EST 2024
;; MSG SIZE  rcvd: 186

but then with dig to pi-hole it shows SERVFAIL as previous query was Status dnssec BOGUS.

using https://wander.science/projects/dns/dnssec-resolver-test/ it says pass and

dig com. SOA +dnssec @127.0.0.1 -p 53

works fine, did I do something wrong?

Edit:

reading more online I also did this

"dig sigok.ippacket.stream should return an A record. Note the ad flag from the resolver (authenticated data = DNSSEC validation was successful).

dig sigfail.ippacket.stream should return a SERVFAIL error."

and as it states dig sigok.ippacket.stream did infact give an A record and the ad flag. dig sigfail.ippacket.stream resaulted in a SERVFAIL.

The original post: /r/pihole by /u/fhdjdikdjd on 2024-11-14 03:59:44.

I Am not good at all with this linux stuff so sorry if this is stupid. I had an old computer and decided to do pi hole with it but when I put the bash command in the terminal it stops ate

Main: line 580: dialog: command not found Main: line 641: dialog: command not found

Any help is appreciated. Im on fedora 41 if that matters.

The original post: /r/pihole by /u/ironman139 on 2024-11-13 22:29:52.

I have pihole running on a Raspberry Pi 3 in my network. Now, I would like to enable external access via WireGuard and PiVPN so that I can use pihole on my iPhone as well. Unfortunately, my ISP no longer offers IPv4 Dual Stack, only IPv6 (Vodafone Cable, Fritzbox 6590 with DS-Lite).

Does anyone have any tips on how to solve this problem? Can I use the MyFritz login which I use for external access ?

The original post: /r/pihole by /u/MonkeyCartridge on 2024-11-13 22:06:42.

I recently got a NanoPi R6C as my main router running FriendlyWRT (OpenWRT).

The goal was to have some sort of ad blocker + recursive filter.

The cool thing is that OpenWRT has an adblocker built in which can also configure itself to work with unbound. Pretty neat that it's built right in.

But the thing is, it's hard to monitor or gather any of the stats I'm wanting. Cache hits/misses. Response times. Cache size. Quick logs with easy white/black listing. Etc. It's more of barebones setup and I can really only cross my fingers and assume it's working. because it tells me jack, and the plugins for monitoring the statistics are broken.

I tried getting PiHole + Unbound working via docker like I used to on my server. Pihole would work, but it would fight with dnsmasq. I would change the dnsmasq listening port to give PiHole room, but if PiHole isn't running, then it can't start PiHole because it doesn't have another DNS to refer to. I would need to get the device to request dns directly, while having external DNS requests handled by pihole. Not even sure how to do that. Even though I somehow did it on my server at one point.

But then the next issue is that unbound doesn't have a docker container compatible with ARM.

It would almost be nice if PiHole was just built on top of Unbound instead of dnsmasq.

The 2 reasons for insisting on unbound are, as I understand it:

1. I guess unbound doesn't request DNS the normal way, but requests a library or something. Therefore there's no record of what sites you're actually visiting. Just "this guy asked for this region's database. WHich tells us FA about what he's actually doing."
2. Probably my main reason. dnsmasq is mostly cache misses. And the cache is short-lived and forgotten. dnsmasq seems bare-bones in this regard. With Unbound, you can have it keep, like, half the internet of domain names in a much larger cache, and then instead of letting the cache expire, it can look at stale values and pre-emptively update the entries so you are almost always hitting cache. The speedup is quite noticeable in my experience.

The original post: /r/pihole by /u/gingerb3ard_man on 2024-11-13 17:17:07.

I have tried troublshooting, reading the instructions for that install scenario, asked ChatGPT, looked through forums, but I have not found a way to correctly setup a docker container with Pihole for use network wide. I would like to have the server be the main DNS server as set on my router for a network wide block, has anyone had success doing this and what did you do? Thanks for any help.

The original post: /r/pihole by /u/my_name_is_rod on 2024-11-13 06:10:08.

https://preview.redd.it/h88r684j1m0e1.png?width=1964&format=png&auto=webp&s=ed126d2995d8261a931fe96b8a136f13a3524cc0

The original post: /r/pihole by /u/Dormil0n on 2024-11-12 14:08:55.

This is my first setup as a beginner, so please bear with me and keep it as simple as possible.

I got myself an Synology nas recently for backup, home-media and pihole running in a docker. I want it all to run only on my local network, so I disabled all external access.

Using two fritzbox routers as mesh with ipv4 and ipv6 for internet and its dhcp for local ipv4 and ipv6. I only configured the routers local network ipv4 and ipv6 dns to point to my pihole running on the nas. I dont run any external access or port forwarding here as well and only devices with known mac-adresses can connect.

I left the settings/adlist on the pihole on standard with upstream dns to google, only allowing local requests and no advanced dns settings.

Up to now everything seems to run just fine and i couldnt have done this without the superb guides i found online.

Thanks if you are still reading this and here comes my question: My network should be as safe as before from outside since everything runs behind the fritzbox with its firewall right? My local network should be unsafer now from what i have read, but that shouldnt be a problem since only my own devices can connect i guess?

Im thankful for any tips and suggestions especially on crucial things i missed.

Have a nice day!

The original post: /r/pihole by /u/it_is_gaslighting on 2024-11-12 10:46:20.

So I used the quick start version of the docker_compose.yml from pihole with DHCP (network mode "host") and set restart to always.

As I don't want to set anything up again I would like to edit everything from the settings to the yml. I made a backup from the teleporter but I want to put a maximum on the yml file to have a maximum preconfigured.

So for example I have predefined IPs for example for printers which need to keep the same IP in the local network, so there is this stuff I need to stay static even when I restart the docker container from scratch. Is there a way to simplify the process of "saving the settings that are now in place to the yml"? Stuff like the printer IP, gateway IP, or even loading in a backup teleporter file.

Am I on a correct path or is there a smarter way to solve this task?

The original post: /r/pihole by /u/Beemovee on 2024-11-11 22:42:52.

My friend is addicted to YouTube, and he asked me to block it for him. Is there a way to set pihole as the primary dns server on his phone and then set pihole to block youtube.com, (and derivatives) but not interact with any other dns requests. Would this keep me safe from attackers? Should I abandon this idea because it's stupid and my RPi will become part lf the botner? How would I go about setting this up?

(If I just make him a vpn, he'll turn it off and we'll be back at square one.) Are there any apps that would locally do this on his android phone?

The original post: /r/pihole by /u/su_A_ve on 2024-11-12 04:32:56.

At home, I setup a Pihole to block DNS ads. and for the most part it works great.

I also have iCloud Private Relay turned on, and I turned off "Limit IP Address Tracking" in order for Pihole to work.

But lately (I believe since iOS 18), "Limit IP Address Tracking" keeps turning itself back on as soon as I get home. Hence, Safari doesn't work because the option conflicts with Pihole. Once I turn the feature off, I can browse again.

My understanding is that this option should stay off on a per network basis. Anything I'm missing?

TL;DR "Limit IP Address Tracking" turns itself back on - need it off on my local network

The original post: /r/pihole by /u/MaverickLynx_ on 2024-11-11 21:42:20.

Is it possible to using nginx and apache together to redirect users when they get blocked by PiHole?

Since the webpage blocking type has been deprecated, it’s pretty much impossible to have a user be redirected right? But could nginx be used as a reverse proxy to redirect a user to an apache server that redirects them to another webpage?

The original post: /r/pihole by /u/harrellj on 2024-11-11 17:11:46.

I have a Pi that was running MagicMirror successfully for several weeks and I just installed Pihole onto it. However, that Pi now has no access to the internet. I can VNC onto it and have access to the web interface for Pihole but cannot access anything off of the network. Restarting DNS on the Pihole hasn't fixed it, nor has reboots in general. I've not changed the settings on any device to point to it because I like having internet access. I do have no internet issues on other devices.

I can see that ports 53, 4711 and 80 are all in listening mode.

The original post: /r/pihole by /u/finiac on 2024-11-11 03:05:41.

I may be looking for something that doesn't exist, but I am looking to upgrade my google mesh wifi system (older puck model ones).

I am not sure how to find the answer to this question so I thought I would ask here. I want a mesh system thats a little faster and with more configurability options. For example, the google mesh wifi does not allow you to disable the DHCP server which doesn't allow me to see the individual devices on my pi hole.

I was wondering if someone could make a recommendation for one they like.

Additional information is we have 1.2gb speed, current nest wifi maxes out at 750 if hard wired.

Also, the mesh nodes will each be physically wired as our home has hard wired ethernet throughout the house.

The original post: /r/pihole by /u/Downtown-Can7467 on 2024-11-10 23:29:57.

I’ve recently installed a pi hole on a pi 5 and it’s been working flawlessly for a couple months, I’d like to use it away from my home network but I’m relatively new to all of this, I have to use Linux? Can I use wls on my windows machine?

The original post: /r/pihole by /u/winterarioch on 2024-11-10 20:06:17.

I've been using PiHole for a number of months. PP worked fine until a couple of days ago.

I can't successfully stream PP content. Everything else works: navigating to detail pages, the muted preview video for that content, etc. This is just on a PC in browser. PP works fine on my TV.

Attempting to play the content just yields a black screen. No player controls, just the PP menubar up top.

This is definitely a Pihole issue, when I turn off Pihole, PP works fine.

The curious thing is after I disable and then enable pihole, PP will work for a random period of time. Hours, sometimes. But then it reverts to not streaming.

I've tried whitelisting the various addresses found on this subreddit but the posts are years old. I'm thinking this is a much newer change to PP.

The log found in /var/log/pihole/pihole.log doesn't reveal any obvious addresses that need to be whitelisted.

Any help would be appreciated.

The original post: /r/pihole by /u/TheTxoof on 2024-11-10 19:54:18.

I'm trying to set up a redundant Pi-hole using Orbital-Sync, but I've run into a problem that it appears only some settings are synchronized. In particular, I want to make sure that the items from the DNS screen and Advanced DNS settings section are all copied over. In particular the Custom 1(IPv4) setting and the Conditional Forwarding settings.

I've tried the following:

• Using Oribtal-Sync - it appears to be working, but these settings are stubbornly unchanged on the backup pi-hole after each sync.
• Using Teleporter to download the settings from the primary to a third device as a tar.gz and then restoring them to the backup pi-hole. Again the Advanced settings remain unchanged.
• I've tried restarting the Pi-hole service after each sync, but once again, nothing seems to impact these settings.

What am I missing? Is there another way to sync these settings?

I really want to get all the settings synchronized because I'm pretty new to all this and I'm figuring things out as I go and making changes as I learn new things. I just figured out how to get the assigned names from my Unifi DM to work on all devices using Conditional Forwarding and that's HUGE for me.

I really don't want to have to remember to copy the settings over manually to the backup every time I change something!

The original post: /r/pihole by /u/finiac on 2024-11-10 13:49:25.

I am stuck on something I have researched to death.

My current setup is i have a google nest wifi system and a raspberry pi 4 with pihole installed and worked properly. However, when I look at the Pihole admin consol, it only shows 1 client, 192.168.1.1 which is the IP address of my google nest wifi router. The google nest wifi router is acting as the DHCP server while the pi hole does not have that enabled.

I would like to keep the google nest wifi as the dhcp server but I would also like to see all of my individual network devices being filtered by the raspberry pi and which ones are generating the activity including the ip address etc. At the moment, it just looks likes all my local network shows up as 1 device on the pi hole when in reality there are 60 network devices attached, so i would want to see the details of all 60 devices going through the pihole filtering.

My settings so far:

google nest wifi - DNS set custom to address of raspberry pi. i.e. 192.168.1.64

LAN IP of google router - 192.168.1.1

Raspberry Pi IP is static set to 192.168.1.64

in pihole admin, USEDNSSEC enabled and conditional formatting is enabled

local netowrk in CIDR is 192.168.1.0/24

ip address of dhcp router is set to 192.168.1.1

local domain name (optional) is set to: local

With these settings, the pihole and network are working, however, as I I use different devices on my network I am only seeing 1 ip address show up in pihole (192.168.1.1) but I would like to see all of the devices and their unique IP's/names as they generate pihole blocking activity on the network.

The original post: /r/pihole by /u/Garfieldwxg55 on 2024-11-10 12:48:38.

Hi, I recently discovered this program, and it looks fantastic. I was thinking of working on creating a pull request for a feature that might be added. However, I was curious if the program contained any software designed to get around websites that had implemented software that overrides adblockers (adblocker blockers), as I understand that, while adblockers are perfectly legal, adblocker blockers are considered to be illegal (at least in the EU).

I don't really want to get involved with anything even remotely illegal, so I wanted to double-check to see if there was any software/functionality like this in pi-hole. My colleague who is familiar with the program has told me that there are no adblocker blockers in pi-hole, but I wanted to double-check to ensure neither of us missed anything

Thanks for reading!

The original post: /r/pihole by /u/n_g__ on 2024-11-10 09:02:39.

I have a small Minecraft server and want to use pihole, is that possible?

The original post: /r/pihole by /u/jewettg on 2024-11-10 01:30:45.

Just installed PiHole! Still learning about it, but out of the box, this is really cool!

I have:

• Docker Tag 2024.07.0
• Pi-hole v5.18.3
• FTL v5.25.2
• Web Interface v5.21

PiHole was installed as part of Jeff Geerling's InternetPi project that he has on GitHub (https://github.com/geerlingguy/internet-pi).

Within the InternetPI setup, he also has Grafana showing graphs for internet uptime, speed and such. In that interface there is an Refresh option in the upper-left, that allows you to set a interval, and the page will auto-refresh for you.. showing you the latest up to that interval.

I was hoping to find a similar option for the InternetPi dashboard.

I did so searching around in the pihole subreddit, and did not see anything that stood out. Some simple google searches did not turn anything up either, so my google-foo is off or such a feature does not exist? Outside of a browser plug-in, is there an option via config or something that can enable such a feature, like Grafana?

Thanks!

The original post: /r/pihole by /u/Ok_Character_5242 on 2024-11-09 21:36:31.