Closed AziaRae closed 2 years ago
Open Pi-hole in your browser, then add 127.0.0.1#5335 as a Custom Upstream DNS Server, then save it
You are pointing your "Custom DNS" to the container you are running Pi-hole. Try to use the host's IP.
This issue is stale because it has been open 30 days with no activity. Please comment or update this issue or it will be closed in 5 days.
This is a:
Details
I want to use Pi-hole with Unbound as Local DNS. Both Pi-hole and Encrypted Unbound seems to be working fine on their own. Pi-hole can block ads when Quad9 is used as Upstream DNS, and Unbound can dig websites without fail. When I try to set Unbound as Upstream DNS Server however, I no longer am able to connect to any website.
Related Issues
https://github.com/pi-hole/docker-pi-hole/issues/601 https://github.com/pi-hole/docker-pi-hole/issues/315 https://github.com/pi-hole/docker-pi-hole/issues/438
How to reproduce the issue
Environment data
sudo pacman -Syu --needed docker docker-compose
)docker-compose.yml contents, docker run shell command, or paste a screenshot of any UI based configuration of containers here
docker-compose.yml
configMore info at https://github.com/pi-hole/docker-pi-hole/ and https://docs.pi-hole.net/
services: pihole: container_name: pihole image: pihole/pihole:latest
For DHCP it is recommended to remove these ports and instead add: network_mode: "host"
server:
If no logfile is specified, syslog is used
control which clients are allowed to make (recursive) queries
access-control: 127.0.0.1/32 allow_snoop access-control: ::1 allow_snoop access-control: 127.0.0.0/8 allow access-control: 192.168.1.0/24 allow
Upstream Servers
forward-zone: name: "." forward-tls-upstream: yes forward-addr: 9.9.9.9@853#dns.quad9.net forward-addr: 149.112.112.112@853#dns.quad9.net
╰─>$ dig sigfail.verteiltesysteme.net @127.0.0.1 -p 5335
; <<>> DiG 9.18.3 <<>> sigfail.verteiltesysteme.net @127.0.0.1 -p 5335 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 51854 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 1232 ;; QUESTION SECTION: ;sigfail.verteiltesysteme.net. IN A
;; Query time: 2766 msec ;; SERVER: 127.0.0.1#5335(127.0.0.1) (UDP) ;; WHEN: Fri Jun 17 01:24:22 +08 2022 ;; MSG SIZE rcvd: 57
╰─>$ dig sigok.verteiltesysteme.net @127.0.0.1 -p 5335
; <<>> DiG 9.18.3 <<>> sigok.verteiltesysteme.net @127.0.0.1 -p 5335 ;; global options: +cmd ;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23492 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 1232 ;; QUESTION SECTION: ;sigok.verteiltesysteme.net. IN A
;; ANSWER SECTION: sigok.verteiltesysteme.net. 30 IN A 134.91.78.139
;; Query time: 2073 msec ;; SERVER: 127.0.0.1#5335(127.0.0.1) (UDP) ;; WHEN: Fri Jun 17 01:24:05 +08 2022 ;; MSG SIZE rcvd: 71
╰─>$ cat /etc/resolv.conf
Generated by resolvconf
nameserver 127.0.0.1 nameserver ::1 options trust-ad