Pi-Hole installation from public release.
Pi-Hole hosts should be configured with static IP's per Pi-Hole documentation.
RedHat based support is experimental and best-effort only.
Settings have been thoroughly documented for usage.
All ports and protocols have been defined for the role.
Hosts should only define firewall rules for ports they need.
Redhat based installs will create a pihole
zone in firewalld
and allow
traffic through.
N/A
For multiple Pi-Hole nodes apply configuration in group_vars and node specific settings in host_vars. Singleton instances can be applied in host_vars.
group_vars/pihole/vars/pihole.yml
pihole_webpassword: '{{ vault_pihole_webpassword }}'
pihole_ad_sources:
- id: 1
address: 'https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts'
enabled: true
comment: 'Migrated from /etc/pihole/adlists.list'
- id: 2
address: 'https://adaway.org/hosts.txt'
enabled: true
comment: 'ansible adlist'
- id: 3
address: 'https://bitbucket.org/ethanr/dns-blacklists/raw/8575c9f96e5b4a1308f2f12394abd86d0927a4a0/bad_lists/Mandiant_APT1_Report_Appendix_D.txt'
enabled: true
comment: 'ansible adlist'
pihole_domain_blocklists:
- id: 1
type: 1
domain: 'choice.microsoft.com'
enabled: true
comment: 'ansible blacklist'
- id: 2
type: 1
domain: 'events.gfe.nvidia.com'
enabled: true
comment: 'ansible blacklist'
host_vars/pihole.example.com/vars/pihole.yml
pihole_pihole_interface: 'eth0'
pihole_ipv4_address: '10.9.9.2/24'
pihole_ipv6_address: ''
pihole_pihole_dns_1: '10.9.9.1#53'
pihole_pihole_dns_2: ''
host_vars/pihole2.example.com/vars/pihole.yml
pihole_pihole_interface: 'eth0'
pihole_ipv4_address: '10.9.9.3/24'
pihole_ipv6_address: ''
pihole_pihole_dns_1: '10.9.9.1#53'
pihole_pihole_dns_2: ''
site.yml
- name: 'pihole servers'
hosts: 'pihole'
become: true
roles:
- 'r_pufky.pihole'
If multiple pihole servers are configured, it is highly recommended to use
serial: 1
. This will apply changes to pihole server individually allowing for
changes to be applied without DNS service interruption.
3.x: FTL Configuration Support
Consumers who have set custom FTL settings should ensure they have set these in *_vars before applying this version. See:
2.x: RedHat Support
1.x: Initial Release
Create a bug and provide as much information as possible.
Associate pull requests with a submitted bug.
RedHat support is best-effort only, and should be assigned to @rkoosaar.