Replying to Avatar Derek Ross

Happy #FOSSFriday! Today, we're going to talk about another piece of software that I've used for a few years. Pi-hole.

Pi-hole is a free and open-source DNS sinkhole that helps to block ads and trackers on your network. It works by intercepting DNS requests from your devices and redirecting them to a local server that has been configured to block ads. This can significantly improve the performance and privacy of your network.

Pi-hole is a software application that can be installed on a Raspberry Pi or other compatible device. You can even install it via certain "node" OS platforms like Umbrel. It is very easy to set up and use, and there are many tutorials available online.

To use Pi-hole, you will need to configure your devices to use it as their DNS server. This can be done on most devices by going to the network settings and changing the DNS server to the IP address of your Pi-hole device or by simply configuring your router's LAN's DHCP settings to use the Pi-Hole.

https://pi-hole.net

Avatar
armstrys 2y ago

Don’t forget pihole combined with Tailscale magic DNS to get blocking on the go!

I also recommend installing unbound during the pihole installation to make your server also handle the DNS resolution. Easy, better privacy, I never noticed a performance drop.

Reply to this note

Please Login to reply.

Discussion

Avatar
Derek Ross 2y ago

this is a good idea. thanks for the recommendation.

Avatar
Enki 2y ago

+1 for unbound.

Avatar
armstrys 2y ago

I should have said Tailscale “nameservers” not MagicDNS. Setting a Tailscale nameserver lets you route the DNS requests back home without routing all data through your home network.

Avatar
Derek Ross 2y ago

i knew what you meant :) ive played with their MagicDNS.

de
nobody 2y ago

Tailscale has some performance drawbacks. If you have the skills to host things yourself, wireguard will give you the best performance. I use this container and it's so good https://github.com/wg-easy/wg-easy

de
nobody 2y ago

But I otherwise have the same setup: pihole, unbound, VPN is the mobile on the go powerhouse set up.

Avatar
armstrys 2y ago

Thanks for the setup! I’ll definitely look into it. Tailscale is just so damn easy :)

de
nobody 2y ago

You bet man!

Wireguard can run in kernelspace which will be faster than Tailscale which runs userspace wireguard. Worth it for me because I have cloud instances connecting to home for things and need the speed. If you're just doing normal browsing you likely wouldn't notice.