PiHole should be a must

I have installed PiHole on my RPi but haven't yet done any setup in my router to use the PiHole's IP address (actually my RPi IP address right?). Before I proceed with the setup I have some questions...

  1. Currently, there is no blocklist configured, i even de-selected the one which was selected during installation. Can anyone tell me most popular blocklist and where to download from and how to configure Pi to use it? I am guessing it may be just some URL right?
  2. Can I prevent my Firestick from using the Pi ? I use couple of 3rd party apps on my firestick that will not work with ad blocking and I cannot lose access to those apps.
  3. If someone at home complains about something not working on their phone etc (which was working before), how do I troubleshoot and find if the Pi is causing the issue?
  4. If I want to just turn off Pi immediately, what is best way? Turn off the RPi? Change the DNS to something like 8.8.8.8 in router?
  5. On the webpage of PiHole -> Settings -> DNS, i see no ticket mark on left side list of "Upstream DNS Servers" but on right side list of "Upstream DNS Servers", I see entry as "127.0.0.1#5335" under Custom1 (IPv4). Is this correct? Do I need to do anything?
 
raksrules said:
I have installed PiHole on my RPi but haven't yet done any setup in my router to use the PiHole's IP address (actually my RPi IP address right?). Before I proceed with the setup I have some questions...

  1. Currently, there is no blocklist configured, i even de-selected the one which was selected during installation. Can anyone tell me most popular blocklist and where to download from and how to configure Pi to use it? I am guessing it may be just some URL right? You will need to do trial and error, I use the default one, here are some more, I do not know what each does
  2. Can I prevent my Firestick from using the Pi ? I use couple of 3rd party apps on my firestick that will not work with ad blocking and I cannot lose access to those apps. You will need
Click to expand...
https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
https://mirror1.malwaredomains.com/files/justdomains
http://sysctl.org/cameleon/hosts
https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt
https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt
https://hosts-file.net/ad_servers.txt
https://dbl.oisd.nl
https://blocklist.site/app/dl/crypto
https://blocklist.site/app/dl/drugs
https://blocklist.site/app/dl/fraud
https://blocklist.site/app/dl/fakenews
https://blocklist.site/app/dl/gambling
https://blocklist.site/app/dl/malware
https://blocklist.site/app/dl/phishing
https://blocklist.site/app/dl/proxy
https://blocklist.site/app/dl/ransomware
https://blocklist.site/app/dl/redirect
https://blocklist.site/app/dl/scam
https://blocklist.site/app/dl/spam
https://blocklist.site/app/dl/tracking
raksrules said:
  1. to add the DNS in those device manually, if using Router DNS
  2. If someone at home complains about something not working on their phone etc (which was working before), how do I troubleshoot and find if the Pi is causing the issue?
  3. If I want to just turn off Pi immediately, what is best way? Turn off the RPi? Change the DNS to something like 8.8.8.8 in router? Below Group Management you have the disable option
Click to expand...
1623341794975.png

raksrules said:

  2. On the webpage of PiHole -> Settings -> DNS, i see no ticket mark on left side list of "Upstream DNS Servers" but on right side list of "Upstream DNS Servers", I see entry as "127.0.0.1#5335" under Custom1 (IPv4). Is this correct? Do I need to do anything? That means you are using Unbound as your DNS resolver for queries
Click to expand...
 
raksrules said:
I have installed PiHole on my RPi but haven't yet done any setup in my router to use the PiHole's IP address (actually my RPi IP address right?). Before I proceed with the setup I have some questions...

  1. Currently, there is no blocklist configured, i even de-selected the one which was selected during installation. Can anyone tell me most popular blocklist and where to download from and how to configure Pi to use it? I am guessing it may be just some URL right?
  2. Can I prevent my Firestick from using the Pi ? I use couple of 3rd party apps on my firestick that will not work with ad blocking and I cannot lose access to those apps.
  3. If someone at home complains about something not working on their phone etc (which was working before), how do I troubleshoot and find if the Pi is causing the issue?
  4. If I want to just turn off Pi immediately, what is best way? Turn off the RPi? Change the DNS to something like 8.8.8.8 in router?
  5. On the webpage of PiHole -> Settings -> DNS, i see no ticket mark on left side list of "Upstream DNS Servers" but on right side list of "Upstream DNS Servers", I see entry as "127.0.0.1#5335" under Custom1 (IPv4). Is this correct? Do I need to do anything?
Click to expand...
1.
I use the ones here. Only problem I can see is that timeofindia doesn't work.

The Big Blocklist Collection

Pi-hole compatible blocklists for you to have a more enjoyable online presence
firebog.net firebog.net


2. Change Fire TV stick wifi settings and enter 1.1.1.1 as primary DNS and 8.8.8.8 as secondary. Its similar to Android in this regard.

proprivacy.com

How to Change DNS on Fire TV Stick: Easy Method

Want to unlock geo-restricted content on your Fire TV Stick? Our detailed guide shows you how to change DNS settings using a VPN. Click to learn more.
proprivacy.com proprivacy.com

3. I hope you have set Primary DNS as 192.168.1.100 and secondary as 1.1.1.1/8.8.8.8 in your RT-AC68U.
In my case 2nd and 3rd DNS are ISP provided.

1623347052903.png


Then go to pihole web UI> settings>DNS> Enable Conditional Forwarding
1623347128416.png

1623347155810.png



The IP range for you would be 192.168.0.0/24 if I remember your setup.
This way the pihole would show the traffic against each device.

If anyone has trouble you can click on the device, check the outgoing blocked DNS requests and add them to whitelist.
1623347545714.png


4. In piHole web UI you have this option

1623347299484.png


5. Go with this
1623347344358.png



And lastly you can find all of these with a tiny bit of googling. Now that you are on Pi stackoverflow is your father. :p

1623347413315.png
 
Has anyone tried the recursive DNS server with PiHole + Unbound and no external DNS providers.

I'm currently using it but it causes DNS lookup failures (for example, I see unable to reach page for TE and several other domains), is it with the recursive DNS. I dont see anything concerning in query/blocked list.

PS: When I switch from Unbound to Quad9 - I dont see any such issues.
 
tech.monk said:
Has anyone tried the recursive DNS server with PiHole + Unbound and no external DNS providers.

I'm currently using it but it causes DNS lookup failures (for example, I see unable to reach page for TE and several other domains), is it with the recursive DNS. I dont see anything concerning in query/blocked list.

PS: When I switch from Unbound to Quad9 - I dont see any such issues.
Click to expand...
stick to quad9
 
tech.monk said:
Has anyone tried the recursive DNS server with PiHole + Unbound and no external DNS providers.

I'm currently using it but it causes DNS lookup failures (for example, I see unable to reach page for TE and several other domains), is it with the recursive DNS. I dont see anything concerning in query/blocked list.

PS: When I switch from Unbound to Quad9 - I dont see any such issues.
Click to expand...
I also had lots of issues with unbound. Lots of failed queries, sig ok even on fail test domain etc. Failed to resolve even cached domains(pi or unbound cache)

Using cloudflared right now, with cloud flare and google dns for dns over https. Even that isn’t without issue. Cloudflared process is very finicky, lots of ‘unable to reach https errors’. I have given up fixing it, setup a cron job to restart the process every 5 min. No issues so far.
 
Guys block these websites in PiHole with domain as wildcard under Blacklist tab . You would be surprised the amount they ping their chinese owners.
My 90% of total DNS queries are by them only , and i dont use all 3 websites
baidu.com
qq.com
taobao.com

I use a generic FTTH modem with Tenda Mesh setup and have only Samsung and Google phones in hardware . NO CHINESE PHONES STILL.....
 
kuduku said:
Guys block these websites in PiHole with domain as wildcard under Blacklist tab . You would be surprised the amount they ping their chinese owners.
My 90% of total DNS queries are by them only , and i dont use all 3 websites
baidu.com
qq.com
taobao.com

I use a generic FTTH modem with Tenda Mesh setup and have only Samsung and Google phones in hardware . NO CHINESE PHONES STILL.....
Click to expand...
which device is querying these domains?
 
D C said:
which device is querying these domains?
Click to expand...
How to check that ?
It's becoming an issue now with them pinging every 2 seconds . How to stop this Chinese shit ?
 

Attachments

  • Screenshot_20211106-064945_Firefox.jpg
    Screenshot_20211106-064945_Firefox.jpg
    124 KB · Views: 137
  • Screenshot_20211106-064955_Firefox.jpg
    Screenshot_20211106-064955_Firefox.jpg
    114.6 KB · Views: 140
ibose said:
From the screenshot - it's either your system (check in the Win firewall ?) or your router itself. I would not be surprised if it turned out to be the router.
Click to expand...
It could be router , I have iBall/Tenda Mesh setup . Thats why device list is not available . I would be really surprised if its Win Firewall as i havent opened any of these since Win 11 fresh install except yesterday to check
In devices , i have smart refrigerator , washing machine & TV (all from LG ), 2x Google smart speakers , 2 x Firesticks and only Samsung and Pixel phones/TABs + Kindle
It could be Lenovo Google smart Display/Speaker
I am yet to connect smart Bulbs etc stuff

This is a fresh PiHole install at 9 pm yesterday . Earlier it was Adguard which also had same DNS queries . Wanted to check the DNS issue on both GUIs

THIS IS WHEN I HAVE BLOCKED THESE SITES . OTHERS CAN ALSO BLACKLIST THEM & UPDATE PLS


And same thing in AdGuard
2.jpg

9.jpg

8.jpg
 
Last edited:
According to the link I posted, the Tenda products ping these sites. If it's just pings then you can just block them but if it's something else then ...
 
kuduku said:
How to check that ?
It's becoming an issue now with them pinging every 2 seconds . How to stop this Chinese shit ?
Click to expand...
Just checked my pihole for top blocked domains. Clicking on the blocked domains will send you to query logs page with a search for that domain. There you can find which clients were asking for that domain.
 
D C said:
Just checked my pihole for top blocked domains. Clicking on the blocked domains will send you to query logs page with a search for that domain. There you can find which clients were asking for that domain.
Click to expand...
Because DHCP is on MESH router its not showing . Only shows router IP for all queries . Planningto activate pi DHCP to give static IPs , put router in bridge mode and connect using modem
 
kuduku said:
Because DHCP is on MESH router its not showing . Only shows router IP for all queries . Planningto activate pi DHCP to give static IPs , put router in bridge mode and connect using modem
Click to expand...
Ah, my bad. I didn’t see that.
Do mesh systems work only with their dhcp? Can they work if dhcp is from another device?
 
Back
Top