PiHOLE
Purpose: Trusted and Filtering Feature Domain Name Resolution Solution: Pi-hole (https://pi-hole.net/) OS: Debian GNU/Linux 12 (bookworm)
preparations:
setup
# Pi-hole Automated Installer
This installer will transform your device into a network-wide ad blocker!
[OK]
# Open Source Software
The Pi-hole is free, but powered by your donations:
https://pi-hole.net/donate/
[OK]
Decide and assign static IP address
# Static IP Needed
The Pi-hole is a SERVER so it needs a STATIC IP ADDRESS to function properly.
IMPORTANT: If you have not already done so, you must ensure that this device has a static IP.
Depending on your operating system, there are many ways to achieve this, through DHCP reservation, or by manually assigning one.
Please continue when the static addressing has been configured.
[Continue]
# Select Upstream DNS Provider. To use your own, select Custom.
(*) Cloudflare (DNSSEC)
# Blocklists
Pi-hole relies on third party lists in order to block ads.
You can use the suggestion below, and/or add your own after installation.
Select 'Yes' to include:
StevenBlack's Unified Hosts List
[Yes]
# Enable Logging
Would you like to enable query logging?
[Yes]
# Select a privacy mode for FTL. https://docs.pi-hole.net/ftldns/privacylevels/
(*) 0 Show everything
[Continue]
# Installation Complete!
Configure your devices to use the Pi-hole as their DNS server using:
IPv4: 10.166.0.2
IPv6: Not Configured
If you have not done so already, the above IP should be set to static.
View the web interface at http://pi.hole/admin:80 or
http://10.166.0.2:80/admin
Your Admin Webpage login password is (superpass)
Configure admin dashboard listening port
vi /etc/pihole/pihole.toml
Let's disable IPv6, disable HTTP and swap HTTPS port
# port = "80o,443os,[::]:80o,[::]:443os"
port = "445os"
Restart service and check port has been changed
systemctl restart pihole-FTL
ss -ntap | grep hole
No Comments