I just use ublock origin
mullvad!
Specifically DNS? I have a Pi-Hole on my home network that is configured as a recursive resolver, and a second Pi-Hole on my personal VPN server (same).
Pi-hole for my home network. NextDNS on my phone.
Can I run pihole on the same Pi that’s already running Octoprint?
Sure! If you’ve got that pi on all the time. I previously did that and it worked well. My current setup is multiple pi’s though, cause the octo pi is switched off with the printer now…
Yes, I leave it running all the time. So do I just install PiHole as a package on the server and then connect to it to configure?
I had it setup using docker at the time. Both pihole and octoprint as individual containers…
But I assume you should be able to just install and run the package locally on the octopi distro.
Only thing you might need to change is the configuration for which port the pi-hole web server (UI) will be running on. Because octoprint already uses Port 80 by default, you might have to assign another port for the pi-hole service. (I believe it also defaults to 80. That would crash because it can’t bind to the same port). That should be a pretty simple config change though.
Just did a quick Google… There are some resources and tutorials online of people doing exactly that. Take a look!
Thanks, guys! I’ll set this up soon.
Pi Hole with a few good block lists…
Which block lists?
Out of the box, pihole has a few block lists already set up. Those are pretty good already.
To add more, you can find some good block list collections online. No need to add them all. Pick a good handful, depending on the category of stuff you want to block. Here are some helpful links:
https://github.com/lightswitch05/hosts
… Once you got a few block lists set up, you’ll probably want to whitelist some things specifically, that are otherwise caught up in the filter. This is a super helpful resource for that:
https://discourse.pi-hole.net/t/commonly-whitelisted-domains/212
There’s a script on github (don’t have the link right now) for an automated whitelist. I was expecting it to break some things or end up useless, but it was the perfect addition for me Edit: https://github.com/anudeepND/whitelist
Yup. Another piHole user.
Also using this on the go through VPN
Same.
Same. Wireguard is a beautiful thing.
Which VPN service? I normally use Tailscale with the Pi as an exit node, but I’d like to have simultaneous VPN connection
I think people just use wireguard for this. And pivpn.
Interesting. I’ll have to look into PiVPN. Thanks!
Same here. Wireguard.
NextDNS
Why?
For me, Nextdns. It’s mostly because I can choose which list is used by the dns blocking. If adguard has a lost blocking what I use, I can’t do anything about it. Or maybe like allow a lot of domains.
Using the Hagezi pro++ list currently and it works damn well without any issues for me.
Also, there is a free way to use it (not sure about adguard).
I was able to test it out first without having to create an account and I liked it. It has simple Ad/Tracking blocklists and supports both DoT and DoH. Also it has rewrites (like
/etc/hosts).
im using cloudflare doh as upstream. and setting my own dns server (dnsmasq) with ad block hosts on my router
I use two across different devices.
Both offer DNS over TLS and both are privacy focused which was why I decided to use them.
Does DNS over TLS have any advantages over DNS over HTTPS?
Not really and some would argue that from a local network perspective HTTPS is preferable.
The main difference is that HTTPS routes through a standard port so gets “lost” in all other Https traffic whereas TLS uses a distinct port so whilst it’s encrypted you would be able to see at the local level that you’re using DNS over TLS but not what you’re doing.
Thanks for the explanation. Doubt I would have found such a simple answer if I went searching.
Control D
NextDNS, plus Ublock Origin on any web browser.
NextDNS. Several years now. It’s absolutely brilliant.
Just use pihole the rest is just a honeypot
What abt adgaurd home?
Still a bit sussy ( bit better ). Its a FOR profit Corporation. ( how do they do their money? ). I am unsure if its open source, if it is then i think its good too.
Ok its good. Then its good too, pihole stays my favorite in all cases but if you dont like it you can use that :)
One thing i like about adgaurd is DNS-over-HTTPS, DNS-over-TLS, and DNSCrypt
dns over https is possible over pihole
Adguard home for everything
If you are the “VPN to home, always on” user, go for pi-hole.
Adguardhome has it’s strengths when it comes to DoH, DoT, Quic usage.
Not sure if this counts, but I run DNS66 on my phone, and it works pretty well
