I'm trying to avoid a catch 22 if / when I need to restart the firewall or DNS server. Given my setup (router-on-a-stick with Proxmox running OPNSense), where would you recommend hosting PiHole / AdGuard Home? I think the only available options are another VM or, if necessary, a Raspberry Pi (I have a spare). Trust our default filters, block domains manually, or do both: it’s up to you. Features Ad blocking AdGuard DNS uses powerful filters to eliminate ads and trackers on every connected device. What's the best way to configure this in OPNSense and PiHole / AdGuard Home? I've read about other approaches but these rely on falling back to the OPNSense DNS Servers and I don't see a way to make Unbound use DoH - maybe I'm missing something? AdGuard DNS helps you control your online experience and see what you want to see without exposure to ads, tracking, or malicious threats. I've heard good things about AdGuard Home recently, so I might give that a go instead and see which one I prefer.Įither way, I consider them fulfilling the same role in my network - the ability to manage blocklists for DNS queries on potentially a per-device level.įor queries that are not resolved locally (either via local hostnames, the list of DNS overrides in Unbound, or blocklists in PiHole / AdGuard Home) I'd like to resolve those using NextDNS via DNS over HTTPS. It was OK, albeit a little clunky in some regards. I've played with PiHole before briefly, so understand the basics of getting it set up. According to its statistics, the resolution time was ~5 seconds.Īnyway, I'd like to make a couple of changes, and looking for a little guidance.įirst, I'd like to integrate either PiHole or AdGuard Home. I did try using the recursive resolution in Unbound, but it was unusably slow and would often time out - quite possibly due to our relatively slow / high latency internet connection. It's been working flawlessly since then, but I consider myself very much a beginner still.Īt the moment, I'm using Unbound for DNS, forwarding DNS queries to the IP addresses specified in the system settings (System > General > Networking > DNS Servers) - I'm currently using the NextDNS settings. A couple of months ago, I set up OPNSense running inside a VM on an Intel NUC - the "router-on-a-stick" approach using VLANs.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |