piHole installieren
Avahi installieren
# Avahi installieren
apt-get install avahi-daemon
# Hosts Datei anpassen
nano /etc/hosts
### Eintragen
# Als zweite Zeile
127.0.0.1 phihole.local
# und in PVE
pihole.local abändernRepository hinzufügen
apt install software-properties-commonPiHole installieren
curl -sSL https://install.pi-hole.net | bashUnbound installieren
https://docs.pi-hole.net/guides/dns/unbound/
>
We will use unbound, a secure open-source recursive DNS server primarily developed by NLnet Labs, VeriSign Inc., Nominet, and Kirei. The first thing you need to do is to install the recursive DNS resolver:
sudo apt install unbound
If you are installing unbound from a package manager, it should install the root.hints file automatically with the dependency dns-root-data. The root hints will then be automatically updated by your package manager.
Optional: Download the current root hints file (the list of primary root servers which are serving the domain "." - the root domain). Update it roughly every six months. Note that this file changes infrequently. This is only necessary if you are not installing unbound from a package manager. If you do this optional step, you will need to uncomment the root-hints: configuration line in the suggested config file.
wget https://www.internic.net/domain/named.root -qO- | sudo tee /var/lib/unbound/root.hints
Konfiguration von pihole.conf
Für DNS over TLS
/etc/unbound/unbound.conf.d/pi-hole.conf
server:
use-syslog: yes
do-daemonize: no
interface: 127.0.0.1
port: 5335
access-control: 127.0.0.0/8 allow
cache-min-ttl: 3600
cache-max-ttl: 86400
prefetch: yes
qname-minimisation: yes
harden-below-nxdomain: yes
harden-referral-path: yes
forward-zone:
name: "."
forward-tls-upstream: yes
forward-addr: 194.242.2.3@853 # Mullvad
forward-addr: 94.140.14.14@853 # Adguard
Nahc dem ändern mit sudo systemctl restart unbound neu starten