Posted: Sat May 12, 2018 22:23 Post subject: Pi-hole and VPN Server
I run DD-WRT (r35916) on a Linksys WRT1900ACS V2. I have a Raspberry Pi 2 running Pi-hole as a DNS server. Moreover, I am doing DNS-Over-HTTPS using the argo-tunnel tool cloudflared (https://bendews.com/posts/implement-dns-over-https/).
Now I'd like to set up a VPN server on the same Raspberry Pi 2 for very occasional use when I'm on travel. I plan on doing so using the PiVPN script (https://pimylifeup.com/raspberry-pi-vpn-server/). I'm only going to port forward on the router when I'm on these trips, basically because having open ports is a bit spooky as far as I'm concerned.
My question is as follows: Given my DNS server is performing DNS-Over-HTTPS by setting server=127.0.0.1#5053 in files in /etc/dnsmasq.d per the link above, when I am running through the VPN setup with PiVPN and am asked to set a DNS provider, do I give a custom provider of 127.0.1#5053? Will the PiVPN script accept the port number as such? And, importantly, is there anything I am missing with the feasibility of using Pi-hole, DNS-Over-HTTPS, and a VPN server on the same Raspberry Pi?
Not clear what any of this has to do w/ dd-wrt. All the "action" is on the RPi.
Admittedly, I may have broke protocol a bit with this question largely because I've found the denizens of this forum to be very sharp when it comes to all questions related to networks.... Thanks for your help. _________________ FIRMWARE: 6-20-2018 - r36168
MODEM: ARRIS SURFBoard SB6183
ROUTER: Linksys WRT1900ACS V2
ISP: TWC Spectrum 100 Mbps Download | 10 Mbps Upload
SERVICES: IVPN OpenVPN Client
Posted: Fri Jun 01, 2018 13:51 Post subject: Re: Pi-hole and VPN Server
slimbrick87 wrote:
I run DD-WRT (r35916) on a Linksys WRT1900ACS V2. I have a Raspberry Pi 2 running Pi-hole as a DNS server. Moreover, I am doing DNS-Over-HTTPS using the argo-tunnel tool cloudflared (https://bendews.com/posts/implement-dns-over-https/).
Now I'd like to set up a VPN server on the same Raspberry Pi 2 for very occasional use when I'm on travel. I plan on doing so using the PiVPN script (https://pimylifeup.com/raspberry-pi-vpn-server/). I'm only going to port forward on the router when I'm on these trips, basically because having open ports is a bit spooky as far as I'm concerned.
My question is as follows: Given my DNS server is performing DNS-Over-HTTPS by setting server=127.0.0.1#5053 in files in /etc/dnsmasq.d per the link above, when I am running through the VPN setup with PiVPN and am asked to set a DNS provider, do I give a custom provider of 127.0.1#5053? Will the PiVPN script accept the port number as such? And, importantly, is there anything I am missing with the feasibility of using Pi-hole, DNS-Over-HTTPS, and a VPN server on the same Raspberry Pi?
Thanks.
If this is still an issue, then here's what you need to do in your openvpn server.conf
push "dhcp-option DNS <pi-external-ip>"
Ex: push "dhcp-option DNS 192.168.1.25" (if pi is on 1.25).
All other push "dhcp-option DNS... lines should be commented.
Also, open vpn on Pi gives you pathetic performance and bandwidth due to weak hardware. Try shifting openvpn server to any x86 box and you will see major improvement in performance.