Using PiHole and Unbound?
Want to use Cloudflare with PiHole and Unbound?
Stay tuned and I will show you how
⏱️TIMESTAMPS⏱️
0:00 – Intro
0:49 – What we will be covering
1:11 – Review of where we got started and why
2:59 – Configuring PiHole/Unbound with DoT
6:31 – Testing that DoT and Unbound are working
Enable DNS over TLS with Unbound and Cloudflare
server:
tls-cert-bundle: /etc/ssl/certs/ca-certificates.crt
forward-zone:
name: “.”
forward-tls-upstream: yes
# Cloudflare DNS
forward-addr: 2606:4700:4700::1111@853#cloudflare-dns.com
forward-addr: 1.1.1.1@853#cloudflare-dns.com
forward-addr: 2606:4700:4700::1001@853#cloudflare-dns.com
forward-addr: 1.0.0.1@853#cloudflare-dns.com
Verify this is working after restarting unbound and going to 1.1.1.1/help
# sudo service unbound restart
After restart of unbound, use tail daemon.log to verify everything is working
tail /var/log/daemon.log
Feb 13 13:46:20 DoH-PiHole systemd[1]: Stopping Unbound DNS server…
Feb 13 13:46:20 DoH-PiHole systemd[1]: unbound.service: Succeeded.
Feb 13 13:46:20 DoH-PiHole systemd[1]: Stopped Unbound DNS server.
Feb 13 13:46:20 DoH-PiHole systemd[1]: Starting Unbound DNS server…
Feb 13 13:46:20 DoH-PiHole package-helper[24641]: /var/lib/unbound/root.key has content
Feb 13 13:46:20 DoH-PiHole package-helper[24641]: success: the anchor is ok
Feb 13 13:46:20 DoH-PiHole unbound: [24645:0] info: start of service (unbound 1.9.0).
Feb 13 13:46:20 DoH-PiHole systemd[1]: Started Unbound DNS server.
Feb 13 13:46:20 DoH-PiHole systemd[1]: Started Unbound DNS server via resolvconf.
Different port numbers
DoT traffic uses a dedicated port 853
DoH uses port 443 (HTTPS) due to the protocol layering.
Unbound can use DoH but requires a different compile option
For home use, not sure if this is worth the effort
How to further check how safe your DNS experience is
https://www.cloudflare.com/ssl/encrypted-sni/
How to check the status of Cloudflare’s system
https://www.cloudflarestatus.com/
================================================
*** Show Notes, Links and Resources ****
Here are the items mentioned in this video –
CanaKit Raspberry Pi 4 2GB Basic Starter Kit with Fan (2GB RAM)
https://amzn.to/35QBB8I
$63
———————————–
Click on this link to get the
SmartHome Account Creation Checklist
http://eepurl.com/go4fVP
➥➥➥ SUBSCRIBE FOR MORE VIDEOS ➥➥➥
Never miss a video about creating your own smart home
Subscribe ⇢ http://ronaldnutter.com/subscribe
To listen to an audio version of this episode while driving, TechBytes with Ron Nutter is available on iTunes, Google Podcasts, Stitcher and TuneIn. Go to TechByteswithRonNutter.com to subscribe today!
To subscribe to the TechbytesRN newsletter, click here – http://ronaldnutter.com/sample1
In return for subscribing to the newsletter, I will send you a chapter from my first DIY Smart Home Guide Book.
Visit http://www.ronaldnutter.com to see all the books Ron has written
DISCLAIMER: This video and description contains affiliate links, which means that if you click on one of the product links, I’ll receive a small commission. This helps support the channel and allows me to continue to make videos like this. Thank you for the support!
*===============================*
Become a Patreon supporter
https://www.patreon.com/techbytesrn
*===============================*
#TechBytesRN #smarthome #RaspberryPi #PiHole #UnBound #Cloudflare
Podcast: Play in new window | Download
Subscribe: Apple Podcasts | TuneIn | RSS