Excellently done. 1. No annoying "background" music to distort the information 2 no annoying picture in picture of anyone during the actual screen shots. 3. No pointless digressing about various subjects having nothing to do with the topic at hand. These three earned you a like and a sub. Looking forward to more tutorials.
The thing is, the stuff you mentioned is what people strangely prefer to see. Just look at how few subs he has for being direct and straightforward while RU-vidrs that talk nonsense for 15 minutes have millions of subs. Makes no sense
After two videos you've become my favorite tech guide. Clear, to the point, no hype, no sales pitch. I know if I click one of your videos I'm going to learn what I need to know to at least get a solid start on a project.
Comprehensive guide, easy to understand and straight to the point. That's one of the best tutorials I ever saw, thank you very much. P.S. The cached DNS thing was driving me mad 😂
Great video! If you don't want a dedicated server for pi-hole but would like to run it along with other applications it really works great in a docker container as well. A bit more configuration work to get the network settings for the container right but then it works like a charm. Plus updating is really easy.
Amazing video! Great content, really useful, no asking for subscriptions before even presenting the content (this drives me mad!!!), no adds (which would be funny considering the content of this particular video ;)) and top-notch production level (audio and video). WELL DONE and thank you!!!!🙏
The reason why the "Yeti" cooler ad was blocked was: it was attached to an ad url. If she went directly to Yeti, she could have gone to their cooler section and seen the product. Great video
I got my pihole to actually work for the first time ever. The best video i saw on the topic yet and your voice is soothing and chill. Loved it. You are gonna go far man!
Primary/Secondary aka ‘backup’ DNS servers are NOT guaranteed by all clients to behave the way you appear to be assuming; if a client decides for whatever reason to use the ‘secondary/backup’, there’s a high probability it will continue using that DNS IP for the foreseeable future! We have 2 x PiHoles in our network, with the DHCP DNS set to each of them, so even if 1 PiHole goes belly-up, the other is still providing PiHole filtering.
For sure. Most OSes have a way to force a reset to the DNS state. The specific issue I highlighted with primary/secondary relates to how Chrome itself deals with the servers. It actively seeks out a server in the list that supports DNS over HTTPS.
@@tech_craft Just to clarify, the point I was trying to make is that if you add non-PiHole DNS IPs to your router’s DHCP config (like you did in your example for 3rd & 4th, IIRC), will result in some of your devices some of the time using those non-PiHole DNS servers potentially for lengthy periods of time, and thus not being filtered per PiHole adblock lists, because some TCP/IP stacks no longer ‘prioritise’ their use of DHCP-provided DNS servers, more like “try it and if it work, stick to it. then later if that one stops working, move on to the next”. IOW, adding non-PiHole DNS IPs to your DHCP config will leave ‘holes’ in your PiHole coverage for some of the devices some of the time.
I really like your video. As others have noted, they’re clear and enjoyable. I still have loooots to learn when it comes to the command line etc., but can’t wait to learn. I’ll start by exploring your pi+ipad videos afterwards. Thanks for all the knowledge! 🙌
Is there some reason why you even have IPv6 on your network? As far as I know, unless you are in the enterprise world, there is no need to use anything other than IPv4, especially on home networks.
I haven't used Private Relay so I can't say for sure. I think some part of PR is DNS over HTTPS/TLS so that will definitely interfere with Pihole's ability to block that traffic.
Great video on setting this up will have to create groups . One question if you have different VLAN's and you want those other VLANs to use the pi-hole do you make the change in the default network by entering the IP address of the pi-hole ? Is that the only place or do you enter it under the "internet" section? That's where I'm lost or having a hard time understanding. . Keep up the great work.
Do you know any reputable sellers where I can buy a pi-hole? I really don't want to go through the trouble of building this and dicking around with the software. I just want to buy a few of them, and set them up at my place, and give some to my family.
The way of adding no block client is great by mac address at 13:45 . But iPhones have a option to randamize the Mac addresss and mostly this option is on by default. So the Mac address might change randomly. How do you go about reserving such devices?
There are many videos out there that show how to install pi-hole but not many that go into how to tune the blocklists as this one does, so well done. I'll bookmark this. One question about the unbound. You were using Cloudflare dnssec before you configured unbound. Since Cloudflare is using dnssec, isn't that just as secure as using the unbound, which is also using dsnsec? If not , what's the difference?
DNSSEC ≠ Unbound . Unbound supports and can utilize DNSSEC. DNSSEC is encrypted DNS requests, an analogy being "https" encrypted websites. Normal DNS traffic is unencrypted, like visiting a "http" website. The encrypted DNS requests are sent to a DNSSEC capable service provider chosen in the DNS Settings with tick boxes such as Google, OpenDNS, Level3, etcetera. Unbound is a DNS lookup server, that queries the "dot" ( . ) controllers as to whom has the requested address, recursively. Your DNS requests are not being serviced by an upstream provider anymore, like the ones you can select under DNS Settings. It is instead being serviced by the Unbound service that is installed. I am actually surprised it worked without importing the root.hints list from internic.net, which has the initial lookups for the root domain ( . ). If you decide to install unbound, I suggest you follow the instructions provided in the pi-hole documentation. I would also at the very end run "systemctl enable unbound", as well as "systemctl enable pihole-ftl" to have the services start automatically at system boot. Unbound usually does not if installed manually, even following directly the documentation from their website. For block lists, searching on GitHub for a combination of the terms "block list, pi-hole, pi hole, web filter, filter list, advertising block list, *insert operating system or web application of choice* block list", you will find many results. Select some that seem to be more up to date for best results. Many lists ebb and fade, losing additions or maintaining.
great video! however the router setup is the same as others, just plug the Pi-Hole IP as the DNS server and everything works. This breaks the internet for me. My router requires 2 different DNS servers so I have 2 Pi-holes running. when i have 1 as primary DNS and google as secondary I can access the internet on devices however I have no add blocking. When I set both Pi-Holes as primary and secondary every device breaks and will connect to the router but has no internet access and I cannot connect to anything, even after a router restart. No tutorial has helped with this issue and no help forum has helped with this issue. I do not get what is going wrong.
Hi, I installed with windows and docker, but now I'm lost now that it's installed. I tried to follow along with your tutorial and a few others, but where I get lost is what to do with my IP address? Do I need to go change something in my settings? I vaguely understand that I have to set it as a single address instead of letting the computer decide, but you can assume I'm the most beginner of beginners. It seems like it is working but I just don't have the same menus as you other than the web interface. Thanks in advance if you have any advice, and no worries if you don't!
Great video, but I hit wall. I cannot change the DNS setting on the router that my ISP provided, and I'm looking for a alternative. I'm seeing some people disabling the DHCP server from the ISP and using the one from Pi-hole. Is it viable?
Superb video. Thank you. Quick question. Is it worth running two pi holes on separate Pis so that you have a backup in case one fails. / they can share the load? If so - what’s the best way of doing so?
You definitely can and plenty of people do. You can set up your router to hand out both the two IP addresses so that your machines can see both Piholes.
I have pi-hole installed on my ubuntu home server, but I can't seem to get anything to go through it. All queries are at 0 and I keep seeing ads. ... okay, i'm getting queries on the dashboard, but nothing is being blocked.
I created a second group for one family member who keeps complaining, but somehow it still blocks him from opening the google ads products. I even tried to add some whitelist regex and domains for those domains and assign it to the NoBlocking group, but no success. :( What am I doing wrong?
Nice video. One question. I do have a dream machine pro and I activated the DNS filtering. Would be good to run both filters at the same time? Or replacing the Ubiquity filter with pihole?
The pihole endpoint is not available on the public Internet and I'm using a secure connection to a trusted upsteam (1.1.1.1) so the attack surface is greatly reduced. I'm not qualified to say it's zero, but I think this is a fine setup.
Beware: Pi-hole clobbered Netflix and RU-vid on my Alexa-based smart TV (FireTV Omni), using the default blocklist. Title thumbnails don't load reliably, and videos randomly don't play on both services. I turned Pi-hole off, restart the TV, and all is well. Phones and tablets in the house *seemed* to work fine.
Far too many people put a list together and never bother checking or keeping it updated. Most of the things they block are required because they misunderstand what they are for. One example was blocking everything microsoft as it spied on people, which was a stupid thing to do as most of the sites were needed. People even block update servers for LG and Samsung due to a lack of intelligence. You are best sticking with default lists only, or searching for whitelists. The whitelists should be used to remove those addresses from all known lists by stupid people putting lists of 1million plus domains out.
You wrote in the title that this is a complete tutorial, but you even did not show where to connect a Raspberry computer to my home Internet network and how. Another tutorial for advanced people who know everything and only need details. There is no step-by-step tutorial anywhere on the Internet. They are all the same, they only show the configuration assuming the user knows everything, no one covers the basics.
I was looking for a pi-hole tutorial, but you speak way too fast for this non-native English speaker. I could slow the video down I suppose, but I prefer to look elsewhere for a more intelligible tutorial. Just as an FYI.
@@tech_craft True but it feels half baked. One reason (of many) to use a graphical interface is to be welcoming to those who don't do well with the command line. Having to go back to it defeats that reason
@@lewiskelly14 One of the many great reasons to use open source software is that you are completely free to write your own interface for the task at hand so that you are completely satisfied with it without complaining about the provided free solution.