Saturday, February 1, 2020

Putting Pi-hole to work

I've been reading about my friends' use of Pi-hole on their home networks, and I've been curious about trying it to see how well it does. I've resisted doing so, primarily because of the single point of failure a pi-hole system represents: if it's unavailable, you get no DNS.

And we all know, it's never DNS...except when it is.

An alternative, naturally, it to run a pair of systems. Why not? Raspberry Pi devices are relatively cheap, and the software is all no-charge.

For most home users, that might be fine, but I run a lab in my home that also provides services to the household, so I had more permutations to worry about: what happens if my Pi dies? what happens if my domain controllers are unavailable? Etc.

The solution I've settled on is to run a primary Pi-hole server as a VM in my lab environment—which gives me more than enough performance and responsiveness, even under the most demanding of situations—and a secondary with a Raspberry Pi, so that even if the VM environment goes "pear shaped," I still get DNS resolution.

In order to accommodate several types of outages, yet avoiding the need to both double-up the configuration work (with the potential of missing an update and having weird results to troubleshoot) while providing pre-configured support for a couple of likely failure and maintenance scenarios, I've mated the two systems together in a failover cluster by configuring the "keepalive" daemon along with some scripting to keep the two systems in sync for the blocking function, while leaving some configuration elements (upstream DNS servers for one) independent of each other.

I didn't do the "heavy lifting" on the sync and keepalive aspects; those were provided by reddit user Panja0 in this post: https://www.reddit.com/r/pihole/comments/d5056q/tutorial_v2_how_to_run_2_pihole_servers_in_ha/

I'm running ubuntu server 19.10 (Eoan Ermine... whatever) instead of Raspbian Stretch/Buster, so there have been a number of changes I've had to make to the systems to adapt:

  • To get keepalived installed, I needed libipset11, not libipset3 (mentioned in the comments of the HA tutorial)
  • I had to modify the rsync command arguments in the synchronization script due to changes between Debian versions that I'm running versus the original post (mentioned in the comments of the HA tutorial)
  • I had to permit my rsync user to skip password re-auth by editing the sudoers file; I think this may also be a version-specific issue.
  • I added an NTP client to utilize my GPS-based hardware time server; this is super important when using a Raspberry Pi without a real-time clock HAT add-on.
  • The primary system uses the lab's DNS (domain controllers) for its upstream DNS servers. In addition to avoiding the need to configure additional conditional forwarding rules for dnsmasq, this gives the Pi-hole server the identity of the clients via DNS
  • The secondary uses OpenDNS servers—I have a household account with several filtering options enabled already—with a dnsmasq configuration for conditional forwarding on the domain.
Given my homelab, it was pretty trivial to set this up as a VM, but what really sold it to me was getting the Raspberry Pi running in concert. I originally started with a Pi 3 Model B that I had lying around after an old project that I'd quit, but the performance difference between the two platforms was so noticeable that going with a true primary/secondary setup made the most sense. I considered upgrading to the Pi 4, but decided that my desire to avoid purchasing micro-HDMI adapters outweighed the value in the more-robust, newer model. I did decide to go ahead and upgrade from the 3 to the 3+, however, when I discovered that my local MicroCenter had them for $34US; I also paired the new unit with a passive heatsink case, which has allowed the Pi to run significantly cooler (30°F) than the original setup, which utilized aluminium heatsinks and a non-vented plastic case.

Aside from this "vanilla" setup, I also took note of the additional block lists that my friend Tim Smith wrote about in a blog post. I need to let this "bake" for a while before considering it finished, but I'm liking what I'm seeing so far.

137 comments:

  1. Tamil sex stories - These sex stories is only for entertainment purpose. Here you can find best sex stories in your language. Share these Indian sex stories with your friends also.
    https://tamilkamaverihd.net/tamil-sex-stories/

    https://tamilkamaverihd.net/tamil-kamakathaikal/

    https://tamilkamaverihd.net/tamil-dirty-stories/

    ReplyDelete
  2. Certainly Norton Antivirus software is the most preferred and reliable application for keeping our data and resources completely secure from online threats because of its safety and security. Being a user of this software if you are having technical issue and looking for assistance then call us at norton.com/setup support number.
    office setup
    www.office.com/setup
    mcafee setup
    mcafee.com/activate
    mcafee activation
    norton com/setup
    norton setup
    norton.com/activate

    ReplyDelete
  3. In case you credit card is not functioning well and you are facing technical issues and errors then get assistance from our experts. We can help you in all such issues and best way to get instant help.
    boa login
    boa sign in
    citibank credit card login
    citibank login
    social security login
    my social security
    social security login
    my social security

    ReplyDelete
  4. When you are unable to open myaccountaccess or it is not functioning properly then call our support teams. At any point of time when you are having technical issues and errors or facing some suspicious activities like hacking, spamming and more then immediate call to our agency. We are available 24X7 to assist all .
    myaccountaccess.com
    www myaccountaccess com
    myaccountaccess.com
    www myaccountaccess com
    myaccountaccess.com
    www myaccountaccess com
    myaccountaccess.com
    www myaccountaccess com
    myaccountaccess.com
    www myaccountaccess com

    ReplyDelete
  5. Ki Residencesby Hoi Hup & Sunway JV. Hotline 61008187. Get Discounts, Direct Developer Price, Brochure, Floor Plan, Price List & More.

    ReplyDelete
  6. Sometimes, learning the Java programming through books alone are not enough. For some people, the delivery of book material is sometimes difficult to understand

    ReplyDelete
  7. They sometimes juggle several sales and several renovations at any given time. It is important to know that there is an art learning how to flip a house and make a profit instead of losing money.Westminster Finance
    Westminster Finance
    Westminster Finance
    Westminster Finance
    Westminster Finance

    ReplyDelete
  8. Hi, your blog is amazing. I feel happy after visiting your blog. thanks for sharing such type of info. keep it continue and share some other amazing tips and tricks kinemaster without watermark

    ReplyDelete
  9. wowhh keren banget informasinya bang media pwhm

    ReplyDelete
  10. This tablet is absorbed into your blood approximately 30 to 60 minutes after the intake and start acting on your system by inhibiting the enzyme PDE5 (phosphodiesterase type) found in penis.
    Kamagra
    Kamagra
    Kamagra
    Kamagra
    Kamagra
    Kamagra

    ReplyDelete
  11. very good information. it's so helpful.Understanding Contract Manufacturing A business unit with a proficient design but lacking in key manufacturing skills or bandwidth to handle large consignments might seek to enter into contract with a manufacturer that is skilled at the manufacturing process. A manufacturer may outsource one or more tasks of the production process to a third party.Custom Gear Manufacturing
    From designing to the end product, any scaled-down process that is outsourced would be bound by Contract Manufacturing.

    ReplyDelete
  12. Javelin Male Enhancement overall good health is important to good healthy sexual living. Review your current health and medications with your doctor, eat right and get plenty of exercise, then consider natural male enhancement products if needed.Female sexual enhancement pills, female libido enhancers and other similar products will be the subject of a future article.Disclaimer: The Erectile Dysfunction (ED), Male Impotence and male enhancement pill

    ReplyDelete
  13. Amazing job done from your side. Thanks for sharing
    https://premiumcrack.com/manycam-pro-crack/

    ReplyDelete
  14. Vitrexotin RXincluding the penis. It helps to correct atheroscerosis, hypertension and depression,

    ReplyDelete
  15. Vigrafirmt Male Enhancement
    ion or Male Impotence treatment you choose, prescription drugs or a natural male enhancem

    ReplyDelete
  16. facilities. If you have a health care facility to manage, make sure you get the best air purifiers to meet your needs on a regular basis.Keto Plus Pro

    ReplyDelete
  17. Flexuline a professional. Make sure that you install air purification units that are easy to install, inspect, monitor and repair. Before you get one, it is important that you consult a good professional.

    ReplyDelete
  18. I was able to find good information from your zzzoomer articles.

    ReplyDelete
  19. Nutrapharmex Keto
    shedding off excess pounds and which is gaining popularity these days is the detox weight

    ReplyDelete
  20. Spot on with this write-up, zzzoomer I seriously believe this website needs much more attention. I’ll probably be returning to read more, thanks for the advice!

    ReplyDelete
  21. Ciagra Male Enhancement including the penis. It helps to correct atheroscerosis, hypertension and depression, absentmindedness and memory problems. Ginkgo also protects against oxidative cell A

    ReplyDelete
  22. Nutrapharmex Keto However, if you are sick and tired of being confused, tired of taking the weight off only to put it back on, and tired of wondering how to take the first steps to deciding the right diet

    ReplyDelete
  23. facilities. If you have a health care facility to manage, make sure you get the best air purifiers to meet your needs on a regular basis Cartel Health

    ReplyDelete
  24. about what you put Exceptional Keto into your body, and not base your decision upon taste alone. Unfortunately, the majority of people base their beverage choices on taste and usually upon

    ReplyDelete
  25. This is really looks good...
    UV-C Room Top

    ReplyDelete
  26. Exceptional Keto and philosophical approach employs their proprietary Adaptive Coaching Process. The organization's

    ReplyDelete
  27. Pretty! This has been an extremely wonderful article. Thank you for providing this information.viablequran.com

    ReplyDelete
  28. https://canstretch.com/how-to-write-a-procedure-essay-stage-by-phase-manual/
    https://bernizilla.com/how-to-write-down-a-system-essay-move-by-stage-guide/
    https://butonwood.com/how-you-can-title-an-essay-complete-guidebook/
    https://kickoff0bet789.com/the-best-way-to-title-an-essay-comprehensive-information/
    https://downupyoyo.com/the-most-beneficial-essay-subjects-tips/

    ReplyDelete
  29. https://planetvaporok.com/the-top-essay-topics-ideas/
    https://shutterhedge.com/how-to-put-in-writing-a-conclusion-for-an-essay/
    https://esabl.com/top-rated-ideal-assignment-crafting-expert-services/
    https://agories.com/top-rated-greatest-assignment-creating-providers/
    https://doultonuse.com/how-to-write-a-rhetorical-examination-essay/
    https://cardexco.com/how-to-put-in-writing-a-rhetorical-assessment-essay/

    ReplyDelete
  30. Italian products online The fish heart, dried and salted, is a forte of Sicilian and Sardinian food, like bottarga and increased in value by admirers of fish. The preparing of the core of fish is like that of fish roe. The heart is salted and put between two tables under a press. Following 20 days it is set to dry in the shade, in a ventilated region. The relieved fish heart has a solid taste, thusly it doesn't need exceptional flavoring. It is utilized in hors d'oeuvres, simply prepared with additional virgin olive oil, in plates of mixed greens or ground chips on pasta.

    ReplyDelete
  31. Grana Padano The fish heart, dried and salted, is a forte of Sicilian and Sardinian food, like bottarga and increased in value by admirers of fish. The preparing of the core of fish is like that of fish roe. The heart is salted and put between two tables under a press. Following 20 days it is set to dry in the shade, in a ventilated region. The relieved fish heart has a solid taste, thusly it doesn't need exceptional flavoring. It is utilized in hors d'oeuvres, simply prepared with additional virgin olive oil, in plates of mixed greens or ground chips on pasta.

    ReplyDelete
  32. Grana Padano One thing about Italian food is the regional variances. Pizza and pasta types vary from region to region as do such things as breads. Within these regional variances certain areas of Italy do things better than others, whether it be because of the terrain or the climate different products are associated with different areas, such as Parma ham from Parma, pizza from Napoli, meat dishes from Turin and fish dishes from Sardinia.

    ReplyDelete
  33. Hire our expert mobile app developers within your budget now.
    Hire App Developers Indore

    ReplyDelete
  34. Are you looking Best digital marketing agency in Indore!!
    Best Digital Marketing Agency Indore

    ReplyDelete
  35. Parmigiano Reggiano One conventional utilization of an entire Parmigiano Reggiano head is to utilize it as a serving pot. On uncommon events, when one has many visitors to serve (culinary fairs, feasts, huge parties) the entire head is spent and altogether burrowed out so the exposed outside layer stays, steaming pasta would then be able to be poured in it and served from in that.

    ReplyDelete
  36. Thank you for sharing, and nice articles you have here buy painkillers online moreover the admin of this site has really worked hard for all this once more thanks for sharing your articles.We decided that the "stroad" bike lane on Delaware Ave was not good for families so we used the river route to the park.
    mobile price in bd

    ReplyDelete
  37. You did an amazing post.
    https://cds-key.com/wonder-share-pdf-element-crack/

    ReplyDelete
  38. Leading Python Training courses Provider in London.
    python course london

    ReplyDelete
  39. Join David Hoffmeister and the Living Miracles Center team as they teach the miracle of forgiveness from A Course in Miracles in a practical way.

    Living Miracles is a devotional community dedicated to Awakening/Enlightenment. Our path is based on the mystical teachings of Jesus as found in "A Course in Miracles" and as demonstrated by modern-day mystic David Hoffmeister. As messengers of peace, we have devoted our lives to the experience of a love beyond this world through the practice of true forgiveness. We offer online resources, spiritual counseling, retreats and gatherings, and online show events, all for the purpose of welcoming you into this experience with us.
    A Course in Miracles

    ReplyDelete
  40. Join David Hoffmeister and the Living Miracles Center team as they teach the miracle of forgiveness from A Course in Miracles in a practical way.

    Living Miracles is a devotional community dedicated to Awakening/Enlightenment. Our path is based on the mystical teachings of Jesus as found in "A Course in Miracles" and as demonstrated by modern-day mystic David Hoffmeister. As messengers of peace, we have devoted our lives to the experience of a love beyond this world through the practice of true forgiveness. We offer online resources, spiritual counseling, retreats and gatherings, and online show events, all for the purpose of welcoming you into this experience with us.
    A Course in Miracles

    ReplyDelete
  41. Nice post. I really enjoyed to read this post if you want read more click here
    Largo Pawn Shop

    ReplyDelete
  42. Hi there! I simply wish to give you a huge thumbs up for your great information you've got here on this post. I am returning to your web site for more soon.
    english-course

    ReplyDelete
  43. Living Miracles is a devotional community dedicated to Awakening/Enlightenment. Our path is based on the mystical teachings of Jesus as found in "A Course in Miracles" and as demonstrated by modern-day mystic David Hoffmeister. As messengers of peace, we have devoted our lives to the experience of a love beyond this world through the practice of true forgiveness. We offer online resources, spiritual counseling, retreats and gatherings, and online show events, all for the purpose of welcoming you into this experience with us.A Course in Miracles youtube

    ReplyDelete
  44. Living Miracles is a devotional community dedicated to Awakening/Enlightenment. Our path is based on the mystical teachings of Jesus as found in
    A Course In Miracles

    ReplyDelete
  45. Selamat datang di salah satu situs poker online terpopuler di Indonesia, terima kasih telah berkunjung ke agen judi poker dengan skema keamanan ketat sekali serta desain web terbaru. Tidak stop disana saja dalam permainan judi poker online kalian bisa mendapatkan sensasi game judi online dengan win rate kemenangan besar, sekaligus juga bisa menang judi poker online benar-benar gampang. qq online untuk agen judi pkv games sediakan beberapa macam bank lokal untuk memudahkan kalian lakukan transaksi.

    ReplyDelete
  46. BCAQQ adalah Situs Judi qq online Terpercaya Agen PKV Games BcaQQ yang menyediakan game situs judi online QQ PKV paling baik buat anda nikmati. Permainan judi QQ games PKV jenis kartu poker serta kartu domino seperti bandar, poker, dominoqq, sakong, aduqq, bandar poker, capsa susun, bandar66 serta perang baccarat bisa kamu nikmati hanya dengan mempunyai 1 account user di BCAQQ. dominoqq online

    ReplyDelete
  47. You did an amazing job thanks for sharing nice blog.
    https://crackgrid.com/avast-premium-security-license-key/

    ReplyDelete
  48. Home | Search the MLS at your convenience, find out what your home is worth in today's market, calculate mortgage payments and more!

    ReplyDelete
  49. Gallbladder Function -

    Gallstones are thought to develop because of an imbalance in the chemical make-up of bile inside the gallbladder. In most cases the levels of cholesterol in bile become too high and the excess cholesterol forms into stones. Gallstones are very common.

    ReplyDelete
  50. Induction heating is a form of non-contact heating for conductive materials, when alternating current flows in the induced coil, varying electromagnetic field is set up around the coil, circulating current(induced, current, eddy current) is generated in the workpiece (conductive material), heat is produced as the eddy current flows against the resitivity of the material.
    Induction heating is a rapid ,clean, non-polluting heating form which can be used to heat metals or change the conductive material’s properties. The coil itself does not get hot and the heating effect is under controlled. The solid state transistor technology has made induction heating much easier,cost-effective heating for applications including soldering and induction brazing ,induction heat treating, induction melting,induction forging etc.

    induction heating machine manufacturer

    ReplyDelete
  51. Nice Post Here I Found A Great Site that Shares Pets Rising information such as how often to change cat litter and other things about raising a pet and taking care of it. i hope you find it useful if you have pets or you want to have pets in future.

    ReplyDelete
  52. Thank you for sharing this wonderful information with us. This article is written really well. Have a nice day and keep sharing such informative posts.y2mate

    ReplyDelete
  53. Thank you for sharing this wonderful information with us. This article is written really well. Have a nice day and keep sharing such informative posts.y2mate

    ReplyDelete
  54. This is great post, very informative. I’m wondering why the other experts of this sector don’t understand this. You must continue your writing. I am confident, you’ve a great readers base already! Hope you will provide more information to us, we also provide Best SEO Expert in Bangladesh & Digital Marketing Service including all tasks like: SEO, SEM, PPC, SMO, SMM, E-mail marketing, Webdesign and development Youngest Entrepreneur in Bangladesh & Who is The Best Digital Marketing Expert in Bangladesh? - MD Omar Makki.

    ReplyDelete
  55. satu satunya bandar bola terpercaya PTBOLA

    ReplyDelete
  56. thanks for sharing tips & tricks you can also visit my webiste

    ipal komunal
    ipal komunal

    ReplyDelete
  57. https://www.ovidio.com.br/o-motivo-do-fim-da-msx-top-class/

    ReplyDelete
  58. Dewibola mempunyai banyak peminat dari kalangan massyarkat indonesia. Segera coba mainkan disini Dewibola.

    ReplyDelete
  59. Login slot88 dan nikmati bonus, free spin hanya bermain bersama hokiemas88

    ReplyDelete