How to install Pi-Hole on Docker and Synology with MacVlan + Auto Update

-

 How to install Pi-Hole on Docker and Synology with MacVlan

We can create s special 'MacVlan' network, this will allow the pi-hole container to get a dedicated IP on our network. This will solve:

  • no port clashes with Synology as all ports will run only on dedicated IP
  • Client IP's visible as we are part of the real network
  • pi-hole has its own IP we can reach -> almost like a VM but still a container
few items you need for this.
  • You need to install Docker from the Package Center.
  • You need to enable "Open vSwitch" under Control panel > Network > Network interface > Select LAN then click Manage.

Networking

Login SSH as root and identify the ovs switch name use the following command.

ip route |grep default

the output will look like this:

default via 192.168.1.1 dev ovs_eth0 src 192.168.1.3

so in my case ovs_eth0 is what I will use.

Next, create the macvlan network name pi-hole-LAN, you need the know the following items:

  • Gateway of your network 
  • The subnet of your network
  • Free IP in your network 192.168.1.10/32 "/32 is for one IP,  

in my case the command looks like this:

docker network create --driver=macvlan --gateway=192.168.1.1 --subnet=192.168.1.0/24 --ip-range=192.168.1.10/32 -o parent=ovs_eth0 pi-hole-LAN

Run this command to pull the lastest Pi-hole image 

docker pull pihole/pihole

Run this command to create a directory for the config files

mkdir -p {/volume1/docker/pihole/pihole,/volume1/docker/pihole/dnsmasq.d}

Replacing the IP and change the password for pi-hole, and run  command to deploy the container, 

docker run --detach \
           --name pihole-pihole1 \
           --restart always \
           --volume /etc/localtime:/etc/localtime:ro \
           --volume /volume1/docker/pihole/pihole:/etc/pihole \
           --volume /volume1/docker/pihole/dnsmasq.d:/etc/dnsmasq.d \
           --dns=1.0.0.1 \
           --dns=1.1.1.1 \
           --env "DNS1=1.1.1.1" \
           --env "DNS2=1.0.0.1" \
           --env "ServerIP=192.168.1.10" \
           --env "DNSMASQ_LISTENING=local" \
           --env "WEBPASSWORD=password" \
           --env "TZ=America/New_York" \
           --network pi-hole-LAN \
           --ip "192.168.1.10" \
           --mac-address "02:42:c0:a8:01:d4" \
           --hostname "Pi-hole" \
           pihole/pihole:latest




Auto Update

Control Panel > Task Scheduler > Create > Scheduled Task > User-dafined Script

Task name:  Update Pi-hole



Set the schedule you want



Copy your installation script in to the User-defined script. 







All done.



docker pull pihole/pihole && docker stop pihole-pihole1 && docker rm pihole-pihole1
docker run --detach \
           --name pihole-pihole1 \
           --restart always \
           --volume /etc/localtime:/etc/localtime:ro \
           --volume /volume1/docker/pihole/pihole:/etc/pihole \
           --volume /volume1/docker/pihole/dnsmasq.d:/etc/dnsmasq.d \
           --dns=1.0.0.1 \
           --dns=1.1.1.1 \
           --env "DNS1=1.1.1.1" \
           --env "DNS2=1.0.0.1" \
           --env "ServerIP=192.168.1.10" \
           --env "DNSMASQ_LISTENING=local" \
           --env "WEBPASSWORD=password" \
           --env "TZ=America/New_York" \
           --network pi-hole-LAN \
           --ip "192.168.1.10" \
           --mac-address "02:42:c0:a8:01:d4" \
           --hostname "Pi-hole" \
           pihole/pihole:latest

Comments

  1. EricNovember 28, 2021 at 8:05 AM

    Thank you Rajani,
    You can add schedule to update for the pi-hole image automatically.

    ReplyDelete

Post a Comment

Popular posts from this blog

Extracting and using a modified VMWare Player BIOS or UEFI firmware

-
https://pete.akeo.ie/2011/06/extracting-and-using-modified-vmware.html Extracting and using a modified VMWare Player BIOS or UEFI firmware (updated 2016.05.17 for VMWare UEFI firmware extraction) One day or another, you may want to play with BIOS/UEFI firmware modification. But before jumping into physical motherboard flash alteration, where the consequences of a mishap can be difficult to salvage, experimenting with the BIOS/UEFI in a virtual environment sounds like a sound first step. You have of course the opportunity to do so using  bochs , however the ubiquitous nature and ease of use of the (freely available)  VMware Player  can turn the latter in a much better candidate for the job if you don't really care about the extra features that bochs brings in. This post details how one can extract the BIOS/UEFI firmwares used by the VMWare Player, and how to setup the player to use a modified one. Download and install VMware Player. The current version of VMwar...
Read more

Activate Synology Active Backup for Business for DSM 6

-
 Activate Synology Active Backup for Business with Xpenology DSM  https://gist.github.com/igresc/91e468f3d2ad5f2f7407262ba6f0dd56 Install the package and run the URL below on the browser . Active Backup for Business 1. Replace the IP, username, and password  http:// 192.168.0.1 :5000/webapi/auth.cgi?api=SYNO.API.Auth&method=Login&version=1&account= admin &passwd= password {"success":true} 2. Replace IP and Serial http:// 192.168.0.1 :5000/webapi/entry.cgi?api=SYNO.ActiveBackup.Activation&method=set&version=1&activated=true&serial_number= 1780PDN123456 {"data":{"activated":true},"success":true} Active Backup for G Suite 1. Replace IP http:// 192.168.0.1 :5000/webapi/entry.cgi?api=SYNO.ActiveBackupGSuite&method=get_activation&version=1 {"data":{"activated":false,"serial_number":"1780PDN123456"},"success":true} 2. Replace IP and Serial 1. Replace IP http:// 19...
Read more

Windows 11 internet/account bypass

-
Image
https://github.com/the-P1neapple/WinJS-Microsoft-Account-Bypass WinJS-Microsoft-Account-Bypass Overview This guide explains a method to bypass the Microsoft Account (MSA) requirement during the Windows 11 Out-Of-Box Experience (OOBE) by using the Developer Console to invoke a hidden local account setup screen. This method was discovered by examining the Windows 11 OOBE source code, which revealed an event listener for a hidden  _localAccountButton . Note A faster method has since been discovered using Command Prompt ( Source ), this repo was made 7 months prior to that discovery. The method I have documented is still the only known method for S-Mode installations. Following these steps, you can create a local account without needing to sign in with or create a Microsoft account. I also have a  Youtube Tutorial  that follows the same instructions below Steps to Bypass Microsoft Account Setup 1. Start Windows 11 Setup Begin the Windows 11 Setup Process. Select your region a...
Read more