Pihole wan or lan dns. add the IP address of your PiHole to the DNS list b.

Pihole wan or lan dns. 4 or 8. They offer two kinds of setup depending on your router's firmware version. Step 3: Configure Network Interfaces Assign Interfaces: Assign WAN and LAN interfaces as per your network setup. The client asks its DNS server (Pihole) "what is the IP of the domain I want to visit?" Pihole gets than answer (an IP address) from the Upstream DNS server and returns it to the client. I have tried to set up pi-hole as my DNS server for either WAN or LAN. Jun 24, 2021 · Details about my system: I have pi-hole installed on a machine that is set up as my router. I am wondering what is achieved by setting WAN DNS manullay to PiHole ( 192. What's the difference of setting up Pi-hole DNS in WAN and in LAN of asus Aug 10, 2022 · hi can anyone tell me what the difference between these 2 "DNS" settings are? in WAN and LAN in the WAN section there is a DNS server section, but there is also a DNS server section in the LAN settings (in DHCP). This includes the Pihole machine. Pi-hole® can also operate in many systems, this article will show you how to easily install on NAS and conf Feb 13, 2020 · Thanks. 1, configured with none specified for its gateway), it works. This is your local network. Dec 20, 2022 · I set up the pi hole on Raspberry Pi. So I set the WAN DNS of Xiaomi Router to 192. Block other DNS servers (optional) Some clients have hardcoded DNS settings. Apr 11, 2025 · [Wireless Router] How to set up Pi-hole® with ASUS NAS to block Ads? Pi-hole® is an ad-blocking software and powerful local DNS service who helps to audit queried domains on your network. 04 system running on an Intel Core2 Duo machine with 4-port NIC bridged to be the LAN interface and the built-in Ethernet interface is the WAN interface. com you could try to check it using dig google. I have firewall rules set up to direct all port 53 traffic on the LAN through the Pihole and block port 53 requests to any other IP. , since DNS requests are redirected to pihole for blocking, then to my router to do the actual DNS translation. My router is using ASUS Merlin. Your WAN DNS should be either what your ISP is providing or using something like Google’s 4. Clear any other DNS entries *c. I wouldn’t open your Pi-Hole DNS to the internet. Following the first method below will have you adding your Pi-hole as a DNS server for all devices on your LAN. This is where you want to expose things. Clear any other DNS entries In “Services>Dnsmasq DNS>Settings” a. 1. Use Pi-hole as your DNS server Configure your router’s DHCP options to force clients to use Pi-hole as their DNS server, or manually configure each device to use the Pi-hole as their DNS server. May 30, 2018 · Yes, so long as everything else is working with Pi-hole and your network, then it's best to leave the WAN DNS settings be. com or nslookup google. This is the internet area. In “Services>DHCP>Your-LAN-interface” a. Uncheck Allow DNS server list to the overridden by DHCP/PPP on WAN. What's the difference of setting up Pi-hole DNS in WAN and in LAN of asus router? It actually doens't matter for the asus routers. Can I change these settings to use cloud flare dns or is it better to leave these untouched? My pihole server uses cloud flare for dns. Under DNS Servers, enter the IPv4 and or IPv6 address of your Pi-hole host. , and leave the local network's DHCP DNS pointed to Pi-hole, would this cause any security concerns / DNS leaks? Apr 11, 2020 · Hello, I just installed pihole and want to set it on my router. Pihole should be doing DNS on the LAN side. The simplest way to set up Pihole is to point the WAN DNS to the Pihole, leaving Lan DNS on Auto. My setup: VDSL Modem - for connection to Broadband ISP ASUS RT-AX88U - as router (192. Just want to make sure if I should Oct 18, 2016 · Three methods Generally, there are three different methods that will enable devices on your network to be protected by Pi-hole. 1. the question is is it better to set it on the WAN page as main external DNS, or on the LAN page with DHCP, where each client will get pihole adress as DNS? Thanx! Jul 18, 2023 · Set WAN to any public DNS of my choosing + LAN DHCP DNS to Pihole's static IP (Rpi) and set Pihole's upstream DNS to Router's (gateway) IP From what I can tell, the most logical way would be the 4. You should configure your Pi-Hole to forward the DNS queries or use CLoudFlare and Google DNS for that. Do I need 'dns-rebind-protection' on second router enabled? Oct 1, 2018 · Your pihole is not set on the network interface to listen to itself, but it has the external dns servers. You can use NAT to force all TCP/UDP to port 53 to forward to your own DNS. " Then individual machine names/addresses will show up in your Pihole logs (once DHCP lease for the client has been renewed). On my second router 'dns-rebind-protection' is enabled. Jan 24, 2021 · In this case, you can often set Pi-hole to be the DNS server for your network clients in the router's DHCP (or LAN) settings page, which allows all of your network clients to block ads simply by connecting to the network. Jan 27, 2020 · My GoogleFu yielded this:: If your WAN obtains a DHCP address from the ISP it also gets a DNS from the ISP. Your Router/Firewall will handle the rest I do it on the Local Networks. 386. 254). I recently reconfigured my home network with VLANs to separate the different kinds of devices on my network. With regards to yours wanting for your devices to use Pihole's DHCP, Im sure someone here will assist with that, but they might tell you start your own thread since you have a different issue. add the IP address of your PiHole to the DNS list b. The LAN DNS settings need to point to Pihole, though. I wouldn't worry about encryption inside your network unless you have a specific reason. 100. And found out that the Xiaomi router wouldn't let me configure LAN DNS. Then I can put anything in the router's WAN DNS Upstream server, right? Because that DNS will only be used by the router itself. only in the LAN DHCP. LAN zone is your "home" zone. Feb 6, 2021 · 3. Following the second method below will have DNS queries route through your USG and then to your Pi-hole. Set WAN to any public DNS of my choosing + LAN DHCP DNS to Pihole's static IP (Rpi) and set Pihole's upstream DNS to Router's (gateway) IP From what I can tell, the most logical way would be the 4. Other people say that you put your Pi IP in the LAN section, but put a normal third-party DNS in the WAN section (like Google 8. jfb January 27, 2020, 2:05am 6 When using pinhole, the lan DNS should be pihole static IP So pihole still needs to ask a internet DNS server like 8. i have 2 pihole servers on my LAN, and have added both IP addresses into both Dec 12, 2022 · I have all traffic pointed to use openvpn on my Asus router. 45898: configure the Pihole connection using the LAN DNS settings. So my issue was solved. For a more proper approach, go to LAN->DHCP Server tab and fill in your pihole IP there and turn off Advertise Router's IP. I currently have its IP address set as the sole dns server under the wan tab but I’m wondering if I should have it set to be distributed to Mar 3, 2025 · To provide Pihole resolution to your LAN clients, you have to go to Settings/Networks//DHCP Service Management and specify your Pihole IP Address under "DNS Server. For WAN I notice the DNS servers are the ISP prescribed values. My Asus router has an option where I can point devices to either the VPN or the WAN. In Network - Internet I set Cloudfare DNS, and in DHCP server I set Pi-hole as DNS Server. I also have it configured with DNS-over-HTTPS using cloudflared for extra security and privacy. b. In OPNsense navigate to Settings -> General -> Networking. 50. Click Save. Then in DNS I list the pihole as primary and the gateway as backup just in case the pihole stops working. Setting it up this way is also what makes Pi-hole very powerful for network-wide ad blocking. I have set the DNS server in my router settings as the local IP address of the Pi-hole (192. IF I set the UDM's WAN DNS to, say, 1. I hope this helps somebody in the future! I did remember that I initially set both my WAN and LAN DNS server settings both pointing to the Pihole and after some reading that the LAN should be pointing to the Pihole while the WAN should be to an external DNS resolver. com from a client machine and see how its Dec 5, 2022 · The issue I had was solved by not adding the pihole dns address in the WAN section. The option you are asking about allows the router to use together both the ISP assigned DNS and the static DNS server (s) you specify on the Basic>Network page. Further down on the FAQ it states: 2. If your router also doesnt allow you to disable LAN DHCP, then set the IP range for it to a single IP. Jan 4, 2025 · Hi all, I set up pi-hole on Windows 11 with Ubuntu docker on an N100 Mini PC. 188 , in this case) versus what is achieved by setting LAN DNS… Now, if a LAN client sends a DNS query to the router and the query is not for a local machine, the router will forward that request to its WAN DNS servers, so they need to be PiHole (s) in order to benefit from PiHole functionality. ) If I wanted to enable DNS Service to continue, even if the Pihole VM was unavailable, would I add the third-party Upstream DNS Servers to the "WAN" network in my Unifi Controller? I've seen it referenced elsewhere that the "WAN" network DNS Server should point to your Pihole VM. Jul 9, 2022 · My question is simple. May 9, 2017 · Using Your Existing Router For Network-wide Ad Blocking You might not need to use Pi-hole's DHCP server: In many home environments, your router also functions as your DHCP server. If your router doesnt allow to set a custom DNS for LAN DHCP, you can then disable DHCP for LAN completely on the router and instead enable it on Pihole. You only need to use DNS filtering if you want to hard-force devices to use the raspberry pi. The strange thing is that I can't access many websites like Google, Twitter and Jul 1, 2020 · Some of the conflicting info I'm seeing is that some people are saying to put the info in both WAN and LAN sections. Either option is valid, depending on your specific requirements, but it is Oct 26, 2022 · I have configured standard setup with 2 WANs and gateway group, edited LAN rule to send to gateway group and it seems to work unless I use Pi-hole as DNS server in local network (192. 8 and 8. 4. If you have firmware < 3. 8 or Cloudflare at 1. As for the google. Oct 25, 2022 · Configure your Archer C7 to use a public DNS server as its upstream (commonly, that's a WAN/Internet setting), and configure your router's DHCP server to distribute Pi-hole as local DNS server (commonly, that's a LAN/DHCP setting). But in the Pi hole web admin page, all requests come from the Xiaomi router (which make sense). Define Pi-hole's IP address as the only DNS entry in the router Rationale Only is italicized here for a reason: Pi-hole needs to be the only DNS server because it intercepts queries and decides whether or not they should be blocked. What would happen if the AdGuard DNS failed to resolve DNS If the latter is important, you can work around it by keeping the Unifi gateway as the network DNS server, but then having it use the pihole (although you then, on the pihole, lose per-device identification of queries). 0. Nov 28, 2019 · Pi-hole has been working like a charm on my network for years blocking ads. Just installed my FWG yesterday and for the LAN DNS setting I pointed it to my PiHole server. Thoughts? I wonder if there is a way to get the TP-Link router to allow the guest network to access 192. 254 as an override to the ban on their access to the local network, but I can't see this Aug 1, 2022 · Yes DNSFilter will work if you want to force every single device on your network to the pihole but it will appear as if all the traffic is from your router. Ubiquiti USG This guide was developed using a Ubiquiti Cloud Key v2 with UniFi Network v7. Then each client will poll the USG for DNS which will forward requests to the Pihole. Do note that you will have to wait for your devices to renew DHCP lease before the dns request goes through the In my setup, I configured pihole to serve dhcp, and disabled dhcp server on the router. So every device on your network uses the PiHole. So if you run nslookup on your pi, wihout changing the server that quesry will always answer the external Ip, not the ip defined in the conf files. 1) Jan 7, 2022 · "LAN TO WAN connection" is working when I set DNS setting at WAN section on my second router to example 1. Sep 13, 2022 · Hi y'all! I'd like someone who is more knowledgeable than me to review my Asus RT-AC68U router's DNS settings if they're correct in my configuration. 2. Dec 29, 2020 · It should be your LAN DNS and then point your devices on your LAN at that IP for their DNS. I put in cloudflare for the router dns (and also pihole dns). 168. Configure IP Addresses: Set static IP addresses for the WAN and LAN interfaces. Basically what it says is: If you have firmware >= 3. I dont want anything, even from my router/firewall, going anywhere without Pihole filtration first. Click Wired networks on the left side Click "LAN" Click "Edit" on the lan you'd like to direct to pihole. 8 The idea of unbound usually is to do a setup like computer - pihole-unbound-public DNS server. 4). Save Either reboot your router or disconnect each client to renew the lease. My question after having run it this way for weeks without issue is why? Jul 22, 2024 · General IPv6 setting information, please refer to [IPv6] How to set up IPv6 in ASUS Router? 2. Improve network security and ad-blocking with this step-by-step guide. I assume the router uses dns for fw updates, mainly, so its dns setting probably doesn't matter that much as long as it's valid. Profit. Dec 5, 2022 · The easy way is to turn off DNS filtering, remove the Pi-Hole address from the WAN page and just add the Pi-hole address to LAN>DHCP Server: DNS Server1 Having done that DHCP will send the Raspberry Pi address to clients rather than the router. Common practice is to do LAN, and leave WAN to some other DNS provider like Quad9 or Cloudflare But I set everything to my pihole DNS, LAN and WAN. I don't see any queries in the pihole dashboard. . Sep 10, 2019 · Your router will always have good DNS information and won't use your PiHole, however your internal devices will grab DHCP from the router that contains the PiHole DNS info. 8. It's an Ubuntu Server 20. However, we recommend to setup Pi-hole always as DNS server for your LAN! If you do so, Pi Jul 22, 2024 · General IPv6 setting information, please refer to [IPv6] How to set up IPv6 in ASUS Router? 2. Pi-hole has a great guide to setting-up DoH. Jan 3, 2024 · I installed local PiHole&Unbound on my VM I force my DLink Router to use PiHole as DHCP server; But my nslookup for local DNS doesn't work, but when i specify ip addr of my pihole server in nslookup command - it works fine; Moreover, queries from nslookup without specifying pihole ip addr doesn't even logged in the PiHole dashboard; So i guess they are going to my WAN DNS-servers doesn't Doesnt using a masquerade rule make all requests in PiHole look like they are coming from your USG? Additionally, your pihole (s) should be on its own VLAN, so that traffic on the main LAN must traverse to your pihole (else, any device on your LAN with hardcoded DNS will still not play nice and avoid pihole). 2 Likes system Closed May 29, 2023, 1:05pm 5 Mar 24, 2024 · Settings in: WAN --> WAN DNS Setting --> Assign --> Manual Setting. Sep 22, 2024 · Learn how to configure your Asus GT-AX11000 router to use Pi-hole as the sole DNS server for both WAN and LAN direct DNS queries. I'm running my own DNS server (Pi-Hole and Unbound) on my home server, but I'm not sure about my router settings are correct. The WAN side is strictly for queries made for the router itself ( like ntp etc ). Then point all your devices in your network via DHCP or Static to use the Pi-Hole as their DNS device. 5 and i have a question about how to properly setup my pi hole server on my lan. Pi-hole is my DHCP server and DNS server. When switching to public DNS server (1. I set up a Pi-hole in my home network and I just want to know where to put my Pi-hole's IP - should it be in my LAN DNS or in the WAN DNS of my router? If on the LAN, what should be then on my WAN DNS? Sep 26, 2022 · If I place the custom dns in LAN setting, all my device DNS shows my router's ip and if I place it in WAN, actually same thing. I manually enter my Pihole IP as the DNS for WAN. This worked! Ads are blocked. There’s my primary/private LAN with the network gear, servers, and Aug 3, 2024 · Run the Setup Wizard: Follow the setup wizard to configure basic settings, including hostname, domain, DNS servers, and time zone. If you have other DNS servers Feb 22, 2025 · ASUS router ASUS was so kind to set up a FAQ how to configure their routers together with Pi-hole. I personally go with making all clients pointing to the pi-hole using DHCP. I set all of these to my pihole's IP, but that doesn't seem to do anything, i. 37 to WAN DNS server in Asus page. Aug 8, 2020 · In this case, you can often set Pi-hole to be the DNS server for your network clients in the router's DHCP (or LAN) settings page, which allows all of your network clients to block ads simply by connecting to the network. 45898: configure the Pihole connection using the WAN DNS settings. This leads to one thing; it bypasses the custom dns i place in LAN and uses the WAN's dns which was blank before which means it using the ISP's default dns. If I am using router's DHCP, DHCP pushes the DNS server IP (Pi-hole) to ALL the CLIENTS on my LAN, then ALL the clients will use Pi-Hole. With DNS adblocking, you need to ensure (or force) clients to use your DNS server. Switch DNS server to manual and input the IP address of your pihole machine. 61. Asus RT-AC86U May 6, 2020 · Query on WAN DNS Server vs LAN DNS Server. For WAN I use Cloudflare/Google. Dec 29, 2020 · Most likely the LAN DNS, but it would really depend on what router you have. Pointing the WAN DNS to the pi-hole works fine, but doing it that way means your pi-hole logs will only see the router making all the requests. On newer firmware they recommend setting Pi-hole as DNS server for the WAN connection and on older versions for LAN connections. This is my first ASUS router; hence maybe a NOOB question. The functions are the same for the connected clients. In this case, you can often set Pi-hole to be the DNS server for your network clients in the router's DHCP (or LAN) settings page, which allows all of your network clients to block ads simply by connecting to the Mar 12, 2022 · Hey all, Long time lurker first time poster. I have tried searching the forums but could not get a clear answer; hence asking it here. I'm wondering whether I can continue using Pi-hole with Multi-WAN setup, maybe there is a rule Sep 22, 2023 · Now I started again with a clean install and simply changed my WAN and WAN6 interface settings under the Advanced tab: unchecked "Use DNS servers advertised by peer" and set the local IP of my PiHole server in the "Use Custom DNS Servers" field. The Pi-hole is connected to the LAN with a fixed IP address (192. WAN is the "danger" zone, put nothing here unless absolutely needed. Then internet/name resolution is working. Running at ax-88u with 386. Should the Pihole machine be pointed to use the WAN instead, or this doesn't really matter? I am not referring to adding Phiole's IP address to the WAN or LAN I am referring to. May 6, 2023 · It's generally okay for the WAN to be set to the ISP (or anything that's not the Pihole), as that is only what the modem will use for it's own lookups and not what your network clients have to use. e. Dec 30, 2020 · You should put your Pi-Hole IP on your LAN. W… May 13, 2024 · In your example of setting the LAN DHCP and providing Pihole as the DNS server, your process flow is correct. I'm looking to secure my network with the best privacy settings. Apr 30, 2024 · I would suggest changing the WAN to something other than pihole for its upstream DNS. I also tried setting my LAN --> DHCP Server --> DNS and WINS Server Setting --> DNS Server 1, DNS Server 2, WINS Server. 97). Uncheck “Allow DNS server list to be overridden by DHCP/PPP on WAN” and “Do not use the local DNS service as a nameserver for this system”. For the WAN set up, which is not recommended, I just put the host static IP address 192. Oct 17, 2023 · HomeLab: Setting Up AdGuard ( or even PiHole ) with UDM SE Intro Since the previous AdGuard setup, I’ve got some self-questions. zwz vfbxcw dloxves ujkk nce zvrys amatcf pgruamk xyij moybub