Running one in an LXC container in proxmox and another on a Virtual Machine in FreeNAS so i can take one server down without taking the internet offline
Let's face it: Linus Tech Tips and others are fun and informative, but I really do appreciate TechnoTim even higher. The content is rich in information while staying easy to understand (also proper video length), the quality and topics are uniform between videos and even the audiovisuals are more than enough. Thanks Tim!
Imo Linus Tech Tips is kinda like Top Gear - youre not watching it to learn, you watch it to see the presenters goof around and have a nice time :) Entertainment VS Education
Excellent tutorial! Taking your lead, I bought a RPi Zero 2 W as a secondary backup and now have two running! Once I manage to get a third Pi, next step is to mess with the VIPs :)
I had Pi-hole running on a pie 3b+ for the longest time, without fail. It's now sitting on the desk as it's pfsense replacement is doing the work. Not as easy to configure but also stable. IT's all about what platform you want to run the lists on. I like the little pies for their low energy use and powerful platform. Thanks for another good Video.
Years later, we still have to use gravity sync . I just set mine up today. It was easy peasy ! I do like not having to export/import setting every time I change the primary, which is how I kept them in sync before.
Stumbled across this video and had to get the bride to watch the first couple minutes.....so funny. The only issue I see here is that my pihole runs a recursive DNS service UNBOUND, it would be nice if the sync grabbed the cache for that as well.......
Hey Tim I love the pinhole I’m using it from past one year it’s works like a charm I live in a gated community which has 12 houses People from all 12 houses share the internet bill we have a switch installed to distribute internet I had a pi 0 I setup Pi-hole in it and put it to our network daily it Blocks around 5000ads it’s amazing
I've been running my Pihole on Kubernetes and using persistent volume pointing to my NAS. However, I have never checked if I would have any kind of issues scaling it up to more than one pod. PS.: Thank you. Both the my K8S Pihole and Proxmox VM TrueNAS were based on your videos.
Great video TT! Have been running a single pi-hole at home for around 10 months on an Rpi4 and have it booting from a USB. I came across this video and instantly ordered a second Rpi4 and used the PI's SD card copier app to copy the 1st's USB. Booted up, changed the IP address and hostname as needed and then stepped through your video. Could not have been any easier! There were a few questions/options different from your video to now, but i just accepted the defaults until I caught up to your instruction or your instructions caught up to what i was seeing on the secondary Pi.
That intro is absolutely hilarious! Just had that same scenario play out this morning at my house. I will show this to my bride. Doubt she will see the humor tho as her client call was interrupted due to said scenario. Maybe I'll wait til the weekend. Anyway, thanks for the laugh Tim! And great video, as always.
Many enterprise-grade applications that run as appliances use a pub sub architecture for high availability. The publisher is the source of configuration and the subscribers are just workers, fulfilling requests such as DNS. This would be the best architecture for pi-hole. During installation the script would ask what persona you want this particular instance to be, publisher or subscriber.
looks like its even easier now, sudo password removal is part of the script, the same script is run on both machines and then you run gravity-sync push and gravity auto. 5 minutes start to finish
thanks Tim for this. I had one on debian on bare metal and backup on proxmox on bare metal but couldn't sync until now. Great explanation and I love the intro.
Technotim now puts the timer setting in /systemd/system. Added pull to the exec command, will find out later if it is working. I too do not want a two way sync, after all, what could possibly go wrong 😎 Seems like a really great well developed program.. Will be nice to have a backup pihole. I have a bad habit of neglecting pihole after it's setup. Thanks for sharing.
You're right. The only Caveat is that you need to make sure you can run the script on the host running the container. The script checks for you, but I did forget to call that out specifically. Thank you for the feedback!
I have always had 2 piholes in a HA environment, also my DHCP passes these two pihole DNS to all clients, this has helped in few instances, when primary failed, did not have a single second of interruption. Additionally, I also have one pihole running on every subnet, which reduces the interlan traffic.
What's your setup ? I tried it today and it depends on clients. But what is curious that even UDM-Pro didn't failover to secondary. I think this is not possible without something like keepalived. Another thing that I don't fully understand is that why UDM-Pro or any other router have option to setup two or more DNS servers. Is it only for loadbalacing ?
Nice video Tim. I'm running two Pi-holes on two Raspberry Pi's (3B+). While I only have three domains blacklisted. For now I will sync both Pi-holes manually but syncing two Pi-holes automagically would be a nice feature to have out-of-the-box. BTW I recently installed unbound on my Pi-holes, now my Pi-holes are recursive DNS servers. Cool!
Thank you Tim!!! I have my primary dns in a pihole and I've just installed and sync the 2nd one in ubuntu in a VM in Proxmox :) Thank you very much for this video. Also I wish pihole has some kind of HA option built in :/ Regards!
This is a great video. I have my primary pi-hole on Unraid as a docker container. However, I get that OpenSSH and RSYNC binaries not installed. Trying to figure out how to install it in Unraid. I see people have asked around in Reddit but didn’t get any where. However, this is only used to sync the block list and white list correct? I can just add the second PI-Hole and add it to my UDM Pro and when it does not resolve because my primary is down it will use the secondary dns entry on my UDM Pro. That’s how it should work but want to verify.
I'm looking for same thing over here. It's possible to add SSH binaries into a docker. But then, there was this line from the GitHub System Requirements page "For both standard and container based Pi-hole deployments, Gravity Sync will run directly on the host OS and not inside of the container image." So I think that's just the unRaid command line. Adding a little script into our unRaid NAS.
Can you do this with both piholes running within two separate instances of a VM or Docker that are on the same physical host or do both need to be isolated due to the shared ip of the host hardware? Or can I just add two separate ip's to the host hardware for each instance of the VM/Docker that's running the piholes... Also worth mentioning: if you want to run a VPN, then the piholes will need to set behind the VPN service in your setup and then then point to the VPN, that way you don't have any leaks outside of your VPN... If you had the piholes between your router and VPN, then you'd like leak your VPN by using other DNS instead of the VPN. So long as the Recursive piholes set behind your VPN, you're good to go, I had to figure that out for my setup. Also, instead of disabling SUDO, is there a way we can script it to enter the SUDO password? But I guess it would be okay, so long as you lockdown with keys and disable user/password login and make it keys only login. But are there any better options to sync both piholes? Can't a backup/sync/push cronjob be used to save the file and the backup periodically pulls that file and thus syncs? Especially since it's a one way pull..?
Really great video, Literally gonna set this up now. My PiHole is a docker container in my NAS. When I have to update my NAS tho, takes my DNS down for a while. This will save me.
Awesome video as always. Was looking for a way to have a secondary DNS Pi-Hole server and not have to manually backup/restore every time I made a configuration change.
I've been running dual Pi-Hole machines for about 3 years now. The primary is on a 1L box and this is its sole funcion. The secondary is an instance in VirtualBox on my backup server. Both run on Debian 11 because I continually had hardware issues with the RPi's following various power related issues (the RPi's literally lost their minds). I have never considered a need to sync the two since this was done at setup and each updates Gravity automatically every week. The lists are always identical and both machines are highly reliable, so I guess I fail to see the point of syncing.
That sudo configuration can be changed later in the file. You can set it so that you only don't need to enter a password to use rsync but for everything else you should. Even better just put the rsync on a root systemd service. or for the cron service just add that crontab line to root's crontab (sudo crontab -e)
Thanks to your video on how to add lists to pi-hole i now have 6.4 Million blocked domains. I've yet to encounter an issue. With regular browsing it has blocked 800 queries on my network in the last half hour. My internet feels faster now, I might end up following this video if i find that the raspberry pi 4 running ubuntu hangs often.
I have two PiHoles now, but the second one is being used almost as much as the first. I figured it wouldn't be used unless there was an outage or issue with the first. I'm a bit confused there. Using this means I would have to do the Smart feature since I'm whitelisting almost as much in the second as I am in the first.
It's late at night and I might be way off here, but if you want to go even lighter weight, I think it might be possible to just *ditch pi-hole*, run dnsmasq directly in stateless containers, give it a read-only sing-file volume mount to /etc/hosts... which is basically what pi-hole is using to set up blocks. Going this direction one could run multiple DNS servers, pass configuration through helm chart, and then just figure out how you want to manage /etc/hosts... github actions?
The newer install of gravity-sync apparently doesn't use cron anymore. I haven't figured out yet how to make the sync a one-way sync from primary to secondary with the new auto method. Anyone know?
I broke the ability to sudo on Ubuntu, editing the /etc/sudoers file. Luckily I had a sudo terminal available to fix it. Before that I had edited it as you show, on my primary, the raspberry pi; that was broken too! Reported an error in sudoers file, but still let me sudo (unlike on Ubuntu). So I fixed it. Seems latest config sorters that out. I just logged out of ssh and back in.
@TechnoTim, love this by the way, I have a suggestion or maybe you have already done so I haven't found yet. Little new to linux then probably most, I like to leap before I look frequently. Anyway, during configuration, I was watching this and the only aspect I found confusing at first were the commands listed in the tutorial here opposed to the link provided from running the "curl" script. Keep in mind, I'm a systems guy, getting multiple platforms to function together with as little issues is what I target. My feet are wet, but there's still so much to learn as I come from a windows strong background, switching wasn't that difficult, the largest issue I've had is Linux commands sometimes speak as though I'm to know all directories off the top of my head. I've done the research to get going and have my deivece up, but man, it's so much searching, lol. I think I've invested more time looking up directories within linux to solving BSOD's in windows (not you, just venting) I'd be curious for your input on where to look next for something innovative and new.
Great video. I have a question. Is it better to just have a primary and secondary pihole server? I have mine set up a little differently. I have two instances of pihole. One using google DNS servers and one using open DNS. In my openwrt router I have the IP addresses of both pihole servers listed as the DNS servers and have checked the box all servers (Query all available upstream resolvers.) My assumption and it looks like this is happening is each query that isn't cached gets sent out to either google and opendns and the first one back is served. I like the idea of being able to sync the local dns and block lists but wouldn't having two uniquely configured servers potentially have better redundancy and performance than mirroring a server, like if the DNS servers are having issues or throttling you? or am I missing something?
I've been trying to use Gravity Sync also. I did notice that the installer creates a passwordless sudo config. For me that's an issue as it seems to open up a security risk. That's a little ironic as Pi-hole is supposed to improve security. What do you think? Am I missing something?
Great channel, recently found it and i love it! Also the older videos as you can see :) Great! I've set everything up like you describe here. Keepalived at node1 (lxc on proxmox) and at node2 (PI4). Everything works perfectly. Then at node1 and node2 i've installed PI-hole with gravity-sync 'between' them, works also like a charme. But when testing i realize that this 'High Availability' is on host level and not service level. When node1 (master) or keepalived on that node is down node2 takes over and pi-hole on this node start answering the requests, perfect, but when i stop pi-hole on node1 it still game over. So it's high availability to a certain level :) Or am i missing something? Nevertheless i'm very happy with this setup. Thanks!
This is a great video but I’ve got this about halfway setup and I’m not familiar with the parts of the script install that was glossed over. I’m not a novice computer user (25+ years of server and network experience) but for me there isn’t enough information to get the job done. I’m running pinhole on raspberry pi os on x86 vm on x64 hardware. The script can’t (yes can’t) be run by sudo you must be root user (I found a work around). Revisit this. Some of us need a bit more information than you’ve given.
Tim, how can you love this statement when I took you to task for glossing over the information needed to REALLY make this work. I truly don’t get it. Did you just not read it all?
Nice video. I have this issue as well so I am setting this up. Curious about the choice of using pinhole for local dns. In my setup pfsense is the DNS source of truth with pihole conditional forwards to pfsense for my local domains.
What’s the reason for manually editing the sudoers file? I saw when you installed gravity sync, it added a file to sudoers.d which I would imagine would take care of everything.
I got my first pi 4 and I don’t know anything about Linux and I want to learn it and this one thing with pi hole I really want to do. Do you have a tutorial for pi and Linux for a noob like me? I subscribed to keep up to you tutorials. Thanks.
Pardon my ignorance but im guessing if you have a network that doesnt change e.g regex rules set on both 1a and 1b. As long as you have both 1a and 1b dns records in dhcp then this is not really required. Its only if you make regular changes it helps as to not duplicate work I suppose. Just wondering as I have deployed HA in aws without sync and not had a problem with either (touching mega wood right now) in fact....can I take that back.
Would you please elaborate on how the second pi-hole unit keeps the network going (if the first one fails)? They'll both have different IP addresses so...wouldn't you have to be at the keyboard to manually resolve any issues related to the loss of the first pi-hole. Is there an automated way to allow the second unit to pickup where the first one left off? Thank you.
Great video...I have 2 running now with gravity-sync - one in proxmox and one on a pi4. Is there a way to show logs combined from both piholes? A docker image that could gather data from both and combine to one dashboard would be awesome.
Hey Tim - great video. Wondering if you looked at using Proxmox to implement HA LXC containers? Thereby letting Proxmox due the HA across multiple servers?
Hi Tim, i follow most your content but this one had me stumped. i tried to load your guide page, which is pretty much blank except a link to the github page. However after trying to keep up and editing the sudoers file, and rebooting - i could no longer access sudo. figured id mention the hickup as either i did something wrong or the guide needs to be dumbed down a bit more. thanks
How are you running Pi-Hole at home? Raspberry Pi? Bare metal? Containerized? Virtual machine?
Containerized
Thanks for this. I have one on a Pi and one in a container on unraid.
Running one in an LXC container in proxmox and another on a Virtual Machine in FreeNAS so i can take one server down without taking the internet offline
I run blocky in k8s which is much better suited for this task than pihole
one in VM ubuntu server at Hyper-v, another in virtualbox in old pc.
"Pull" should be the default. It's the proper way because this way you have a "Source of Truth".
Let's face it: Linus Tech Tips and others are fun and informative, but I really do appreciate TechnoTim even higher. The content is rich in information while staying easy to understand (also proper video length), the quality and topics are uniform between videos and even the audiovisuals are more than enough. Thanks Tim!
Thank you! I Love LTT and others :)
Imo Linus Tech Tips is kinda like Top Gear - youre not watching it to learn, you watch it to see the presenters goof around and have a nice time :)
Entertainment VS Education
Excellent tutorial! Taking your lead, I bought a RPi Zero 2 W as a secondary backup and now have two running! Once I manage to get a third Pi, next step is to mess with the VIPs :)
Sounds like a great plan!
I had Pi-hole running on a pie 3b+ for the longest time, without fail. It's now sitting on the desk as it's pfsense replacement is doing the work. Not as easy to configure but also stable. IT's all about what platform you want to run the lists on. I like the little pies for their low energy use and powerful platform. Thanks for another good Video.
That intro Sketch 🤣
I thought I would switch it up this time. Hope you enjoyed it!
@@TechnoTim enjoyed it! Kinda funny how this is true to people who do sysadmin at home and in the office
That sketch just happened to me yesterday lol
@@Vipervire Is the internet down?
Great intro
Years later, we still have to use gravity sync . I just set mine up today. It was easy peasy !
I do like not having to export/import setting every time I change the primary, which is how I kept them in sync before.
An alternative to using regular cron jobs is incron. This will let you trigger a sync every time one of pi hole’s confit files changes.
Nice!
Stumbled across this video and had to get the bride to watch the first couple minutes.....so funny. The only issue I see here is that my pihole runs a recursive DNS service UNBOUND, it would be nice if the sync grabbed the cache for that as well.......
Hey Tim I love the pinhole I’m using it from past one year it’s works like a charm I live in a gated community which has 12 houses People from all 12 houses share the internet bill we have a switch installed to distribute internet I had a pi 0 I setup Pi-hole in it and put it to our network daily it Blocks around 5000ads it’s amazing
Sounds awesome!
I've been running my Pihole on Kubernetes and using persistent volume pointing to my NAS. However, I have never checked if I would have any kind of issues scaling it up to more than one pod. PS.: Thank you. Both the my K8S Pihole and Proxmox VM TrueNAS were based on your videos.
Thanks for sharing!
I scaled it up; it works perfectly.
run 2 pihole containers on my proxmox servers, the first shows queries, but the second one doesn't. this information is what I needed
This gets video of the year for me. Man, why did I not think of running dual Pi-holes a year ago?
Thank you so much!
Great video TT!
Have been running a single pi-hole at home for around 10 months on an Rpi4 and have it booting from a USB.
I came across this video and instantly ordered a second Rpi4 and used the PI's SD card copier app to copy the 1st's USB.
Booted up, changed the IP address and hostname as needed and then stepped through your video.
Could not have been any easier!
There were a few questions/options different from your video to now, but i just accepted the defaults until I caught up to your instruction or your instructions caught up to what i was seeing on the secondary Pi.
Thank you!
Tim, I hope you keep doing these videos, you deserve a much bigger audience. Your content is great!
Awesome video! It helped me a lot!
Do keep in mind that you don't need to reboot when you change visudo.
That intro is absolutely hilarious! Just had that same scenario play out this morning at my house. I will show this to my bride. Doubt she will see the humor tho as her client call was interrupted due to said scenario. Maybe I'll wait til the weekend. Anyway, thanks for the laugh Tim! And great video, as always.
Thanks, Tim !!! I combined this with Jeff's "craftcomputing" recursive pihole DNS server guide.. awesome content
Glad it was helpful!
i've done exactly the same thing. Have never looked back since and will always run the triple-tag team of gravity-sync, keepalived and unbound.
Many enterprise-grade applications that run as appliances use a pub sub architecture for high availability. The publisher is the source of configuration and the subscribers are just workers, fulfilling requests such as DNS. This would be the best architecture for pi-hole. During installation the script would ask what persona you want this particular instance to be, publisher or subscriber.
I've been using gravity sync for the last two months and I love it.
That intro sketch is a perfect simulation of me answering any and all questions asked by the family about the network.
A new Techno Tim video !! that's exactly what I needed :) thank you
what???
@@ggyun What, What ?
looks like its even easier now, sudo password removal is part of the script, the same script is run on both machines and then you run gravity-sync push and gravity auto. 5 minutes start to finish
thanks Tim for this. I had one on debian on bare metal and backup on proxmox on bare metal but couldn't sync until now. Great explanation and I love the intro.
Glad it helped
Thanks for the info and demo, that dialog in the beginning is hilarious
Technotim now puts the timer setting in /systemd/system. Added pull to the exec command, will find out later if it is working. I too do not want a two way sync, after all, what could possibly go wrong 😎 Seems like a really great well developed program.. Will be nice to have a backup pihole. I have a bad habit of neglecting pihole after it's setup. Thanks for sharing.
yes, should be a basic pihole-core-feature
Your videos have been improving a lot lately. Your channel is going to grow fast, great work!
Glad you think so! Thank you!
3:48 Have I missed what the caveat with the container is? Or did you actually forgot to tell us?
You're right. The only Caveat is that you need to make sure you can run the script on the host running the container. The script checks for you, but I did forget to call that out specifically. Thank you for the feedback!
I have always had 2 piholes in a HA environment, also my DHCP passes these two pihole DNS to all clients, this has helped in few instances, when primary failed, did not have a single second of interruption. Additionally, I also have one pihole running on every subnet, which reduces the interlan traffic.
What's your setup ? I tried it today and it depends on clients. But what is curious that even UDM-Pro didn't failover to secondary. I think this is not possible without something like keepalived. Another thing that I don't fully understand is that why UDM-Pro or any other router have option to setup two or more DNS servers. Is it only for loadbalacing ?
Nice work once again, loved the funny beginning of the video :) Hope they implement a nice and easy sync solution on Pi-Hole.
Great Video, was looking for HA for pi-hole and this was super simple to follow and get up and running. Fan.
Check out my keeplaived video if you want load balanced!
I know I'm late but I am setting up a pair of proxmox virtualized debian pi-holes and I found this very helpful. Thanks for sharing.
Glad it was helpful!
The intro had me in tears... brilliant :'D And as for the rest of the video, that was great too. Thanks Tim
Thank you!
I have had that exact same conversation with my wife. She was not amused. :)
Nice video Tim. I'm running two Pi-holes on two Raspberry Pi's (3B+). While I only have three domains blacklisted. For now I will sync both Pi-holes manually but syncing two Pi-holes automagically would be a nice feature to have out-of-the-box. BTW I recently installed unbound on my Pi-holes, now my Pi-holes are recursive DNS servers. Cool!
Haha that intro is my everyday.
Ubiquiti bro, haven't heard anyone ask if the internet is down in the last year! :)
@@toysareforboys1 I have Ubiquiti gear top to bottom, but it doesn't handle my DNS :)
@@TechnoTim Sweeeeeeet! I have USG-PRO-4, US-48-500w and a bunch of UAP-AC-LR's. Love Ubiquiti. I'll have to move my DNS over to your setup :)
hahah same here!
aH man this pi hole taking my entire LAN internet down has happened way too many times for me lol
Love the appearance of the browser in this video. Anyway you could share more information on how you have it the way you do?
This should just be dark mode in pihole!
Yesssssssssssss!!!!!!!!!!!!!!!!! Content that actually matters to me!!
Noice!
Liked and subscribed! Outstanding screen presence, very calm not-to-technical instruction. Probably one of the best I’ve seen! Thanks!
Thank you Tim!!! I have my primary dns in a pihole and I've just installed and sync the 2nd one in ubuntu in a VM in Proxmox :)
Thank you very much for this video.
Also I wish pihole has some kind of HA option built in :/
Regards!
I loved that intro. Very fun. Well done.
Thanks so much!
That does look pretty straight forward but the lack of syncing dhcp info is pretty major.
This is a great video. I have my primary pi-hole on Unraid as a docker container. However, I get that OpenSSH and RSYNC binaries not installed. Trying to figure out how to install it in Unraid. I see people have asked around in Reddit but didn’t get any where. However, this is only used to sync the block list and white list correct? I can just add the second PI-Hole and add it to my UDM Pro and when it does not resolve because my primary is down it will use the secondary dns entry on my UDM Pro. That’s how it should work but want to verify.
I'm looking for same thing over here. It's possible to add SSH binaries into a docker. But then, there was this line from the GitHub System Requirements page "For both standard and container based Pi-hole deployments, Gravity Sync will run directly on the host OS and not inside of the container image." So I think that's just the unRaid command line. Adding a little script into our unRaid NAS.
Can you do this with both piholes running within two separate instances of a VM or Docker that are on the same physical host or do both need to be isolated due to the shared ip of the host hardware? Or can I just add two separate ip's to the host hardware for each instance of the VM/Docker that's running the piholes... Also worth mentioning: if you want to run a VPN, then the piholes will need to set behind the VPN service in your setup and then then point to the VPN, that way you don't have any leaks outside of your VPN... If you had the piholes between your router and VPN, then you'd like leak your VPN by using other DNS instead of the VPN. So long as the Recursive piholes set behind your VPN, you're good to go, I had to figure that out for my setup. Also, instead of disabling SUDO, is there a way we can script it to enter the SUDO password? But I guess it would be okay, so long as you lockdown with keys and disable user/password login and make it keys only login. But are there any better options to sync both piholes? Can't a backup/sync/push cronjob be used to save the file and the backup periodically pulls that file and thus syncs? Especially since it's a one way pull..?
They could also add some simple cacheing to speed things up ; )
FOR SURE!
Really great video, Literally gonna set this up now. My PiHole is a docker container in my NAS. When I have to update my NAS tho, takes my DNS down for a while. This will save me.
Glad it was helpful!
great video! Thank you!... Just one thing, DNS down does mean internet down, technically lol
great intro my wife does that same thing anytime she can't get online
Awesome video as always. Was looking for a way to have a secondary DNS Pi-Hole server and not have to manually backup/restore every time I made a configuration change.
Glad I could help I have a video on keepalived to so that they can be load balanced, true HA
Really cool! Thanks for sharing!
Awesome Video Tim, looks great, and the content is super helpful!
Thank you!
Why does this channel have all of the stuff I want to know when it comes to homelabs? This guy needs more subs
Because I am a homelabber myself! Thank you!!!
Hah, i just converted my network to pfsense and i'm setting up traefik right now!
This is why I have a Pi-hole on Proxmox and on TrueNAS
I've been running dual Pi-Hole machines for about 3 years now. The primary is on a 1L box and this is its sole funcion. The secondary is an instance in VirtualBox on my backup server. Both run on Debian 11 because I continually had hardware issues with the RPi's following various power related issues (the RPi's literally lost their minds). I have never considered a need to sync the two since this was done at setup and each updates Gravity automatically every week. The lists are always identical and both machines are highly reliable, so I guess I fail to see the point of syncing.
That sudo configuration can be changed later in the file. You can set it so that you only don't need to enter a password to use rsync but for everything else you should. Even better just put the rsync on a root systemd service.
or for the cron service just add that crontab line to root's crontab (sudo crontab -e)
Hey, thanks for the comment. Any chance you can provide steps on how to do this exactly?
Thanks to your video on how to add lists to pi-hole i now have 6.4 Million blocked domains. I've yet to encounter an issue.
With regular browsing it has blocked 800 queries on my network in the last half hour. My internet feels faster now,
I might end up following this video if i find that the raspberry pi 4 running ubuntu hangs often.
Thank you, great video. I’m going to try this now.
Have fun!
gravity sync should upstream this!
that intro was superb
I have two PiHoles now, but the second one is being used almost as much as the first. I figured it wouldn't be used unless there was an outage or issue with the first. I'm a bit confused there. Using this means I would have to do the Smart feature since I'm whitelisting almost as much in the second as I am in the first.
Thanks for the great video
It's late at night and I might be way off here, but if you want to go even lighter weight, I think it might be possible to just *ditch pi-hole*, run dnsmasq directly in stateless containers, give it a read-only sing-file volume mount to /etc/hosts... which is basically what pi-hole is using to set up blocks. Going this direction one could run multiple DNS servers, pass configuration through helm chart, and then just figure out how you want to manage /etc/hosts... github actions?
Sounds awesome!
Works great. Got both mine reporting to my influxdb for cool stats in grafana. Thanks for the simple to follow guide!
This does work for DHCP now with gravity-sync-4! :)
The newer install of gravity-sync apparently doesn't use cron anymore. I haven't figured out yet how to make the sync a one-way sync from primary to secondary with the new auto method. Anyone know?
I broke the ability to sudo on Ubuntu, editing the /etc/sudoers file. Luckily I had a sudo terminal available to fix it. Before that I had edited it as you show, on my primary, the raspberry pi; that was broken too! Reported an error in sudoers file, but still let me sudo (unlike on Ubuntu). So I fixed it. Seems latest config sorters that out. I just logged out of ssh and back in.
Thank you for recommending to use pull in the cronjob!
The first part of this video is too relatable....
The intro made click the thumbs up! Excellent content thank you again!
Glad you liked it!
@TechnoTim, love this by the way, I have a suggestion or maybe you have already done so I haven't found yet. Little new to linux then probably most, I like to leap before I look frequently. Anyway, during configuration, I was watching this and the only aspect I found confusing at first were the commands listed in the tutorial here opposed to the link provided from running the "curl" script. Keep in mind, I'm a systems guy, getting multiple platforms to function together with as little issues is what I target. My feet are wet, but there's still so much to learn as I come from a windows strong background, switching wasn't that difficult, the largest issue I've had is Linux commands sometimes speak as though I'm to know all directories off the top of my head. I've done the research to get going and have my deivece up, but man, it's so much searching, lol. I think I've invested more time looking up directories within linux to solving BSOD's in windows (not you, just venting) I'd be curious for your input on where to look next for something innovative and new.
Excellent stuff!
Thank you kindly!
Wow the intro is so accurate
Usa a load balancer to load balance between two piholes
ruclips.net/video/hPfk0qd4xEYa/видео.html yes!
"What?"
classic
Great video. I have a question. Is it better to just have a primary and secondary pihole server? I have mine set up a little differently. I have two instances of pihole. One using google DNS servers and one using open DNS. In my openwrt router I have the IP addresses of both pihole servers listed as the DNS servers and have checked the box all servers (Query all available upstream resolvers.) My assumption and it looks like this is happening is each query that isn't cached gets sent out to either google and opendns and the first one back is served. I like the idea of being able to sync the local dns and block lists but wouldn't having two uniquely configured servers potentially have better redundancy and performance than mirroring a server, like if the DNS servers are having issues or throttling you? or am I missing something?
I've been trying to use Gravity Sync also. I did notice that the installer creates a passwordless sudo config. For me that's an issue as it seems to open up a security risk. That's a little ironic as Pi-hole is supposed to improve security. What do you think? Am I missing something?
That intro 😂😂😂
Great stuff. Glad I found your channel!
Great channel, recently found it and i love it! Also the older videos as you can see :) Great!
I've set everything up like you describe here. Keepalived at node1 (lxc on proxmox) and at node2 (PI4). Everything works perfectly. Then at node1 and node2 i've installed PI-hole with gravity-sync 'between' them, works also like a charme. But when testing i realize that this 'High Availability' is on host level and not service level. When node1 (master) or keepalived on that node is down node2 takes over and pi-hole on this node start answering the requests, perfect, but when i stop pi-hole on node1 it still game over. So it's high availability to a certain level :) Or am i missing something? Nevertheless i'm very happy with this setup. Thanks!
That’s right! You can create a service health check on keepalived!
@@TechnoTim thanks! I'm gonna figure it out :)
This is a great video but I’ve got this about halfway setup and I’m not familiar with the parts of the script install that was glossed over. I’m not a novice computer user (25+ years of server and network experience) but for me there isn’t enough information to get the job done. I’m running pinhole on raspberry pi os on x86 vm on x64 hardware. The script can’t (yes can’t) be run by sudo you must be root user (I found a work around). Revisit this. Some of us need a bit more information than you’ve given.
Tim, how can you love this statement when I took you to task for glossing over the information needed to REALLY make this work. I truly don’t get it. Did you just not read it all?
Nice video. I have this issue as well so I am setting this up. Curious about the choice of using pinhole for local dns. In my setup pfsense is the DNS source of truth with pihole conditional forwards to pfsense for my local domains.
My UDM pro doesn't have a proper DNS
HAHAHAHAHAHAHA.. That intro reflects my entire life...lol
Sooo VRRP, along with this, would make it even better!
Yes! ruclips.net/video/hPfk0qd4xEYa/видео.html
What’s the reason for manually editing the sudoers file? I saw when you installed gravity sync, it added a file to sudoers.d which I would imagine would take care of everything.
i subbed because of the intro. as an infosec pro that is my daily life at home and at work. jeezahs. ask the break fix guy please. no me!!!!!!! XD
Haha! Thank you!
I got my first pi 4 and I don’t know anything about Linux and I want to learn it and this one thing with pi hole I really want to do. Do you have a tutorial for pi and Linux for a noob like me? I subscribed to keep up to you tutorials. Thanks.
Very cool video exactly what I was looking for
great video super easy to follow allowing the github install!!
Glad it helped!
Pardon my ignorance but im guessing if you have a network that doesnt change e.g regex rules set on both 1a and 1b. As long as you have both 1a and 1b dns records in dhcp then this is not really required. Its only if you make regular changes it helps as to not duplicate work I suppose. Just wondering as I have deployed HA in aws without sync and not had a problem with either (touching mega wood right now) in fact....can I take that back.
Great video as well.
my first thought was: sounds like a job for DRBD
Gravity Sync + Pi Stacking = Black Hole
Would you please elaborate on how the second pi-hole unit keeps the network going (if the first one fails)? They'll both have different IP addresses so...wouldn't you have to be at the keyboard to manually resolve any issues related to the loss of the first pi-hole. Is there an automated way to allow the second unit to pickup where the first one left off?
Thank you.
Check out my keepalived video on how to load balance them!
Great video...I have 2 running now with gravity-sync - one in proxmox and one on a pi4. Is there a way to show logs combined from both piholes? A docker image that could gather data from both and combine to one dashboard would be awesome.
So relatable !
Hey Tim - great video. Wondering if you looked at using Proxmox to implement HA LXC containers? Thereby letting Proxmox due the HA across multiple servers?
Thanks for the great guide!
I've just set up a pair of Pi0W, thanks !
Hi Tim, i follow most your content but this one had me stumped. i tried to load your guide page, which is pretty much blank except a link to the github page. However after trying to keep up and editing the sudoers file, and rebooting - i could no longer access sudo. figured id mention the hickup as either i did something wrong or the guide needs to be dumbed down a bit more. thanks