~quaff/secure-dns

A dockerized setup for Pihole (ad block) + Mullvad DNS (DoH) upstream (cloudflared).

6dfe9bc fix: use quad9 dns to resolve DoH connection on cloudflared

~quaff pushed to ~quaff/secure-dns git

22 days ago

2453bb0 feat: switched to Mullvad DoH via cloudflared. removed unbound mvance docker usage

~quaff pushed to ~quaff/secure-dns git

5 months ago

#Secure DNS

#Overview

A dockerized setup for Pihole (ad block) + Mullvad DNS (DoH) upstream (cloudflared).

#Requirements

  • docker
  • docker-compose

#Setup (Linux & macOS)

Clone this repo on the computer you want to use as a secure DNS server.

Copy .env.example to .env and make the appropriate changes.

To start up, run

docker compose up -d

Now you can change your router/device DNS to the server IP.

#Updating .env

After making changes to .env you'll need to restart the docker network.

docker compose down && docker compose up -d

#Auto start (Linux + macOS)

Add the following to your crontab:

@reboot /bin/bash -c "cd <working_path-secure-dns>/ && docker compose up -d"

#Upgrading

To upgrade pihole when there's new releases run (make sure you pull the images while secure-dns is running):

docker compose pull

Then restart pihole

docker compose up -d --remove-orphans

#Using secure-dns as your DNS resolver

Once secure-dns is up and running, change your DNS to 127.0.0.1. You're done!

Test your connection for leaks.

#Auto upgrade with Pullio

If you'd rather not think about upgrading, you can install pullio, and secure-dns should be supported.

#Attribution

#Software

pi-hole/pi-hole

pi-hole/docker-pi-hole

hotio/pullio

#Docker images

pihole/pihole

cloudflare/cloudflared

#Guides

Pi-hole and cloudflared with Docker