Pi-hole Made EASY - A Complete Tutorial
ฝัง
- เผยแพร่เมื่อ 2 มิ.ย. 2024
- Block unwanted ads, malware and other annoyances all across your network using Pi-hole. Everything you need to know to get started is in this video.
CHAPTERS
==========
00:00 - Start
00:52 - Marker 4
04:42 - Testing DNS Lookup
05:04 - Machine-specific Configuration
06:05 - Testing Blocking
07:01 - Blocking Network-Wide
08:08 - Configuring a Static IP
09:55 - Adding More Blocklists
12:24 - Disabling Blocking for Clients
13:45 - Custom Blocking for Clients
18:05 - Marker 1
18:40 - Secure DNS with Unbound
LINKS
=====
One-step install: docs.pi-hole.net/main/basic-i...
Alternative install: docs.pi-hole.net/main/basic-i...
Barton Bytes DNS over TLS: bartonbytes.com/posts/configu...
GEAR
=====
LG 34" 5K2K Monitor - geni.us/k0DpoA
LG 5K Ultrafine Monitor - geni.us/behGoTB
Sonnet Echo 11 TB4 Dock - geni.us/NAJQHY8
GMMK Pro Keyboard -
Logitech G915 TKL Keyboard - geni.us/AgW3
Logitech G-PRO Mouse - geni.us/b2RLIx
Elgato StreamDeck - geni.us/MUIU
3DConnexion SpaceMouse Compact - geni.us/Y2dw4bh
BlackMagic Speed Editor - geni.us/lZOrP
Yubikey 5C (USB-C) - geni.us/VFeC
Yubikey Security Token 5Ci (USB-C/Lightning) - geni.us/GmSepG
Canon C70
Canon R5C
Canon RF 35mm f1.8 - geni.us/dcVFqvb
Canon RF 24-70mm f2.8 - geni.us/5qSfymf
Canon EF 16-35mm f4 - geni.us/nzu0
Shure SM7B Microphone - geni.us/e1DV
DBX286S Mic Preamp - geni.us/32vvTCQ
Amaran 100d - geni.us/8I6CLil
Aputure Light Dome 2 - geni.us/8D1JJYL
SUPPORT THE CHANNEL
=====================
* Buy me a coffee - www.buymeacoffee.com/techcrafted
* Support me on Patreon - / techcrafted
AFFILIATE LINKS
==============
Tech Craft is a participant in the Amazon EU Associates Programme, an affiliate advertising programme designed to provide a means for sites to earn advertising fees by advertising and linking to Amazon.co.uk - ภาพยนตร์และแอนิเมชัน
![[TH] 2024 PMSL SEA GF D1 | Summer | แข่งที่ไทย ต้องใส่ให้สุด](http://i.ytimg.com/vi/Jkuf7nCS7jI/mqdefault.jpg)
Excellently done. 1. No annoying "background" music to distort the information 2 no annoying picture in picture of anyone during the actual screen shots. 3. No pointless digressing about various subjects having nothing to do with the topic at hand. These three earned you a like and a sub. Looking forward to more tutorials.
The thing is, the stuff you mentioned is what people strangely prefer to see. Just look at how few subs he has for being direct and straightforward while TH-camrs that talk nonsense for 15 minutes have millions of subs. Makes no sense
@@shawnaldqdrumpf3952 Yep, you are right! Confusing, is it not?
Yes we were all so curious how you felt about it
Comprehensive guide, easy to understand and straight to the point. That's one of the best tutorials I ever saw, thank you very much. P.S. The cached DNS thing was driving me mad 😂
Good alternatives:
1. NextDNS
2. Adguard Home
Great video! If you don't want a dedicated server for pi-hole but would like to run it along with other applications it really works great in a docker container as well. A bit more configuration work to get the network settings for the container right but then it works like a charm. Plus updating is really easy.
Compact and competent. Nice!
subscribed! loved the way you teach and present the video man! not boring at all, this was just what i was looking for. cheers!
Thanks for this guide! This is one of my favourite channels on TH-cam
I really like your video. As others have noted, they’re clear and enjoyable.
I still have loooots to learn when it comes to the command line etc., but can’t wait to learn. I’ll start by exploring your pi+ipad videos afterwards. Thanks for all the knowledge! 🙌
What a bloody good video mate thanks, no fluff messing just to the bloody point 👌
The reason why the "Yeti" cooler ad was blocked was: it was attached to an ad url. If she went directly to Yeti, she could have gone to their cooler section and seen the product.
Great video
Thank you so much. Everything was well explained and I have been using pi-hole for while but I still learned some things.
Great tutorial. Thank you for all your hard work. Now I have no excuse to not add pihole to my home network 😊
I am very glad that I stumbled upon your video
Thanks for going into some detail on managing clients instead of just making yet another how to install PiHole video.
Great video and tutorial. Thank you. I'm using the very old, original 2012 model RPi B w/256MB memory and it works just fine for Pi-hole.
Thank you! Excellent tutorial!
Excelent video and most helpful. Thank you!!
THANK YOU SO MUCH THIS WAS EXTREMELY HELPFUL :D
After two videos you've become my favorite tech guide. Clear, to the point, no hype, no sales pitch. I know if I click one of your videos I'm going to learn what I need to know to at least get a solid start on a project.
Thanks. Excelent tutorial.
Primary/Secondary aka ‘backup’ DNS servers are NOT guaranteed by all clients to behave the way you appear to be assuming; if a client decides for whatever reason to use the ‘secondary/backup’, there’s a high probability it will continue using that DNS IP for the foreseeable future! We have 2 x PiHoles in our network, with the DHCP DNS set to each of them, so even if 1 PiHole goes belly-up, the other is still providing PiHole filtering.
For sure. Most OSes have a way to force a reset to the DNS state.
The specific issue I highlighted with primary/secondary relates to how Chrome itself deals with the servers. It actively seeks out a server in the list that supports DNS over HTTPS.
@@tech_craft Just to clarify, the point I was trying to make is that if you add non-PiHole DNS IPs to your router’s DHCP config (like you did in your example for 3rd & 4th, IIRC), will result in some of your devices some of the time using those non-PiHole DNS servers potentially for lengthy periods of time, and thus not being filtered per PiHole adblock lists, because some TCP/IP stacks no longer ‘prioritise’ their use of DHCP-provided DNS servers, more like “try it and if it work, stick to it. then later if that one stops working, move on to the next”. IOW, adding non-PiHole DNS IPs to your DHCP config will leave ‘holes’ in your PiHole coverage for some of the devices some of the time.
@@techydude You are both having two different conversations and not listening to each other in an effort just to say what each of you has or does!
Thank you, great vid!
Great video. Congrats!
I got my pihole to actually work for the first time ever. The best video i saw on the topic yet and your voice is soothing and chill. Loved it. You are gonna go far man!
Thanks for the kind words!
@@tech_craft I meant them. Keep it up!
great and easy understandable tutorial
Nice B rolls! Very snazzy.
Great video. I‘m little bit struggling with IPv6 and Pi-hole. This might be an interesting topic for another video.
Is there some reason why you even have IPv6 on your network? As far as I know, unless you are in the enterprise world, there is no need to use anything other than IPv4, especially on home networks.
@@jim7smith Lots of people use IPv6 at home. My router plugged in to FTTP has IPv6 enabled. AdGuardHome on a Pi works fine with it.
Thanks it really saved me ♥️♥️♥️
Great video on setting this up will have to create groups . One question if you have different VLAN's and you want those other VLANs to use the pi-hole do you make the change in the default network by entering the IP address of the pi-hole ? Is that the only place or do you enter it under the "internet" section?
That's where I'm lost or having a hard time understanding. . Keep up the great work.
yo bro, really thankya. Big respect
thank you well. nice Videoclip
very good video, thanks
ty bro, keep going!
*Thank you.*
Superb video. Thank you. Quick question. Is it worth running two pi holes on separate Pis so that you have a backup in case one fails. / they can share the load? If so - what’s the best way of doing so?
You definitely can and plenty of people do. You can set up your router to hand out both the two IP addresses so that your machines can see both Piholes.
There are many videos out there that show how to install pi-hole but not many that go into how to tune the blocklists as this one does, so well done. I'll bookmark this. One question about the unbound. You were using Cloudflare dnssec before you configured unbound. Since Cloudflare is using dnssec, isn't that just as secure as using the unbound, which is also using dsnsec? If not , what's the difference?
DNSSEC ≠ Unbound . Unbound supports and can utilize DNSSEC. DNSSEC is encrypted DNS requests, an analogy being "https" encrypted websites. Normal DNS traffic is unencrypted, like visiting a "http" website. The encrypted DNS requests are sent to a DNSSEC capable service provider chosen in the DNS Settings with tick boxes such as Google, OpenDNS, Level3, etcetera.
Unbound is a DNS lookup server, that queries the "dot" ( . ) controllers as to whom has the requested address, recursively. Your DNS requests are not being serviced by an upstream provider anymore, like the ones you can select under DNS Settings. It is instead being serviced by the Unbound service that is installed. I am actually surprised it worked without importing the root.hints list from internic.net, which has the initial lookups for the root domain ( . ). If you decide to install unbound, I suggest you follow the instructions provided in the pi-hole documentation. I would also at the very end run "systemctl enable unbound", as well as "systemctl enable pihole-ftl" to have the services start automatically at system boot. Unbound usually does not if installed manually, even following directly the documentation from their website.
For block lists, searching on GitHub for a combination of the terms "block list, pi-hole, pi hole, web filter, filter list, advertising block list, *insert operating system or web application of choice* block list", you will find many results. Select some that seem to be more up to date for best results. Many lists ebb and fade, losing additions or maintaining.
Nice video. One question. I do have a dream machine pro and I activated the DNS filtering. Would be good to run both filters at the same time? Or replacing the Ubiquity filter with pihole?
I turned off all the Ubiquiti filtering so I'm not certain, but you could certainly try it and see how it goes.
Bravo.
Excellent. Thank you.
How well does this work with private relay? I tried setting one up on docker on my Synology but was giving me issues with DNS and Private Relay
I haven't used Private Relay so I can't say for sure. I think some part of PR is DNS over HTTPS/TLS so that will definitely interfere with Pihole's ability to block that traffic.
It would be helpful if you would show a diagram of the setup as you describe.
Obrigado 😎👍
Hi, I installed with windows and docker, but now I'm lost now that it's installed. I tried to follow along with your tutorial and a few others, but where I get lost is what to do with my IP address? Do I need to go change something in my settings? I vaguely understand that I have to set it as a single address instead of letting the computer decide, but you can assume I'm the most beginner of beginners. It seems like it is working but I just don't have the same menus as you other than the web interface. Thanks in advance if you have any advice, and no worries if you don't!
Do you know any reputable sellers where I can buy a pi-hole? I really don't want to go through the trouble of building this and dicking around with the software. I just want to buy a few of them, and set them up at my place, and give some to my family.
Great video, but I hit wall. I cannot change the DNS setting on the router that my ISP provided, and I'm looking for a alternative. I'm seeing some people disabling the DHCP server from the ISP and using the one from Pi-hole. Is it viable?
Need help getting attempt to write a readonly database error and I can’t add any adlists or whitelist or block anything any ideas
if I change my UDM Pro dns dufault I can no longer log into my pi-hole then I come directly into my UDM instead of pi-hole menu settings
I created a second group for one family member who keeps complaining, but somehow it still blocks him from opening the google ads products.
I even tried to add some whitelist regex and domains for those domains and assign it to the NoBlocking group, but no success. :(
What am I doing wrong?
I have pi-hole installed on my ubuntu home server, but I can't seem to get anything to go through it. All queries are at 0 and I keep seeing ads.
... okay, i'm getting queries on the dashboard, but nothing is being blocked.
I can get block groups to work. I have to have the client by default or it won't block them.
Perfect video!
Someone wish share other blocklist?
works
Hello how block ads / cosmetic filter / and / ad script loading / or pi-hole cant block this is type ads
Hi, great video, I just added the lists as per your video but for some reason it shows 800000 domains!
The lists are always developing - each time I refresh them I get more and more!
Is it possible to set up Pi-hole to block youtube ads on a Roku?
TH-cam ads are typically not blocked by Pihole. I can’t speak exactly for the app on Roku but I expect it won’t work.
But doesn't running a recursive dns open the door to DNS amplification attacks and DNS cache poisoning?
The pihole endpoint is not available on the public Internet and I'm using a secure connection to a trusted upsteam (1.1.1.1) so the attack surface is greatly reduced. I'm not qualified to say it's zero, but I think this is a fine setup.
Is there a commercially available product available that will do the same thing?
Apparently NextDNS does that
What OS is he using for his Pi?
Can you block youtube ads on a samsung tv?
So this means I will lose content filtering since I won't be using OpenDns anymore?
You can set OpenDns as your upstream instead of the CloudFlare upstream that I used.
@@tech_craft I setup unbound, but it would not use OpenDns as upstream even though it was added manually with a #535 at the end.. still didn't work.
@@tech_craft but wouldn't adding a custom upstream server defeat the purpose of security when using unbound?
Tools-> Update Gravity.
No need to go to terminal to update the lists.
Created the file and copied contents to it and it gives errors - just wont work. TRY IT,
can you route ip adress to a name (type name into addressbar)?
You can. There's a config section called Local DNS that allows you to add your own DNS names.
@@tech_craft where might i find it?
But if you install it on an old machine running Linux it probably wont have a Gigabit LAN capability.
doen't block youtube ads?
No, but ublock origin does.
@@woodcat7180 ubo blocks ads? how do get ubo on my cellphone? tyvm
@@infotruther uBlock Origin is a browser plugin on mobile and desktop. On Android, Vanced was the best.
No. TH-cam ads are inserted into the video stream in a way that makes DNS-based blocking in-effective.
@@woodcat7180 FreeTube is another yt client for desktop OS, on android: NewPipe ;)
0:58 you want me to paste that command into what terminal? why do all these pihole tutorials skip basic steps?
Beware: Pi-hole clobbered Netflix and TH-cam on my Alexa-based smart TV (FireTV Omni), using the default blocklist. Title thumbnails don't load reliably, and videos randomly don't play on both services. I turned Pi-hole off, restart the TV, and all is well.
Phones and tablets in the house *seemed* to work fine.
You can exclude the TV using the groups function.
Far too many people put a list together and never bother checking or keeping it updated. Most of the things they block are required because they misunderstand what they are for. One example was blocking everything microsoft as it spied on people, which was a stupid thing to do as most of the sites were needed.
People even block update servers for LG and Samsung due to a lack of intelligence. You are best sticking with default lists only, or searching for whitelists. The whitelists should be used to remove those addresses from all known lists by stupid people putting lists of 1million plus domains out.
Great vid, still going strong 1yr later! Sub+1, Thanks!
Everyone knows you don't click on Google Ads 😆
I'm always astounded at how much of the search results page on Google is taken up with ads!
You not only get more data to refine blocking, but also to refine the other half and children.
It is a bit stupid that you use the UI for the lists but then have to use a terminal command
It's free software - I try not to complain about great solutions provided by volunteers.
@@tech_craft True but it feels half baked. One reason (of many) to use a graphical interface is to be welcoming to those who don't do well with the command line. Having to go back to it defeats that reason
@@lewiskelly14 One of the many great reasons to use open source software is that you are completely free to write your own interface for the task at hand so that you are completely satisfied with it without complaining about the provided free solution.
@@jim7smith Don't try that BS on me.
@@lewiskelly14 then go complain to free softwares manager
You wrote in the title that this is a complete tutorial, but you even did not show where to connect a Raspberry computer to my home Internet network and how. Another tutorial for advanced people who know everything and only need details. There is no step-by-step tutorial anywhere on the Internet. They are all the same, they only show the configuration assuming the user knows everything, no one covers the basics.
I was looking for a pi-hole tutorial, but you speak way too fast for this non-native English speaker. I could slow the video down I suppose, but I prefer to look elsewhere for a more intelligible tutorial. Just as an FYI.
thank you so much , it worked