azorius.aria.company

pi-hole and pi-vpn with own domain name
from GuillaumeGus@lemmy.dbzer0.com to selfhosted@lemmy.world on 23 Mar 16:36
https://lemmy.dbzer0.com/post/40612834

I have successfully installed (for the second time) a pi-hole on the raspberry 4B. But I also have failed to make pi-vpn works.

I would like some help or suggestions to setting up it correctly.

I also have a domain name through namecheap, and maybe it would help setting it properly, and then setting it for a jellyfin server later. Any help is appreciated. Thanks all!

#selfhosted

threaded - newest

Shimitar@downonthestreet.eu on 23 Mar 17:02 next collapse

Hard to say, unless you give us more on why and where you failed!

jonathan@lemmy.zip on 23 Mar 17:17 next collapse

I’m hesitant to promote vc-funded software, but Tailscale would probably the simplest setup for VPN.

LazerDickMcCheese@sh.itjust.works on 23 Mar 18:02 collapse

This is the first I’ve heard of Tailscale=/=infallible. As a long-time user, should I switch to a different setup?

jonathan@lemmy.zip on 23 Mar 18:13 collapse

Stick with it for now, just be aware they need to make money at some point.

LazerDickMcCheese@sh.itjust.works on 23 Mar 18:42 collapse

Fair enough

sem@lemmy.blahaj.zone on 23 Mar 19:52 collapse

Try to keep track of how much work you invest because it may be time-expensive to switch later on if you built a lot of stuff on their infra. Which is not the end of the world.

LazerDickMcCheese@sh.itjust.works on 23 Mar 20:14 collapse

I have remote users, and I’m hosting several services through it. It wouldn’t be pretty, but we’d survive

nitrolife@rekabu.ru on 23 Mar 17:18 next collapse

In general, this is of course 100% based on speculation, but I assume that you can connect to a VPN but you cannot access any resource inside the local network. Just because this is the most basic mistake that beginners usually make. And it’s related to the fact that your pi is not your default gateway. To solve this, you need to enable SNAT on the local Pi interface. There are many guides on the Internet on how to do this.

P.S. Unfortunately, I have a poor telepathy skill, so it would be good to get a little more background. At least an accurate description of the problem. =)

vk6flab@lemmy.radio on 23 Mar 17:37 next collapse

What actual problem are you attempting to solve?

If you want pihole blocking away from your LAN, set the DNS for the device to adguard and be done with it.

If you’re trying to do something else, give us some context.

MangoPenguin@lemmy.blahaj.zone on 23 Mar 19:06 next collapse

You don’t absolutely need a domain for that stuff to work, what problem are you trying to solve?

UberKitten@lemmy.blahaj.zone on 25 Mar 00:00 collapse

whatever it is you’re trying to do, be careful that your pi-hole DNS on port 53 is not exposed to the internet. otherwise your server will be abused for DDOS amplification attacks.