Initial CommitHEAD master

author: Sam Chudnick <sam@chudnick.com> 2023-06-25 09:52:36 -0400
committer: Sam Chudnick <sam@chudnick.com> 2023-06-25 09:52:36 -0400
commit: 95b73daa36b23565a8566f71f9b202d3459b685f (patch)
tree: cb17b021be70e7868d0ec235a761f0ecdc80f3f2 /data/pihole
2 files changed, 45 insertions, 0 deletions
diff --git a/data/pihole/pihole_unbound.conf b/data/pihole/pihole_unbound.conf
new file mode 100644
index 0000000..7f768f1
--- /dev/null
+++ b/data/pihole/pihole_unbound.conf
@@ -0,0 +1,35 @@
+server:
+    verbosity: 0
+    interface: 127.0.0.1
+    port: 5335
+    do-ip4: yes
+    do-udp: yes
+    do-tcp: yes
+    do-ip6: no
+    prefer-ip6: no
+    # Trust glue only if it is within the server's authority
+    harden-glue: yes
+    # Require DNSSEC data for trust-anchored zones
+    harden-dnssec-stripped: yes
+    use-caps-for-id: no
+    edns-buffer-size: 1232
+    prefetch: yes
+    num-threads: 1
+    so-rcvbuf: 1m
+    # Ensure privacy of local IP ranges
+    private-address: 192.168.0.0/16
+    private-address: 169.254.0.0/16
+    private-address: 172.16.0.0/12
+    private-address: 10.0.0.0/8
+    private-address: fd00::/8
+    private-address: fe80::/10
diff --git a/data/pihole/setupVars.conf b/data/pihole/setupVars.conf
new file mode 100644
index 0000000..aed21d7
--- /dev/null
+++ b/data/pihole/setupVars.conf
@@ -0,0 +1,10 @@
+QUERY_LOGGING=true
+INSTALL_WEB=true
+PIHOLE_DNS_1=127.0.0.1#5335
+PIHOLE_INTERFACE=eth0
+DNSSEC=true
+DNS_BOGUS_PRIV=true
+DNSMASQ_LISTENING=single
+BLOCKING_ENABLED=true
+WEBUIBOXEDLAYOUT=boxed
+WEBTHEME=default-dark
author	Sam Chudnick <sam@chudnick.com>	2023-06-25 09:52:36 -0400
committer	Sam Chudnick <sam@chudnick.com>	2023-06-25 09:52:36 -0400
commit	95b73daa36b23565a8566f71f9b202d3459b685f (patch)
tree	cb17b021be70e7868d0ec235a761f0ecdc80f3f2 /data/pihole

diff --git a/data/pihole/pihole_unbound.conf b/data/pihole/pihole_unbound.conf new file mode 100644 index 0000000..7f768f1 --- /dev/null +++ b/data/pihole/pihole_unbound.conf
@@ -0,0 +1,35 @@
	1	server:
	2	verbosity: 0
	3
	4	interface: 127.0.0.1
	5	port: 5335
	6	do-ip4: yes
	7	do-udp: yes
	8	do-tcp: yes
	9	do-ip6: no
	10	prefer-ip6: no
	11
	12
	13	# Trust glue only if it is within the server's authority
	14	harden-glue: yes
	15
	16	# Require DNSSEC data for trust-anchored zones
	17	harden-dnssec-stripped: yes
	18
	19	use-caps-for-id: no
	20
	21	edns-buffer-size: 1232
	22
	23	prefetch: yes
	24
	25	num-threads: 1
	26
	27	so-rcvbuf: 1m
	28
	29	# Ensure privacy of local IP ranges
	30	private-address: 192.168.0.0/16
	31	private-address: 169.254.0.0/16
	32	private-address: 172.16.0.0/12
	33	private-address: 10.0.0.0/8
	34	private-address: fd00::/8
	35	private-address: fe80::/10


diff --git a/data/pihole/setupVars.conf b/data/pihole/setupVars.conf new file mode 100644 index 0000000..aed21d7 --- /dev/null +++ b/data/pihole/setupVars.conf
@@ -0,0 +1,10 @@
	1	QUERY_LOGGING=true
	2	INSTALL_WEB=true
	3	PIHOLE_DNS_1=127.0.0.1#5335
	4	PIHOLE_INTERFACE=eth0
	5	DNSSEC=true
	6	DNS_BOGUS_PRIV=true
	7	DNSMASQ_LISTENING=single
	8	BLOCKING_ENABLED=true
	9	WEBUIBOXEDLAYOUT=boxed
	10	WEBTHEME=default-dark