From 95b73daa36b23565a8566f71f9b202d3459b685f Mon Sep 17 00:00:00 2001 From: Sam Chudnick Date: Sun, 25 Jun 2023 09:52:36 -0400 Subject: Initial Commit --- data/pihole/pihole_unbound.conf | 35 +++++++++++++++++++++++++++++++++++ data/pihole/setupVars.conf | 10 ++++++++++ 2 files changed, 45 insertions(+) create mode 100644 data/pihole/pihole_unbound.conf create mode 100644 data/pihole/setupVars.conf (limited to 'data/pihole') diff --git a/data/pihole/pihole_unbound.conf b/data/pihole/pihole_unbound.conf new file mode 100644 index 0000000..7f768f1 --- /dev/null +++ b/data/pihole/pihole_unbound.conf @@ -0,0 +1,35 @@ +server: + verbosity: 0 + + interface: 127.0.0.1 + port: 5335 + do-ip4: yes + do-udp: yes + do-tcp: yes + do-ip6: no + prefer-ip6: no + + + # Trust glue only if it is within the server's authority + harden-glue: yes + + # Require DNSSEC data for trust-anchored zones + harden-dnssec-stripped: yes + + use-caps-for-id: no + + edns-buffer-size: 1232 + + prefetch: yes + + num-threads: 1 + + so-rcvbuf: 1m + + # Ensure privacy of local IP ranges + private-address: 192.168.0.0/16 + private-address: 169.254.0.0/16 + private-address: 172.16.0.0/12 + private-address: 10.0.0.0/8 + private-address: fd00::/8 + private-address: fe80::/10 diff --git a/data/pihole/setupVars.conf b/data/pihole/setupVars.conf new file mode 100644 index 0000000..aed21d7 --- /dev/null +++ b/data/pihole/setupVars.conf @@ -0,0 +1,10 @@ +QUERY_LOGGING=true +INSTALL_WEB=true +PIHOLE_DNS_1=127.0.0.1#5335 +PIHOLE_INTERFACE=eth0 +DNSSEC=true +DNS_BOGUS_PRIV=true +DNSMASQ_LISTENING=single +BLOCKING_ENABLED=true +WEBUIBOXEDLAYOUT=boxed +WEBTHEME=default-dark -- cgit v1.2.3