From 95b73daa36b23565a8566f71f9b202d3459b685f Mon Sep 17 00:00:00 2001
From: Sam Chudnick <sam@chudnick.com>
Date: Sun, 25 Jun 2023 09:52:36 -0400
Subject: Initial Commit

---
 data/pihole/pihole_unbound.conf | 35 +++++++++++++++++++++++++++++++++++
 data/pihole/setupVars.conf      | 10 ++++++++++
 2 files changed, 45 insertions(+)
 create mode 100644 data/pihole/pihole_unbound.conf
 create mode 100644 data/pihole/setupVars.conf

(limited to 'data/pihole')

diff --git a/data/pihole/pihole_unbound.conf b/data/pihole/pihole_unbound.conf
new file mode 100644
index 0000000..7f768f1
--- /dev/null
+++ b/data/pihole/pihole_unbound.conf
@@ -0,0 +1,35 @@
+server:
+    verbosity: 0
+
+    interface: 127.0.0.1
+    port: 5335
+    do-ip4: yes
+    do-udp: yes
+    do-tcp: yes
+    do-ip6: no
+    prefer-ip6: no
+
+
+    # Trust glue only if it is within the server's authority
+    harden-glue: yes
+
+    # Require DNSSEC data for trust-anchored zones
+    harden-dnssec-stripped: yes
+
+    use-caps-for-id: no
+
+    edns-buffer-size: 1232
+
+    prefetch: yes
+
+    num-threads: 1
+
+    so-rcvbuf: 1m
+
+    # Ensure privacy of local IP ranges
+    private-address: 192.168.0.0/16
+    private-address: 169.254.0.0/16
+    private-address: 172.16.0.0/12
+    private-address: 10.0.0.0/8
+    private-address: fd00::/8
+    private-address: fe80::/10
diff --git a/data/pihole/setupVars.conf b/data/pihole/setupVars.conf
new file mode 100644
index 0000000..aed21d7
--- /dev/null
+++ b/data/pihole/setupVars.conf
@@ -0,0 +1,10 @@
+QUERY_LOGGING=true
+INSTALL_WEB=true
+PIHOLE_DNS_1=127.0.0.1#5335
+PIHOLE_INTERFACE=eth0
+DNSSEC=true
+DNS_BOGUS_PRIV=true
+DNSMASQ_LISTENING=single
+BLOCKING_ENABLED=true
+WEBUIBOXEDLAYOUT=boxed
+WEBTHEME=default-dark
-- 
cgit v1.2.3