Squid (pfsense package) DNS pointed to pi-hole or not?

kevindd992002

So I started using pi-hole as my main DNS server. Pi-hole's upstream DNS server is the pfsense unbound service. The pfsense DHCP server is configured to hand out the Pi-hole IP address as the primary DNS server for clients.

As I understand it, it is not recommended to point pfsense to use Pi-hole and just let it use 127.0.0.1 (its own unbound service). Why?

Does the same logic apply to the Squid pfsense package also? Let it use 127.0.0.1 or point to Pi-hole?

@johnpoz , I know you're an expert on this topic.

kevindd992002

@johnpoz Do you still have any ideas on my questions?

johnpoz

Not even sure why this is a question - what logic do you have to point pfsense to pihole, just to come back to pfsense..

Pi-hole's upstream DNS server is the pfsense unbound service

If what your looking to do is break dns - sure go ahead and do that and create your circle..

kevindd992002

@johnpoz said in Squid (pfsense package) DNS pointed to pi-hole or not?:

Not even sure why this is a question - what logic do you have to point pfsense to pihole, just to come back to pfsense..

Pi-hole's upstream DNS server is the pfsense unbound service

If what your looking to do is break dns - sure go ahead and do that and create your circle..

Though I appreciate all your help, I'm not sure why you decide to be condescending 100% of the time. Why can't you simply help people? Not everyone is as knowledgeable as you are, which is why there's this forum.

Obviously, I did my research which is why I said above that "I know it is not recommended to point pfsense to pi-hole". I was simply asking the "why".

My first question is just a side question. My main question is the 2nd one:

Does the same logic apply to the Squid pfsense package also? Let it use 127.0.0.1 or point to Pi-hole? You're not breaking DNS if you do this. One use case for this is you want your proxy server to be included in the stats in pi-hole that make the graph.

johnpoz

Not my fault you read condescension into everything dude.. Maybe you should seek some help for your low self esteem??

Not sure what you want other than the answer to your questions... This question is so freaking moronic that I answered in the first place is beyond me..

If you point pfsense to pihole, and you point pihole to pfsense - how and the F would that work???

Pippin

Just johnpoz's way to get a point across, relax ;)

kevindd992002

@johnpoz said in Squid (pfsense package) DNS pointed to pi-hole or not?:

Not my fault you read condescension into everything dude..

Not sure what you want other than the answer to your questions... This question is so freaking moronic that I answered in the first place is beyond me..

If you point pfsense to pihole, and you point pihole to pfsense - how and the F would that work???

It does work! It's not an infinite loop! The pfsense squid proxy points to pi-hole for DNS queries. Pi-hole forwards the query to pfsense and pfsense forwards to ISP! So it's just one circle, not an infinite loop! Unbound will always know when to forward. So go figure!

@Pippin said in Squid (pfsense package) DNS pointed to pi-hole or not?:

Just johnpoz's way to get a point across, relax ;)

Yeah, I guess that's a non-standard way of having a conversation with people.

Gertjan

@kevindd992002 said in Squid (pfsense package) DNS pointed to pi-hole or not?:

Yeah, I guess that's a non-standard way ...

You should have met the off-standard guy. Hunt down some @doktornotor replies.
Warning : Don't drink or eat will you read, you'll suffocate at worst, and at best your screen and keyboard will be dirty.

Check out this recent video : https://www.youtube.com/watch?v=6wToQrcvkF8

kevindd992002

@Gertjan said in Squid (pfsense package) DNS pointed to pi-hole or not?:

@kevindd992002 said in Squid (pfsense package) DNS pointed to pi-hole or not?:

Yeah, I guess that's a non-standard way ...

You should have met the off-standard guy. Hunt down some @doktornotor replies.
Warning : Don't drink or eat will you read, you'll suffocate at worst, and at best your screen and keyboard will be dirty.

Check out this recent video : https://www.youtube.com/watch?v=6wToQrcvkF8

Yeah, that guy is notorious.

I actually watched that exact video a few hours ago but I'm not sure how it's relevant to my question? (no offsense meant). I wasn't trying to compare pi-hole and pfblockerNG.

Gertjan

True ... but the same guy sows more about PI-Hole (check out his channel ) - and how to set it up, related to pfSense.

kevindd992002

@Gertjan Ahh, I see what you're saying. Thanks!