But, pro-tip, use a machine that has an ssd (or other real) drive. Having your network DNS go down because of a bad or corrupted sd card will drive you bonkers.
> use a machine that has an ssd -- a bad or corrupted sd card will drive you bonkers
I've seen this said many times, and it matches my experience as well. But why should an SSD be more reliable than an SD card when the underlying technology (flash memory) is identical? Or is it not identical? Or it is due to the more sophisticated controller of an SSD?
I believe the comment was referring to running Pi-Hole on something other than a RaspberryPi since they are known for SD file system corruption. It has happened to my Pi-Hole and music server running on separate R-Pis. https://hackaday.com/2022/03/09/raspberry-pi-and-the-story-o... Use a throwaway PC that you have kicking around, or run it virtualized...
That's not the only thing that can go wrong. It takes a properly babysat server in general. My end result with Pihole was, my wife occasionally asked why her internet wasn't working (for whatever reason of the day), and eventually I took it out.
Do you have advice how to replace the default Internet provider router? I have Xfinity's now and it terminates the coax, does switching, wifi, and does various firewall functions. I assume you have to buy a XXXX, disable everything on the Xfinity box and turn it into a passthrough switch. What is a good XXXX here?
You don't, really. You can (usually) change the DNS resolver your provided router uses to an internal IP, then statically assign that IP to your pi-hole. It's about 5 minutes in a GUI web panel, give or take the googling to find and navigate that GUI for your specific ISP-provided router.
That said a better router is usually worth it, I like my Netgear Nighthawk because I'm a bit lazy, someone else probably has a better suggestion.
> You don't, really. You can (usually) change the DNS resolver your provided router uses to an internal IP, then statically assign that IP to your pi-hole.
This is totally right, and that is how I have my network configured. I have a firewall behind a dumb cable modem, and I set the DNS server for the network on that device. When machines configure w/ DHCP, they get assigned the router's address for dns resolution, which then delegates to the pi-hole. That's all specific to my hardware though.
You also have to ensure the Xfinity box's DHCP server doesn't lease the Pihole's IP address to a random device. Like set a 1-250 range for DHCP and give the Pi 251.
I live in France so obviously I won't help you directly. I guess however that there is a whole community of people in the US who documented "how to replace the box from provider X by the device Y".
Depending on the details, it can go from plugging your fibre directly into a small factor PC, to not being able to do it because even bridging is not available on the box and everything is proprietary.
I for instance replaced the shitty Livebox 3 from my French provider Orange with a PC running Debian. Before that it was a Ubiquity Edge Router 4.
Orange make it difficult to change the device, but not impossible. I would love them to just provide my IP though a standard authenticated DHCP request.
I've never used Comcast's/Xfinity's own hardware. Always bought my own modem and router, which has generally worked out well, outside of when I'm (rarely) having quirky service issues and can't easily prove that it's not my hardware.
If you don't want to do that and keep their gateway, I'd expect you can run pi-hole anyway, and if you're not getting the behavior you want (e.g., the gateway seems to be intercepting dns or something), you can try DNS-over-HTTPS.
I have spectrum, but same in principal here. Having familiarity with hardware I like is why I opt to provide my own modem and router. If anyone is considering going that route, I've had really good luck with ubiquiti networks unifi line. Really great quality for what you pay.
That was a thought of mine, but I've literally never had to service or maintain or admin my r-pi. It just hums along in the background. I realize this is anecdotal, but worth mentioning.
The payoff (usable, perhaps even enjoyable, internet) is worth any admin it might create.
