this post was submitted on 15 Jan 2024
169 points (97.2% liked)

Selfhosted

40006 readers
614 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

I've been aware of pi-hole for a while now, but never bothered with it because I do most web browsing on a laptop where browser extensions like uBlock origin are good enough. However, with multiple streaming services starting to insert adds into my paid subscriptions, I'm looking to upgrade to a network blocker that will also cover the apps on my smart TV.

I run most of my self hosted services on a proxmox server, so I'd like something that'll run as an LXC container or a VM. I'm also vaguely aware that various competing applications have come out since pi-hole first gained popularity. Is pi-hole still the best thing going, or are there better options?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 12 points 9 months ago (2 children)

Adguard-home is way better than pi-hole imo

[–] [email protected] 4 points 9 months ago (3 children)

Pihole user for more than 5 years,.can confirm that it is indeed better, made the switch few months ago

[–] [email protected] 7 points 9 months ago (1 children)

What makes adguard home better than pihole? Genuinely curious, I'm running pihole now and have been for a couple of years without issues.

[–] [email protected] 4 points 9 months ago (1 children)

What makes it better other than the UI? I'm weary of using it because it is developed by Russian developers.

[–] [email protected] 3 points 9 months ago (2 children)

Encryption, UI, probably a little bit more serious development

But encryption is a big thing, DoT, DoH, Quic. And soon they will have ECH

[–] [email protected] 3 points 9 months ago (2 children)

Just wanted to chime in and say that with a pihole you can also have encryption if you point to a local resolver like cloudflared or unbound.

My pihole forwards everything to a cloudflared service running on 127.0.0.1:5353 to encrypt all my outgoing DNS queries, it was really easy to setup: https://docs.pi-hole.net/guides/dns/cloudflared/

[–] [email protected] 1 points 9 months ago (1 children)

Hold on, this is not the same encryption

The encryption i was talking about is the encryption of your dns server

The article you sent is talking about upstream dns server encryption

[–] [email protected] 1 points 9 months ago (1 children)

The encryption i was talking about is the encryption of your dns server

You mean encryption between the client and your DNS server, on your local network?

[–] [email protected] 1 points 9 months ago

You can do it on your local network, but this won't make much sense

I mean encryption between your phone or laptop outside of your house, and your dns server at your house

[–] [email protected] 1 points 9 months ago* (last edited 9 months ago)

That's a bunch of extra manual work though - both the initial setup, plus keeping the extra software packages up-to-date. With AdGuard Home, it's already configured to use DoH by default.

[–] bdonvr 1 points 9 months ago (2 children)

That's cool for certain applications but on my home network should I really be super concerned about DNS encryption?

[–] [email protected] 4 points 9 months ago (1 children)

Not within the network, but translating regular dns to DoH before heading out to WAN keeps your browsing a little bit more private from your isp. Marginal, but it is a difference.

[–] [email protected] 1 points 9 months ago

It's not just a little bit more private... It's a lot more private. Some ISPs have been known to build advertising profiles using DNS data. It's trivial for them to see all DNS lookups and even modify the responses, since it's both unencrypted and unauthenticated by default.

[–] [email protected] 2 points 9 months ago

Probably not, but anyway it's pretty cool to have an option to do this kind of stuff

You can set up this dns on your phone, laptop, without a need of vpn (although vpns are cool, especially tailscale)

But, are you always connected to the vpn? Or even to connect to the vpn itself you probably need dns, why would not use your own

[–] [email protected] 1 points 9 months ago

As an AdGuard home user for more than a few years, I switched back to Pihole because it wasn’t really any better. It was also easier to pair pihole with Unbound.

[–] [email protected] 3 points 9 months ago (1 children)

Plus it's easy to run multiple AdGuard Home servers and keep them in sync using https://github.com/bakito/adguardhome-sync

[–] [email protected] 2 points 9 months ago (1 children)

Oh, oh, oh, gimme that!!

First time i hear about something like that, i'm going to install it asap

[–] [email protected] 1 points 9 months ago

It works well! I have one AdGuardHome instance running on my home server and one running on a Raspberry Pi, both using Docker. Having two prevents the internet from breaking in case I have to shut down one of them for some reason.