Comment on When Pi-hole is down?
Bizarroland@kbin.social 4 months ago
If you're router has a failover DNS option, usually listed as DNS 2, I would set something like quad 9 as your backup DNS. Address is 9.9.9.9.
If you don't want to do that, then having a second instance of pihole running as the secondary DNS is pretty much your only good option
AndiTails@lemmy.world 4 months ago
That’s not how the two entries for DNS works. Devices will use both rather randomly, and therefore some requests will not be filtered.
The best way is to run two instances for redundancy.
Bizarroland@kbin.social 4 months ago
Can you send me some more information on this because this is the first I've ever heard that it would not automatically pick the fastest closest and most responsive DNS system available.
No remote DNS server will ever be as fast as one that is local
Pete90@feddit.de 4 months ago
I tried this. Put a DNS override for Google.com for one but not the other Adguard instance. Then did a DNS lookup and the answer (ip) changed randomly form the correct one to the one I used for the override. I’m assuming the same goes for the scenario with the l public DNS as well. In any case, the response delay should be similar, since the local pi hole instance has to contact the upstream DNS server anyway.
Bizarroland@kbin.social 4 months ago
Yeah, looks like you don't know what you're talking about.
The second ipv4 DNS address is for redundancy and every network connected system will use the first one as long as it responds.
It's perfectly fine to have a single pihole and use something like quad9 as a failover in the unlikely event that your pihole goes down unexpectedly.
EncryptKeeper@lemmy.world 4 months ago
Actually they do know what they’re talking about. It’s operating system dependent, but modern Windows operating systems will query all configured DNS servers in parallel and will accept the first answer it receives. So if you configure your Pihole as one DNS server and a public DNS server as a second, a lot of your traffic will just bypass your Pihole ad filtering entirely.
Bizarroland@kbin.social 4 months ago
Proof?
I read 15 different sites about DNS and not a one of them claimed anything like this. They universally all stated that your network attached devices would use the 1st one unless it didn't respond and only use the 2nd one if the 1st one did not.
So once again, I ask "Can you send me some more information on this" and not just claim it without any backup information?
I apologize if I am coming off rude, just my BS meter is getting close to the red zone and I would really appreciate some reliable evidence.
AndiTails@lemmy.world 4 months ago
Run two and check the logs. You’ll see about 20% of your requests will log on the second instance. So currently, that’s 20% of your DNS requests not being filtered.
You’ll also find some devices just latch on the the second and never use the first - again, in your scenario, these are not being filtered.
BarbecueCowboy@kbin.social 4 months ago
I can back this up with experience.
I'm actively running two piholes for years now. About 2/3rds of my traffic does go to the primary and some seem to 'lock on' to using just one, but most devices will swap between the two at their leisure.