Enabled unbound dns as per instructions on blog. Works as far as I can tell (DNS leak gives my own IP as my DNS, DNSSEC works, IPv6, etc) unbound is port 5353. router is a linksys 8500 with DD-WRT installed. Pihole is running raspbian stretch, FTLDNS, all up-to-date. additionally https://rootcanary.org/test.html gives me a return result of all unlocked, not sure if that's a good or bad thing.
Not to my knowledge, I only installed it once. how can I check?
My workaround to get it working again is to setup my pihole as the dhcp, which I probably will just keep doing, however I'm not sure if I did something wrong or it's an unattended side effect.
I, too, have just made the switch to unbound from cloudflared, and it seems that unbound is indeed listening on two ports by default, though not sure what this means. @DL6ER or @DanSchaper will probably know!
That said, running dig google.com @127.0.0.1 -p 8953 yields no answer.
Personally not looked into removing cloudflared right now, but in the mean time i've stopped and masked the service (sudo systemctl stop cloudflared && sudo systemctl mask cloudflared
I wend ahead and deleted all the cloudflared folders/user and stopped cloudflared via systemctrl stop cloudflared.
I did a dig at 8953 and returned no results as well:
; <<>> DiG 9.10.3-P4-Raspbian <<>> @127.0.0.1 -p 8953 google.com
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached.
Is it ossible DD-WRT is port sniffing and going to port 5353 for DNS instead of 53? I didn't it up to use a specific port (didn't give me the option) I assumed I plugged in the IP and it would goto port 53
Remote Control Options
[...]
control-port:
The port number to listen on for IPv4 or IPv6 control interfaces,
default is 8953. If you change this and permissions have been
dropped, you must restart the server for the change to take
effect.
Okay, I figured it out I think, I just don't know how to solve it, maybe someone can help me because IPv6 hurts my head.
I have my DD-WRT router pointing my IPv6 DNS to the IPv6 of the pihole that is on the web interface page. (should it look different? ie I know the 127.0.0.1 of IPv6 is ::1) and then I have my pi-hole point ipv6 too ::1#5353.
You're onto something, it's looking to my router for my DNS instead of my pi... the DHCP should have it auto point to the pi... wonder what is set up wrong.