Please follow the below template, it will help us to help you!
Hey all, first time user of Pihole and Tailscale, and I used the following three guides for setup. I am using the StevenBlack Adlists. I am running Pihole and Tailscale exit node on the same machine. I am in the pihole admin dashboard - seeing both queries and queries being blocked for my remote iphone device, hooray - although do not see them being blocked on my current exit host machine.
Expected Behaviour:
Debian GNU/Linux 12 (bookworm)
Intel NUC 12
Asus Router
Actual Behaviour:
I would expect pihole to be blocking ad traffic on my current machine.
Debug Token:
This process collects information from your Pi-hole, and optionally uploads it to a unique and random directory on tricorder.pi-hole.net.
The intent of this script is to allow users to self-diagnose their installations. This is accomplished by running tests against our software and providing the user with links to FAQ articles when a problem is detected. Since we are a small team and Pi-hole has been growing steadily, it is our hope that this will help us spend more time on development.
NOTE: All log files auto-delete after 48 hours and ONLY the Pi-hole developers can access your data via the given token. We have taken these extra steps to secure your data and will work to further reduce any personal information gathered.
*** [ INITIALIZING ]
[i] 2023-12-29:18:53:46 debug log has been initialized.
[i] System has been running for 0 days, 1 hours, 22 minutes
*** [ INITIALIZING ] Sourcing setup variables
[i] Sourcing /etc/pihole/setupVars.conf...
*** [ DIAGNOSING ]: Core version
[✓] Version: v5.17.2
[i] Remotes: origin https://github.com/pi-hole/pi-hole.git (fetch)
origin https://github.com/pi-hole/pi-hole.git (push)
[i] Branch: master
[i] Commit: v5.17.2-0-g60b6a10
*** [ DIAGNOSING ]: Web version
[✓] Version: v5.21
[i] Remotes: origin https://github.com/pi-hole/web.git (fetch)
origin https://github.com/pi-hole/web.git (push)
[i] Branch: master
[i] Commit: v5.21-0-gbe05b0f
*** [ DIAGNOSING ]: FTL version
[✓] Version: v5.23
[i] Branch: master
[i] Commit: d201776e
*** [ DIAGNOSING ]: lighttpd version
[i] 1.4.69
*** [ DIAGNOSING ]: php version
[i] 8.2.7
*** [ DIAGNOSING ]: Operating system
[✓] Distro: Debian
[✓] Version: 12
[✓] dig return code: 0
[i] dig response: "Raspbian=10,11,12 Ubuntu=20,22,23 Debian=10,11,12 Fedora=36,37,38 CentOS=8,9"
[✓] Distro and version supported
*** [ DIAGNOSING ]: SELinux
[i] SELinux not detected
*** [ DIAGNOSING ]: FirewallD
[i] Firewalld service inactive
*** [ DIAGNOSING ]: Processor
[✓] x86_64
*** [ DIAGNOSING ]: Disk usage
Filesystem Size Used Avail Use% Mounted on
udev 16G 0 16G 0% /dev
tmpfs 3.1G 2.4M 3.1G 1% /run
/dev/nvme0n1p2 1.8T 11G 1.7T 1% /
tmpfs 16G 736K 16G 1% /dev/shm
tmpfs 5.0M 12K 5.0M 1% /run/lock
/dev/nvme0n1p1 511M 5.9M 506M 2% /boot/efi
overlay 1.8T 11G 1.7T 1% /var/lib/docker/overlay2/ce0e1c1494aa65fba61fdfbd9bfc69b36bfb15f63c78c7285d7ec6c4ed39f52a/merged
overlay 1.8T 11G 1.7T 1% /var/lib/docker/overlay2/e595646407259d8fff86df3c6115623dbe6fa2ee4ba6ee8a599d4cdee225cbf3/merged
tmpfs 3.1G 2.5M 3.1G 1% /run/user/1000
overlay 1.8T 11G 1.7T 1% /var/lib/docker/overlay2/487f4f028863928bc4dba86588d6a9441ec29fd6ede3e7c3b736e3d13feae338/merged
*** [ DIAGNOSING ]: Network interfaces and addresses
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host noprefixroute
valid_lft forever preferred_lft forever
2: enp86s0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc mq state DOWN group default qlen 1000
link/ether 48:21:0b:5c:80:fd brd ff:ff:ff:ff:ff:ff
3: wlo1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether c4:3d:1a:c9:61:89 brd ff:ff:ff:ff:ff:ff
altname wlp0s20f3
inet 192.168.50.230/24 brd 192.168.50.255 scope global dynamic noprefixroute wlo1
valid_lft 85858sec preferred_lft 85858sec
inet6 fe80::8a8a:af2f:97d1:43eb/64 scope link noprefixroute
valid_lft forever preferred_lft forever
4: tailscale0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1280 qdisc fq_codel state UNKNOWN group default qlen 500
link/none
inet 100.96.202.48/32 scope global tailscale0
valid_lft forever preferred_lft forever
inet6 fd7a:115c:a1e0::9920:ca30/128 scope global
valid_lft forever preferred_lft forever
inet6 fe80::b0b7:99a2:6f68:69ce/64 scope link stable-privacy
valid_lft forever preferred_lft forever
5: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default
link/ether 02:42:99:64:39:1e brd ff:ff:ff:ff:ff:ff
inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
valid_lft forever preferred_lft forever
6: br-d0cd5880092e: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
link/ether 02:42:7d:7a:20:ad brd ff:ff:ff:ff:ff:ff
inet 172.18.0.1/16 brd 172.18.255.255 scope global br-d0cd5880092e
valid_lft forever preferred_lft forever
inet6 fe80::42:7dff:fe7a:20ad/64 scope link
valid_lft forever preferred_lft forever
24: vethbc9bd71@if23: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-d0cd5880092e state UP group default
link/ether aa:c9:75:b4:4f:b9 brd ff:ff:ff:ff:ff:ff link-netnsid 0
inet6 fe80::a8c9:75ff:feb4:4fb9/64 scope link
valid_lft forever preferred_lft forever
26: veth1462eea@if25: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-d0cd5880092e state UP group default
link/ether fe:1b:88:4a:12:79 brd ff:ff:ff:ff:ff:ff link-netnsid 1
inet6 fe80::fc1b:88ff:fe4a:1279/64 scope link
valid_lft forever preferred_lft forever
28: veth5cb702a@if27: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-d0cd5880092e state UP group default
link/ether ae:30:29:c3:92:fe brd ff:ff:ff:ff:ff:ff link-netnsid 3
inet6 fe80::ac30:29ff:fec3:92fe/64 scope link
valid_lft forever preferred_lft forever
*** [ DIAGNOSING ]: Network routing table
default via 192.168.50.1 dev wlo1 proto dhcp src 192.168.50.230 metric 600
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown
172.18.0.0/16 dev br-d0cd5880092e proto kernel scope link src 172.18.0.1
192.168.50.0/24 dev wlo1 proto kernel scope link src 192.168.50.230 metric 600
*** [ DIAGNOSING ]: Networking
[✓] IPv4 address(es) bound to the tailscale0 interface:
100.96.202.48/32
[✓] IPv6 address(es) bound to the tailscale0 interface:
fd7a:115c:a1e0::9920:ca30/128
fe80::b0b7:99a2:6f68:69ce/64
[i] Default IPv4 gateway(s):
[i] Default IPv6 gateway(s):
*** [ DIAGNOSING ]: Ports in use
udp:0.0.0.0:60902 is in use by avahi-daemon
[✓] udp:0.0.0.0:53 is in use by pihole-FTL
udp:0.0.0.0:631 is in use by cups-browsed
udp:0.0.0.0:5353 is in use by avahi-daemon
udp:0.0.0.0:8125 is in use by docker-proxy
udp:0.0.0.0:41641 is in use by tailscaled
[✓] udp:[::]:53 is in use by pihole-FTL
udp:[::]:32828 is in use by avahi-daemon
udp:[::]:5353 is in use by avahi-daemon
udp:[::]:8125 is in use by docker-proxy
udp:[::]:41641 is in use by tailscaled
tcp:100.96.202.48:40282 is in use by tailscaled
[✓] tcp:0.0.0.0:80 is in use by lighttpd
[✓] tcp:0.0.0.0:53 is in use by pihole-FTL
tcp:0.0.0.0:22 is in use by sshd
[✓] tcp:127.0.0.1:4711 is in use by pihole-FTL
tcp:0.0.0.0:2281 is in use by docker-proxy
tcp:0.0.0.0:2283 is in use by docker-proxy
tcp:0.0.0.0:2282 is in use by docker-proxy
tcp:0.0.0.0:3000 is in use by docker-proxy
tcp:127.0.0.1:631 is in use by cupsd
tcp:0.0.0.0:8126 is in use by docker-proxy
[✓] tcp:[::]:80 is in use by lighttpd
[✓] tcp:[::]:53 is in use by pihole-FTL
tcp:[::]:22 is in use by sshd
tcp:[fd7a:115c:a1e0::9920:ca30]:37018 is in use by tailscaled
[✓] tcp:[::1]:4711 is in use by pihole-FTL
tcp:[::]:2281 is in use by docker-proxy
tcp:[::]:2283 is in use by docker-proxy
tcp:[::]:2282 is in use by docker-proxy
tcp:[::]:3000 is in use by docker-proxy
tcp:[::1]:631 is in use by cupsd
tcp:[::]:8126 is in use by docker-proxy
*** [ DIAGNOSING ]: Name resolution (IPv4) using a random blocked domain and a known ad-serving domain
[✓] www.company.com.ph is 0.0.0.0 on lo (127.0.0.1)
[✓] No IPv4 address available on enp86s0
[✓] www.company.com.ph is 0.0.0.0 on wlo1 (192.168.50.230)
[✓] www.company.com.ph is 0.0.0.0 on tailscale0 (100.96.202.48)
[✓] www.company.com.ph is 0.0.0.0 on docker0 (172.17.0.1)
[✓] www.company.com.ph is 0.0.0.0 on br-d0cd5880092e (172.18.0.1)
[✓] doubleclick.com is 142.250.189.174 via a remote, public DNS server (8.8.8.8)
*** [ DIAGNOSING ]: Name resolution (IPv6) using a random blocked domain and a known ad-serving domain
[✓] www.pag.programtts.top is :: on lo (::1)
[✓] No IPv6 address available on enp86s0
[✗] Failed to resolve www.pag.programtts.top on wlo1 (fe80::8a8a:af2f:97d1:43eb)
[✓] www.pag.programtts.top is :: on tailscale0 (fd7a:115c:a1e0::9920:ca30)
[✗] Failed to resolve www.pag.programtts.top on tailscale0 (fe80::b0b7:99a2:6f68:69ce)
[✓] No IPv6 address available on docker0
[✗] Failed to resolve www.pag.programtts.top on br-d0cd5880092e (fe80::42:7dff:fe7a:20ad)
[✗] Failed to resolve doubleclick.com via a remote, public DNS server (2001:4860:4860::8888)
*** [ DIAGNOSING ]: Discovering active DHCP servers (takes 10 seconds)
Scanning all your interfaces for DHCP servers
Timeout: 10 seconds
* Received 300 bytes from wlo1:192.168.50.1
Offered IP address: 192.168.50.230
Server IP address: 192.168.50.1
Relay-agent IP address: N/A
BOOTP server: (empty)
BOOTP file: (empty)
DHCP options:
Message type: DHCPOFFER (2)
server-identifier: 192.168.50.1
lease-time: 86400 ( 1d )
renewal-time: 43200 ( 12h )
rebinding-time: 75600 ( 21h )
netmask: 255.255.255.0
broadcast: 192.168.50.255
dns-server: 192.168.50.1
router: 192.168.50.1
--- end of options ---
DHCP packets received on interface br-d0cd5880092e: 0
DHCP packets received on interface docker0: 0
DHCP packets received on interface wlo1: 1
*** [ DIAGNOSING ]: Pi-hole processes
[✓] lighttpd daemon is active
[✓] pihole-FTL daemon is active
*** [ DIAGNOSING ]: Pi-hole-FTL full status
● pihole-FTL.service - Pi-hole FTL
Loaded: loaded (/etc/systemd/system/pihole-FTL.service; enabled; preset: enabled)
Active: active (running) since Fri 2023-12-29 18:51:34 EST; 2min 22s ago
Process: 55689 ExecStartPre=/opt/pihole/pihole-FTL-prestart.sh (code=exited, status=0/SUCCESS)
Main PID: 55702 (pihole-FTL)
Tasks: 19 (limit: 37899)
Memory: 4.3M
CPU: 254ms
CGroup: /system.slice/pihole-FTL.service
└─55702 /usr/bin/pihole-FTL -f
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] MOZILLA_CANARY: Enabled
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] PIHOLE_PTR: internal PTR generation enabled (pi.hole)
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] ADDR2LINE: Enabled
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] REPLY_WHEN_BUSY: Drop queries when the database is busy
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] BLOCK_TTL: 2 seconds
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] BLOCK_ICLOUD_PR: Enabled
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] CHECK_LOAD: Enabled
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] CHECK_SHMEM: Warning if shared-memory usage exceeds 90%
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] CHECK_DISK: Warning if certain disk usage exceeds 90%
Dec 29 18:51:34 debian pihole-FTL[55702]: [2023-12-29 18:51:34.941 55702M] Finished config file pa
*** [ DIAGNOSING ]: Lighttpd configuration test
[✓] No error in lighttpd configuration
*** [ DIAGNOSING ]: Setup variables
PIHOLE_INTERFACE=tailscale0
QUERY_LOGGING=true
INSTALL_WEB_SERVER=true
INSTALL_WEB_INTERFACE=true
LIGHTTPD_ENABLED=true
CACHE_SIZE=10000
DNS_FQDN_REQUIRED=true
DNS_BOGUS_PRIV=true
DNSMASQ_LISTENING=all
BLOCKING_ENABLED=true
DNSSEC=false
REV_SERVER=false
PIHOLE_DNS_1=8.8.8.8
PIHOLE_DNS_2=8.8.4.4
*** [ DIAGNOSING ]: Dashboard headers
[✓] Web interface X-Header: X-Pi-hole: The Pi-hole Web interface is working!
*** [ DIAGNOSING ]: Pi-hole FTL Query Database
-rw-rw-r-- 1 pihole pihole 132K Dec 29 18:53 /etc/pihole/pihole-FTL.db
*** [ DIAGNOSING ]: Gravity Database
-rw-rw-r-- 1 pihole pihole 8.4M Dec 29 18:51 /etc/pihole/gravity.db
*** [ DIAGNOSING ]: Info table
property value
-------------------- ----------------------------------------
version 15
updated 1703893895
gravity_count 144725
Last gravity run finished at: Fri Dec 29 18:51:35 EST 2023
----- First 10 Gravity Domains -----
localhost.localdomain
ck.getcookiestxt.com
eu1.clevertap-prod.com
wizhumpgyros.com
coccyxwickimp.com
webmail-who-int.000webhostapp.com
010sec.com
01mspmd5yalky8.com
0byv9mgbn0.com
ns6.0pendns.org
*** [ DIAGNOSING ]: Groups
id enabled name date_added date_modified description
---- ------- -------------------------------------------------- ------------------- ------------------- --------------------------------------------------
0 1 Default 2023-12-29 17:50:01 2023-12-29 17:50:01 The default group
*** [ DIAGNOSING ]: Domainlist (0/1 = exact white-/blacklist, 2/3 = regex white-/blacklist)
*** [ DIAGNOSING ]: Clients
*** [ DIAGNOSING ]: Adlists
id enabled group_ids address date_added date_modified comment
----- ------- ------------ ---------------------------------------------------------------------------------------------------- ------------------- ------------------- --------------------------------------------------
1 1 0 https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts 2023-12-29 17:50:02 2023-12-29 17:50:02 Migrated from /etc/pihole/adlists.list
*** [ DIAGNOSING ]: contents of /etc/pihole
-rw-r--r-- 1 root root 0 Dec 29 17:50 /etc/pihole/custom.list
-rw-r--r-- 1 root root 65 Dec 29 18:51 /etc/pihole/local.list
-rw-r--r-- 1 root root 241 Dec 29 17:50 /etc/pihole/logrotate
/var/log/pihole/pihole.log {
su root root
daily
copytruncate
rotate 5
compress
delaycompress
notifempty
nomail
}
/var/log/pihole/FTL.log {
su root root
weekly
copytruncate
rotate 3
compress
delaycompress
notifempty
nomail
}
-rw-rw-r-- 1 pihole root 146 Dec 29 18:51 /etc/pihole/pihole-FTL.conf
PRIVACYLEVEL=0
RATE_LIMIT=1000/60
-rw-r--r-- 1 root root 321 Dec 29 18:51 /etc/pihole/versions
CORE_VERSION=v5.17.2
CORE_BRANCH=master
CORE_HASH=60b6a101
GITHUB_CORE_VERSION=v5.17.2
GITHUB_CORE_HASH=60b6a101
WEB_VERSION=v5.21
WEB_BRANCH=master
WEB_HASH=be05b0f6
GITHUB_WEB_VERSION=v5.21
GITHUB_WEB_HASH=be05b0f6
FTL_VERSION=v5.23
FTL_BRANCH=master
FTL_HASH=d201776e
GITHUB_FTL_VERSION=v5.23
GITHUB_FTL_HASH=1a114133
*** [ DIAGNOSING ]: contents of /etc/dnsmasq.d
-rw-r--r-- 1 root root 1.4K Dec 29 18:51 /etc/dnsmasq.d/01-pihole.conf
addn-hosts=/etc/pihole/local.list
addn-hosts=/etc/pihole/custom.list
localise-queries
no-resolv
log-queries
log-facility=/var/log/pihole/pihole.log
log-async
cache-size=10000
server=8.8.8.8
server=8.8.4.4
domain-needed
expand-hosts
bogus-priv
except-interface=nonexisting
-rw-r--r-- 1 root root 2.2K Dec 29 18:51 /etc/dnsmasq.d/06-rfc6761.conf
server=/test/
server=/localhost/
server=/invalid/
server=/bind/
server=/onion/
*** [ DIAGNOSING ]: contents of /etc/lighttpd
-rw-r--r-- 1 root root 2.2K Feb 10 2023 /etc/lighttpd/lighttpd.conf
server.modules = (
"mod_indexfile",
"mod_access",
"mod_alias",
"mod_redirect",
)
server.document-root = "/var/www/html"
server.upload-dirs = ( "/var/cache/lighttpd/uploads" )
server.errorlog = "/var/log/lighttpd/error.log"
server.pid-file = "/run/lighttpd.pid"
server.username = "www-data"
server.groupname = "www-data"
server.port = 80
server.feature-flags += ("server.h2proto" => "enable")
server.feature-flags += ("server.h2c" => "enable")
server.feature-flags += ("server.graceful-shutdown-timeout" => 5)
server.http-parseopts = (
"header-strict" => "enable",# default
"host-strict" => "enable",# default
"host-normalize" => "enable",# default
"url-normalize-unreserved"=> "enable",# recommended highly
"url-normalize-required" => "enable",# recommended
"url-ctrls-reject" => "enable",# recommended
"url-path-2f-decode" => "enable",# recommended highly (unless breaks app)
"url-path-dotseg-remove" => "enable",# recommended highly (unless breaks app)
)
index-file.names = ( "index.php", "index.html" )
url.access-deny = ( "~", ".inc" )
static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )
include_shell "/usr/share/lighttpd/use-ipv6.pl " + server.port
include_shell "/usr/share/lighttpd/create-mime.conf.pl"
include "/etc/lighttpd/conf-enabled/*.conf"
server.modules += (
"mod_dirlisting",
"mod_staticfile",
)
*** [ DIAGNOSING ]: contents of /etc/lighttpd/conf.d
/etc/lighttpd/conf.d does not exist.
*** [ DIAGNOSING ]: contents of /etc/lighttpd/conf-enabled
total 0
lrwxrwxrwx 1 root root 32 Dec 29 17:50 05-setenv.conf -> ../conf-available/05-setenv.conf
lrwxrwxrwx 1 root root 35 Dec 29 17:50 10-accesslog.conf -> ../conf-available/10-accesslog.conf
lrwxrwxrwx 1 root root 33 Dec 29 17:50 10-fastcgi.conf -> ../conf-available/10-fastcgi.conf
lrwxrwxrwx 1 root root 38 Dec 29 17:50 15-pihole-admin.conf -> ../conf-available/15-pihole-admin.conf
lrwxrwxrwx 1 root root 42 Dec 26 05:33 90-javascript-alias.conf -> ../conf-available/90-javascript-alias.conf
lrwxrwxrwx 1 root root 38 Dec 29 17:50 /etc/lighttpd/conf-enabled/15-pihole-admin.conf -> ../conf-available/15-pihole-admin.conf
server.errorlog := "/var/log/lighttpd/error-pihole.log"
$HTTP["url"] =~ "^/admin/" {
server.document-root = "/var/www/html"
server.stream-response-body = 1
accesslog.filename = "/var/log/lighttpd/access-pihole.log"
accesslog.format = "%{%s}t|%h|%V|%r|%s|%b"
fastcgi.server = (
".php" => (
"localhost" => (
"socket" => "/run/lighttpd/pihole-php-fastcgi.socket",
"bin-path" => "/usr/bin/php-cgi",
"min-procs" => 1,
"max-procs" => 1,
"bin-environment" => (
"PHP_FCGI_CHILDREN" => "4",
"PHP_FCGI_MAX_REQUESTS" => "10000",
),
"bin-copy-environment" => (
"PATH", "SHELL", "USER"
),
"broken-scriptfilename" => "enable",
)
)
)
setenv.add-response-header = (
"X-Pi-hole" => "The Pi-hole Web interface is working!",
"X-Frame-Options" => "DENY",
"X-XSS-Protection" => "0",
"X-Content-Type-Options" => "nosniff",
"Content-Security-Policy" => "default-src 'self' 'unsafe-inline';",
"X-Permitted-Cross-Domain-Policies" => "none",
"Referrer-Policy" => "same-origin"
)
$HTTP["url"] =~ "^/admin/\." {
url.access-deny = ("")
}
$HTTP["url"] =~ "/(teleporter|api_token)\.php$" {
$HTTP["referer"] =~ "/admin/settings\.php" {
setenv.set-response-header = ( "X-Frame-Options" => "SAMEORIGIN" )
}
}
}
else $HTTP["url"] == "/admin" {
url.redirect = ("" => "/admin/")
}
$HTTP["host"] == "pi.hole" {
$HTTP["url"] == "/" {
url.redirect = ("" => "/admin/")
}
}
server.modules += ( "mod_access", "mod_accesslog", "mod_redirect", "mod_fastcgi", "mod_setenv" )
*** [ DIAGNOSING ]: contents of /etc/cron.d
-rw-r--r-- 1 root root 1.7K Dec 29 18:51 /etc/cron.d/pihole
52 4 * * 7 root PATH="$PATH:/usr/sbin:/usr/local/bin/" pihole updateGravity >/var/log/pihole/pihole_updateGravity.log || cat /var/log/pihole/pihole_updateGravity.log
00 00 * * * root PATH="$PATH:/usr/sbin:/usr/local/bin/" pihole flush once quiet
@reboot root /usr/sbin/logrotate --state /var/lib/logrotate/pihole /etc/pihole/logrotate
47 16 * * * root PATH="$PATH:/usr/sbin:/usr/local/bin/" pihole updatechecker
@reboot root PATH="$PATH:/usr/sbin:/usr/local/bin/" pihole updatechecker reboot
*** [ DIAGNOSING ]: contents of /var/log/lighttpd
-rw-r--r-- 1 www-data www-data 211 Dec 29 18:51 /var/log/lighttpd/error-pihole.log
-----head of error-pihole.log------
2023-12-29 17:50:01: (server.c.1704) server started (lighttpd/1.4.69)
2023-12-29 18:51:33: (server.c.2078) server stopped by UID = 0 PID = 1
2023-12-29 18:51:33: (server.c.1704) server started (lighttpd/1.4.69)
-----tail of error-pihole.log------
2023-12-29 17:50:01: (server.c.1704) server started (lighttpd/1.4.69)
2023-12-29 18:51:33: (server.c.2078) server stopped by UID = 0 PID = 1
2023-12-29 18:51:33: (server.c.1704) server started (lighttpd/1.4.69)
*** [ DIAGNOSING ]: contents of /var/log/pihole
-rw-r--r-- 1 pihole pihole 60K Dec 29 18:51 /var/log/pihole/FTL.log
-----head of FTL.log------
[2023-12-29 17:50:01.993 21153M] Using log file /var/log/pihole/FTL.log
[2023-12-29 17:50:01.993 21153M] ########## FTL started on debian! ##########
[2023-12-29 17:50:01.993 21153M] FTL branch: master
[2023-12-29 17:50:01.993 21153M] FTL version: v5.23
[2023-12-29 17:50:01.993 21153M] FTL commit: d201776e
[2023-12-29 17:50:01.993 21153M] FTL date: 2023-05-28 11:55:26 +0100
[2023-12-29 17:50:01.993 21153M] FTL user: pihole
[2023-12-29 17:50:01.993 21153M] Compiled for x86_64 (compiled on CI) using gcc (Debian 8.3.0-6) 8.3.0
[2023-12-29 17:50:01.993 21153M] Starting config file parsing (/etc/pihole/pihole-FTL.conf)
[2023-12-29 17:50:01.993 21153M] SOCKET_LISTENING: only local
[2023-12-29 17:50:01.993 21153M] AAAA_QUERY_ANALYSIS: Show AAAA queries
[2023-12-29 17:50:01.993 21153M] MAXDBDAYS: max age for stored queries is 365 days
[2023-12-29 17:50:01.993 21153M] RESOLVE_IPV6: Resolve IPv6 addresses
[2023-12-29 17:50:01.993 21153M] RESOLVE_IPV4: Resolve IPv4 addresses
[2023-12-29 17:50:01.993 21153M] DBINTERVAL: saving to DB file every minute
[2023-12-29 17:50:01.993 21153M] DBFILE: Using /etc/pihole/pihole-FTL.db
[2023-12-29 17:50:01.993 21153M] MAXLOGAGE: Importing up to 24.0 hours of log data
[2023-12-29 17:50:01.993 21153M] PRIVACYLEVEL: Set to 0
[2023-12-29 17:50:01.993 21153M] IGNORE_LOCALHOST: Show queries from localhost
[2023-12-29 17:50:01.993 21153M] BLOCKINGMODE: Null IPs for blocked domains
[2023-12-29 17:50:01.993 21153M] ANALYZE_ONLY_A_AND_AAAA: Disabled. Analyzing all queries
[2023-12-29 17:50:01.993 21153M] DBIMPORT: Importing history from database
[2023-12-29 17:50:01.993 21153M] PIDFILE: Using /run/pihole-FTL.pid
[2023-12-29 17:50:01.993 21153M] SOCKETFILE: Using /run/pihole/FTL.sock
[2023-12-29 17:50:01.993 21153M] SETUPVARSFILE: Using /etc/pihole/setupVars.conf
[2023-12-29 17:50:01.993 21153M] MACVENDORDB: Using /etc/pihole/macvendor.db
[2023-12-29 17:50:01.993 21153M] GRAVITYDB: Using /etc/pihole/gravity.db
[2023-12-29 17:50:01.993 21153M] PARSE_ARP_CACHE: Active
[2023-12-29 17:50:01.993 21153M] CNAME_DEEP_INSPECT: Active
[2023-12-29 17:50:01.993 21153M] DELAY_STARTUP: No delay requested.
[2023-12-29 17:50:01.993 21153M] BLOCK_ESNI: Enabled, blocking _esni.{blocked domain}
[2023-12-29 17:50:01.993 21153M] NICE: Set process niceness to -10 (default)
[2023-12-29 17:50:01.993 21153M] MAXNETAGE: Removing IP addresses and host names from network table after 365 days
[2023-12-29 17:50:01.993 21153M] NAMES_FROM_NETDB: Enabled, trying to get names from network database
[2023-12-29 17:50:01.993 21153M] EDNS0_ECS: Overwrite client from ECS information
-----tail of FTL.log------
[2023-12-29 18:51:34.941 55702M] CHECK_DISK: Warning if certain disk usage exceeds 90%
[2023-12-29 18:51:34.941 55702M] Finished config file parsing
[2023-12-29 18:51:34.941 55702M] Creating mutex
[2023-12-29 18:51:34.941 55702M] Creating mutex
[2023-12-29 18:51:34.942 55702M] PID of FTL process: 55702
[2023-12-29 18:51:34.942 55702M] Database version is 12
[2023-12-29 18:51:34.942 55702M] Resizing "FTL-strings" from 40960 to (81920 * 1) == 81920 (/dev/shm: 712.7KB used, 16.6GB total, FTL uses 700.8KB)
[2023-12-29 18:51:34.942 55702M] Imported 0 alias-clients
[2023-12-29 18:51:34.942 55702M] Database successfully initialized
[2023-12-29 18:51:34.945 55702M] New upstream server: 8.8.8.8:53 (0/512)
[2023-12-29 18:51:34.945 55702M] New upstream server: 8.8.4.4:53 (1/512)
[2023-12-29 18:51:34.946 55702M] Imported 659 queries from the long-term database
[2023-12-29 18:51:34.946 55702M] -> Total DNS queries: 659
[2023-12-29 18:51:34.946 55702M] -> Cached DNS queries: 80
[2023-12-29 18:51:34.946 55702M] -> Forwarded DNS queries: 242
[2023-12-29 18:51:34.946 55702M] -> Blocked DNS queries: 20
[2023-12-29 18:51:34.946 55702M] -> Unknown DNS queries: 316
[2023-12-29 18:51:34.946 55702M] -> Unique domains: 130
[2023-12-29 18:51:34.946 55702M] -> Unique clients: 5
[2023-12-29 18:51:34.946 55702M] -> Known forward destinations: 2
[2023-12-29 18:51:34.946 55702M] Successfully accessed setupVars.conf
[2023-12-29 18:51:34.946 55702M] listening on 0.0.0.0 port 53
[2023-12-29 18:51:34.946 55702M] listening on :: port 53
[2023-12-29 18:51:34.947 55702M] PID of FTL process: 55702
[2023-12-29 18:51:34.947 55702M] Listening on port 4711 for incoming IPv4 telnet connections
[2023-12-29 18:51:34.947 55702M] Listening on port 4711 for incoming IPv6 telnet connections
[2023-12-29 18:51:34.947 55702M] Listening on port 4711 for incoming socket telnet connections
[2023-12-29 18:51:34.947 55702M] INFO: FTL is running as user pihole (UID 999)
[2023-12-29 18:51:34.947 55702M] Reloading DNS cache
[2023-12-29 18:51:35.048 55702/T55727] Compiled 0 whitelist and 0 blacklist regex filters for 5 clients in 0.1 msec
[2023-12-29 18:51:35.048 55702/T55727] Blocking status is enabled
[2023-12-29 18:51:35.409 55702M] Reloading DNS cache
[2023-12-29 18:51:35.449 55702/T55727] SQLite3 message: file renamed while open: /etc/pihole/gravity.db (28)
[2023-12-29 18:51:35.449 55702/T55727] Compiled 0 whitelist and 0 blacklist regex filters for 5 clients in 0.1 msec
[2023-12-29 18:51:35.449 55702/T55727] Blocking status is enabled
*** [ DIAGNOSING ]: contents of /dev/shm
total 736K
-rw------- 1 pihole pihole 84K Dec 29 18:53 FTL-clients
-rw------- 1 pihole pihole 248 Dec 29 18:51 FTL-counters
-rw------- 1 pihole pihole 4.0K Dec 29 18:51 FTL-dns-cache
-rw------- 1 pihole pihole 12K Dec 29 18:51 FTL-domains
-rw------- 1 pihole pihole 88 Dec 29 18:51 FTL-lock
-rw------- 1 pihole pihole 8.0K Dec 29 18:51 FTL-overTime
-rw------- 1 pihole pihole 4.0K Dec 29 18:51 FTL-per-client-regex
-rw------- 1 pihole pihole 224K Dec 29 18:52 FTL-queries
-rw------- 1 pihole pihole 16 Dec 29 18:51 FTL-settings
-rw------- 1 pihole pihole 80K Dec 29 18:51 FTL-strings
-rw------- 1 pihole pihole 308K Dec 29 18:51 FTL-upstreams
*** [ DIAGNOSING ]: contents of /etc
-rw-r--r-- 1 root root 24 Dec 29 18:51 /etc/dnsmasq.conf
conf-dir=/etc/dnsmasq.d
-rw-r--r-- 1 root root 54 Dec 29 18:35 /etc/resolv.conf
nameserver 192.168.50.1
*** [ DIAGNOSING ]: Pi-hole diagnosis messages
*** [ DIAGNOSING ]: Locale
LANG=
*** [ DIAGNOSING ]: Pi-hole log
-rw-r----- 1 pihole pihole 203K Dec 29 18:53 /var/log/pihole/pihole.log
-----head of pihole.log------
Dec 29 17:50:02 dnsmasq[21153]: started, version pi-hole-v2.89-9461807 cachesize 10000
Dec 29 17:50:02 dnsmasq[21153]: DNS service limited to local subnets
Dec 29 17:50:02 dnsmasq[21153]: compile time options: IPv6 GNU-getopt no-DBus no-UBus no-i18n IDN DHCP DHCPv6 Lua TFTP no-conntrack ipset no-nftset auth cryptohash DNSSEC loop-detect inotify dumpfile
Dec 29 17:50:02 dnsmasq[21153]: using nameserver 8.8.8.8#53
Dec 29 17:50:02 dnsmasq[21153]: using nameserver 8.8.4.4#53
Dec 29 17:50:02 dnsmasq[21153]: using only locally-known addresses for onion
Dec 29 17:50:02 dnsmasq[21153]: using only locally-known addresses for bind
Dec 29 17:50:02 dnsmasq[21153]: using only locally-known addresses for invalid
Dec 29 17:50:02 dnsmasq[21153]: using only locally-known addresses for localhost
Dec 29 17:50:02 dnsmasq[21153]: using only locally-known addresses for test
Dec 29 17:50:02 dnsmasq[21153]: read /etc/hosts - 7 names
Dec 29 17:50:02 dnsmasq[21153]: read /etc/pihole/custom.list - 0 names
Dec 29 17:50:02 dnsmasq[21153]: failed to load names from /etc/pihole/local.list: No such file or directory
Dec 29 17:50:02 dnsmasq[21153]: read /etc/hosts - 7 names
Dec 29 17:50:02 dnsmasq[21153]: read /etc/pihole/custom.list - 0 names
Dec 29 17:50:02 dnsmasq[21153]: read /etc/pihole/local.list - 0 names
Dec 29 17:57:23 dnsmasq[21153]: exiting on receipt of SIGTERM
Dec 29 17:57:24 dnsmasq[25199]: started, version pi-hole-v2.89-9461807 cachesize 10000
Dec 29 17:57:24 dnsmasq[25199]: compile time options: IPv6 GNU-getopt no-DBus no-UBus no-i18n IDN DHCP DHCPv6 Lua TFTP no-conntrack ipset no-nftset auth cryptohash DNSSEC loop-detect inotify dumpfile
Dec 29 17:57:24 dnsmasq[25199]: using nameserver 8.8.8.8#53
-----tail of pihole.log------
Dec 29 18:53:51 dnsmasq[55702]: reply doh2.gslb2.xfinity.com is 2001:558:feed:443::99
Dec 29 18:53:51 dnsmasq[55702]: query[A] acsechocaptiveportal.com from 192.168.50.1
Dec 29 18:53:51 dnsmasq[55702]: forwarded acsechocaptiveportal.com to 8.8.4.4
Dec 29 18:53:51 dnsmasq[55702]: reply acsechocaptiveportal.com is 34.227.220.143
Dec 29 18:53:51 dnsmasq[55702]: reply acsechocaptiveportal.com is 3.210.149.169
Dec 29 18:53:51 dnsmasq[55702]: reply acsechocaptiveportal.com is 3.232.103.171
Dec 29 18:53:51 dnsmasq[55702]: reply acsechocaptiveportal.com is 3.81.190.140
Dec 29 18:53:51 dnsmasq[55702]: reply acsechocaptiveportal.com is 34.233.216.120
Dec 29 18:53:51 dnsmasq[55702]: reply acsechocaptiveportal.com is 18.205.63.45
Dec 29 18:53:51 dnsmasq[55702]: reply acsechocaptiveportal.com is 35.174.133.108
Dec 29 18:53:51 dnsmasq[55702]: reply acsechocaptiveportal.com is 34.199.117.213
Dec 29 18:53:52 dnsmasq[55702]: query[A] ntp-g7g.amazon.com from 192.168.50.1
Dec 29 18:53:52 dnsmasq[55702]: forwarded ntp-g7g.amazon.com to 8.8.4.4
Dec 29 18:53:52 dnsmasq[55702]: reply ntp-g7g.amazon.com is 34.226.24.249
Dec 29 18:53:53 dnsmasq[55702]: query[A] d3p8zr0ffa9t17.cloudfront.net from 192.168.50.1
Dec 29 18:53:53 dnsmasq[55702]: forwarded d3p8zr0ffa9t17.cloudfront.net to 8.8.4.4
Dec 29 18:53:53 dnsmasq[55702]: reply d3p8zr0ffa9t17.cloudfront.net is 18.155.188.8
Dec 29 18:53:53 dnsmasq[55702]: reply d3p8zr0ffa9t17.cloudfront.net is 18.155.188.52
Dec 29 18:53:53 dnsmasq[55702]: reply d3p8zr0ffa9t17.cloudfront.net is 18.155.188.145
Dec 29 18:53:53 dnsmasq[55702]: reply d3p8zr0ffa9t17.cloudfront.net is 18.155.188.216
********************************************
********************************************
[✓] ** FINISHED DEBUGGING! **
* The debug log can be uploaded to tricorder.pi-hole.net for sharing with developers only.
* A local copy of the debug log can be found at: /var/log/pihole/pihole_debug.log