And check below one on one of your client PC's (Linux,Windows or Mac):
nslookup -type=txt -class=chaos version.bind <PIHOLE_IPV6_ADDRESS>
Here's mine (ipv4 though):
C:\>nslookup -type=txt -class=chaos version.bind 10.0.0.2
Server: noads.dehakkelaar.nl
Address: 10.0.0.2
version.bind text =
"dnsmasq-pi-hole-2.79"
EDIT: If get pihole-FTL
running again
Ryan1
September 2, 2018, 7:04pm
22
Here is the output of my netstat (IPv4/6)
root@pi-hole-r-pi:~# netstat -tulpn | grep pihole-FTL tcp 0 0 127.0.0.1:4711
0.0.0.0:* LISTEN 922/pihole-FTL
tcp 0 0 0.0.0.0:53 0.0.0.0:* LISTEN 922/pihole-FTL
tcp6 0 0 ::1:4711 :::* LISTEN 922/pihole-FTL
tcp6 0 0 :::53 :::* LISTEN 922/pihole-FTL
udp 0 0 0.0.0.0:53 0.0.0.0:* 922/pihole-FTL
udp6 0 0 :::53 :::* 922/pihole-FTL
Ryan1
September 2, 2018, 7:07pm
23
Output of nslookup:
C:\>nslookup -type=txt -class=chaos version.bind 192.168.0.10
Server: pi-hole-r-pi
Address: 192.168.0.10
version.bind text =
"dnsmasq-pi-hole-2.79"
EDIT: IPv6 (obviously) does not work:
C:\>nslookup -type=txt -class=chaos version.bind ****:1129:a2bd:9c48:fccd
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: (new prefix, hiding it) ****:1129:a2bd:9c48:fccd
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
*** Request to UnKnown timed-out
Does that exact same ipv6 nslookup
run on Pi-hole work ?
The pihole-FTL
binary is listening on all ipv6 addresses ":::53
" as can be seen from the netstat
output.
If dont get response, then something is still not setup correctly with the ipv6 IP address.
If do get proper response, your router might be blocking with some sort of safety mechanism:
I just found out that my Vodafone router had an option enabled called Safe DNS which prevent usage of custom DNS servers. I disabled it and now I see Pi-hole logging queries. It's still not blocking ads though
What is DNS rebind protection?
If your router has an option called DNS rebind protection enabled, you may run into issues when trying to use Pi-hole as your DNS server. The reasons for this are quite technical, but to summarize what this option does in one sentence:
DNS rebind protection does not allow DNS queries to be answered with a local IP address.
Why does this interfere with Pi-hole?
DNS rebind is meant to be a countermeasure to an attack on your network . So in many cases, it's ac…
Ryan1
September 4, 2018, 1:54pm
25
This is what I got:
root@pi-hole-r-pi:~# nslookup
type=txt -class=chaos version.bind
****:1129:a2bd:9c48:fccd
;; connection timed out; no servers could be reached
Does a nslookup
run on Pi-hole addressing the internal loopback interface ipv6 IP "::1
" work ?
nslookup -type=txt -class=chaos version.bind ::1
Can you SSH to that ipv6 address from one of your PC's ?
The sshd daemon binds in a same manner to ipv6 as pihole-FTL does (listening on all ipv6 addresses ":::22
"):
pi@noads:~ $ sudo netstat -nltup | grep sshd
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 587/sshd
tcp6 0 0 :::22 :::* LISTEN 587/sshd
Do you have a firewall active on Pi-hole ?
sudo iptables -L -n
Ryan1
September 4, 2018, 5:24pm
27
Does a nslookup
run on Pi-hole addressing the internal loopback interface IP “ ::1
” work ?
I got the same result (connection timed out, etc)
I am able to SSH into my Pi with IPv6.
Iptables output:
root@pi-hole-r-pi:~# iptables -L -n
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
I'm out of ideas ... for now.
I must say that I am not that familiar with ipv6 so dont know what to look for.
Maybe someone else does ???
EDIT: one more thing to check, is the ipv6 address correct in below Pi-hole config file ?
sudo grep 'IPV' /etc/pihole/setupVars.conf
If not, run below one to repair:
pihole -r
Ryan1
September 4, 2018, 5:37pm
29
Yep, it is the same as in the interfaces config.
Could it be OpenVPN (I am not too familiar with running a VPN)? It is set up to only run IPv4.
Dont thinks so ... but I dont know everything so could be wrong
Ryan1
September 4, 2018, 5:41pm
31
Oh well. If you think of anything, let me know. Thanks for the help though.
1 Like
Ronnick
September 5, 2018, 5:27pm
32
See my post in this thread about a solution to ipv6 hostname resolution.
Expected Behaviour:
Blocking (IPv4 and IPv6) and DHCP are working well, however, in the Pi-hole dashboard clients are showing the correct hostname only for IPv4.
IPv6 names are not resolving.
Network and Hardware
Router: Fritzbox 7390
Firmware: 06.83
DNS Rebind Protection
Domain name exceptions:
pi.hole
lan
IPv6 Settings:
[49%20pm]
[fritx]
Odroid C2
OS: DietPi v.6.13
Pi-hole version is v4.0
AdminLTE version is v4.0
FTL version is v4.0
Pi-hole as DNS and DHCP
My ISP supports I…
Ronnick
system
Closed
September 26, 2018, 5:27pm
33
This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.