I’ve got pihole set up on a virtual server and allowed port 53 on the firewall. It is accessible on the internet and works great.
Secondly I’ve got WireGuard VPN on the same server and use pihole to serve DNS to my VPN clients. As the VPN traffic comes in through a different interface I must set DNS to the public IP unless I tell pihole to “Listen on all interfaces”, then I can use the private IP of the server and this works
There is however a warning message about doing so but I can not understand what risks are involved. Internet traffic can already use my server for DNS if they wish and the other interface is only available to VPN clients so I can’t see what the problem might be. Is there something I am missing?
“Note that the last option should not be used on devices which are directly connected to the Internet”