pihole in a DMZ

#1

i want to reconfigure my pihole in a DMZ.
So I have 2 fritz boxes.
Fritzbox 6490 should make internet conection
Fritzbox 7430 is good for home network.

So where I should take my pi-hole?
I know I can reconfigure my pi-hole with

pihole -r.

Greetings,
Mathias

0 Likes

#2

Running a Pi-Hole in a DMZ is very bad from a security perspective. It will also create an open resolver, another bad outcome.

Why do you want to run this in a DMZ?

0 Likes

#3

I can connect it also outside of the DMZ.
I heared its the best way against attacks.
I have a Smarthome and it will be like a nightmare…

0 Likes

#4

Yes and no. A DMZ is for public services which when being hacker or compromised can’t the internal network.

If you run your Pi-hole on the outside then you have be aware that others also can reach your DNS.
ISP don’t like open DNS servers and could decide to cut you of from the Internet to protect you against yourself.

0 Likes

#5

I don’t follow this. If the Pi-Hole is running behind your router, it is invisible to the internet and not subject to attacks. When you expose it to the internet, then the attacks are possible.

I have many smart home devices, and they all run fine with a Pi-Hole on my LAN. No ports open to the internet, no DMZ.

0 Likes

closed #6

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

0 Likes