openwrt OS with docker installed, install pihole in docker through macvlan. Adlist with ID 2 was inaccessible during last gravity run. it seems that it can't connet the internet?
here is the debug
Moderator edit: Link to explicit debug log removed
openwrt OS with docker installed, install pihole in docker through macvlan. Adlist with ID 2 was inaccessible during last gravity run. it seems that it can't connet the internet?
here is the debug
Moderator edit: Link to explicit debug log removed
For your own privacy and security, do NOT post your debug log publically.
Please share the output of:
sudo cat /var/log/pihole/pihole_updateGravity.log
[i] Neutrino emissions detected...
[✓] Pulling blocklist source list into range
[✓] Preparing new gravity database
[✓] Creating new gravity databases
[i] Using libz compression
[i] Target: https://anti-ad.net/domains.txt
[✗] Status: Connection Refused
[✗] List download failed: no cached list available
[✓] Building tree
[✓] Swapping databases
[✓] The old database remains available
[i] Number of gravity domains: 0 (0 unique domains)
[i] Number of exact blacklisted domains: 0
[i] Number of regex blacklist filters: 0
[i] Number of exact whitelisted domains: 0
[i] Number of regex whitelist filters: 0
[✓] Cleaning up stray matter
[✓] FTL is listening on port 53
[✓] UDP (IPv4)
[✓] TCP (IPv4)
[✓] UDP (IPv6)
[✓] TCP (IPv6)
[✓] Pi-hole blocking is enabled
*** [ DIAGNOSING ]: Networking
[✓] IPv4 address(es) bound to the eth0 interface:
192.168.11.114/24
[✗] No IPv6 address(es) found on the eth0 interface.
[i] Default IPv4 gateway(s):
192.168.11.1
[i] Default IPv6 gateway(s):
*** [ DIAGNOSING ]: Name resolution (IPv4) using a random blocked domain and a known ad-serving domain
[✗] Failed to resolve on lo (127.0.0.1)
[✗] Failed to resolve on eth0 (192.168.11.114)
[✗] Failed to resolve doubleclick.com via a remote, public DNS server (8.8.8.8)
*** [ DIAGNOSING ]: Name resolution (IPv6) using a random blocked domain and a known ad-serving domain
[✓] No IPv6 address available on lo
[✓] No IPv6 address available on eth0
[✗] Failed to resolve doubleclick.com via a remote, public DNS server
eth0 is lan
eth1 is wan and wan6
Did you allow your container to access Pi-hole's required ports?
It would seem your container is not allowed to receive incoming DNS from local, private range IP addresses, and that is not allowed to send DNS requests to public IP addresses, at least not to the ones probed in the logs (e.g. 8.8.8.8).
How to allow pihole container to access Pi-hole's required ports?
I don't run OpenWRT, so I can't supply specific advice here.
In general, you'd have to make sure that OpenWRT's firewall does allow inbound requests from private range IP addresses to port 53 (UDP and TCP) for your container's IP, and outbound requests from that container's IP to public DNS servers.
I entered into my docker container and checked /etc/resolv.conf
root@pi-hole:/# cat /etc/resolv.conf
nameserver 127.0.0.11
options ndots:0
I changed nameserver to my router dns IP. Or localhost "127.0.0.1". This fixes the Gavity bug.