J'ai formatter récemment mon raspberry pi w zero étant donner les messages de clé (j'aurais jamais dû formatter).
J'ai trouver la solution pour le message d'erreur du OS mais depuis, mon pihole reçoit d'inombrable requête à chaque seconde et je perds mes conexion internet dont le filtrage est fait par celui-ci. J'ai chercher sur le web et vu un post dont quelqu'un ajouter en whitelist des regex permettant de donné un adresse IP local non utiliser par une machine mais respectant sa structure réseau.
Aujourd'hui un des flood est créer par un domain ayant le regex ... donc possiblement que j'ai des erreurs dans mon appellation.
Donc cela me pose quelques questions. Est-ce que mon raspberry pi est rendu désuet a faire exécuter le pi hole ? Suis-je le seul ayant eu des problèmes suites à l'installation (ou réinstallation) à neuf de raspberry pi OS (sans GUI) et du pihole ???
JE vous laisse donc mes whitelist selon les "attaques"
Here's my issue. After awhile, I loose internet on my devices that use the pihole as DNS. The raspberry pi is still running, not issue at all. I need to restart the raspberry so I could get my internet back. Each time it occurs, I can see that I've got many request from branch.io and others.
What I'm suspecting it's a DDOS until I lost the internet. There is no error report from the DDOS. Each time i've tried to put in whitelist the specific request with the regex editor but it's seems that I do mistakes.
So I would like to stop to restart my pihole on each few days and to solve what make my pihole flood
For the API stats, nothing strikes as conspicuous.
There are a few reply_REFUSED, but their count isn't that high.
Still, let's see which domains and clients have been refused:
pihole-FTL sqlite3 "/etc/pihole/pihole-FTL.db" "SELECT domain, count(domain), client FROM queries WHERE timestamp > strftime('%s','2024-01-24') AND reply_type=8 GROUP BY domain ORDER BY 2 DESC LIMIT 20;"
Your debug log also looks normal, apart from your network configuration:
*** [ DIAGNOSING ]: Network interfaces and addresses
2: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
inet 192.168.2.44/24 brd 192.168.2.255 scope global noprefixroute wlan0
valid_lft forever preferred_lft forever
inet 192.168.2.209/24 brd 192.168.2.255 scope global secondary dynamic noprefixroute wlan0
valid_lft 256379sec preferred_lft 256379sec
inet6 fe80::<redacted>66/64 scope link noprefixroute
valid_lft forever preferred_lft forever
You have configured two IP addresses for your single wifi interface.
Is that by intention?
pihole-FTL sqlite3 "/etc/pihole/pihole-FTL.db" "SELECT domain, count(domain), client FROM queries WHERE timestamp > strftime('%s','2024-01-24') AND reply_type=8 GROUP BY domain ORDER BY 2 DESC LIMIT 20;"
3.debian.pool.ntp.org|76|127.0.0.1
2.debian.pool.ntp.org|76|127.0.0.1
1.debian.pool.ntp.org|68|127.0.0.1
0.debian.pool.ntp.org|60|127.0.0.1
api.github.com|12|127.0.0.1
github.com|8|127.0.0.1
222.222.67.208.in-addr.arpa|8|127.0.0.1
220.220.67.20
no, I wasn't aware of a second IP adress. I didn't even thought it wa possible. Probably the first one that have been givin before setting a static one.
Today I had to reset again my pihole. It's often while I sleep that I loose connectivity. It's totally strange. I will try to find something to fix my second IP adress.
I just found out what is the problem that cause to make my devices who use the pihole to lost internet connexion. I lost wifi on the raspberry pi zero and for a reason that i don't understand it won't reconnect to that connection or a second one that i have.
I don't know if it would be a problem with the debian team or raspberry pi OS that could help to solve or if i should make a script to query the wifi connection.
I dont know if it's a common issue but i didn't had that problem before formatting my SD card and starting a brand new installation