To only see my connected devices in the clients UI in the Pihole admin page.
Actual Behaviour:
I'm seeing not only mine but foreign IPs making requests, I have only 1 pc using Pihole so usually it just shows 2-3 clients ( my pc, the pi, localhost ). But when I checked a few moments ago I saw 6 ( 2 unknown ips and 1 website like url )
Ok so I did some testing.
Pihole disabled:
All ports on stealth / closed no vulnerabilities
Pihole enabled:
Port 80 and 53 are wide open ( as well as a port I specified for my raspberry pi ssh )
How is your Pi located on your network? Like all the other clients, behind the router (i.e. connected to the router on the LAN side of the router)? Not in a DMZ?
Yes, a simple LAN connection, DMZ is definitely disabled as well as all other port opening / forwarding.
They are all closed until I turn the pi ( with pihole ) on, I previously had it running on WlAN but decided it would be better on LAN. Only noticed the new clients about an hour after switching to LAN
Shutting down the Pi entirely, I'll test it with disabling Pihole through the CLI for some extra info
Should I post the logs from pihole -d here? or do you want me to get them to you in a different way?
Edit: With the command "pihole disable" and checking ports once more the problem persists, port 53 and 80 are still open... Perhaps its not a pihole thing but rather the pi itself...?
Edit: Still want the debug info?
I found the problem... turns out your hunch was right, I had enabled and disabled DMZ on the pi's ip while testing a few things but it seems like the disable didn't save for some reason, a double check proved to be a life saver.
Thanks for the time! cheers, and whew... what a relief!!
Good that it's fixed. When Pi-Hole installs, ports 53 and 80 are opened so the LAN clients can connect to Pi-Hole. When the Pi ends up on a DMZ, these ports are open to both your LAN and the entire internet.