PiHole failure

Zoki · 23. Januar 2022

I just set up the pihole myself on omv. Checked the tutorial, but did not like it due to the way he sets it up and for changing the dns in OMV.

Here is what I did:

First: create a macvlan on the hpst: 192.168.109.0/24 is my network, ens192 is the ethernet pot on my omv, gateway is 192.168.109.1 and I only want docker to use IPs 192.168.109.89 to 192.168.109.94 for internal network reasons.

Code

docker network create -d macvlan -o parent=ens192  --subnet 192.168.109.0/24  --gateway 192.168.109.1 --ip-range 192.168.109.89/29 macvlan0

This is the docker-compose.yml

Code

version: "3"
# More info at https://github.com/pi-hole/docker-pi-hole/ and https://docs.pi-hole.net/
services:
  pihole:
    container_name: pihole
    image: pihole/pihole:latest
    mac_address: de:ad:be:ef:ff:01         # can change or leave this
    hostname: pihole
    networks:
      macvlan0: # same as network specified below
        ipv4_address: 192.168.109.90       # the IP of the pihole container, ADJUST HERE
    ports:
      - "53:53/tcp"
      - "53:53/udp"
      - "67:67/udp"
      - "80:80/tcp"
      - "443:443/tcp"
    environment:
      TZ: 'Europe/Berlin'
      WEBPASSWORD: pihole
      ServerIP: 192.168.109.90              # must match ipv4_address above ADJUST HERE
      VIRTUAL_HOST: pihole.xxx.xxx.xyz      # Must be hostname + domainname from above AHJUST HERE
    # Volumes store your data between container upgrades
    volumes:
       - './etc-pihole/:/etc/pihole/'       # I have the data inside the same folder as docker-compose.yml ADJUST HERE
       - './etc-dnsmasq.d/:/etc/dnsmasq.d/' # I have the data inside the same folder as docker-compose.yml ADJUST HERE
    dns:
      - 127.0.0.1
      - 1.1.1.1
    # Recommended but not required (DHCP needs NET_ADMIN)
    #   https://github.com/pi-hole/docker-pi-hole#note-on-capabilities
    cap_add:
      - NET_ADMIN
    restart: unless-stopped


networks:
  macvlan0:   # macvlan network created above
    external: true

Alles anzeigen

If you use portainer, just kopy the docker-compose.yml file inside a portainer stack, make the adjustments and here you go.

raulfg3 · 23. Januar 2022

only a small info, on latest releases pihole do not recomend to use 127.0.0.1 as primary DNS server , in fact a warnning appear on webGUI to suggest you to change it, so use 1.1.1.1 as primary DNS server is best today

muchgooder · 25. Januar 2022

Zitat von Zoki

I just set up the pihole myself on omv. Checked the tutorial, but did not like it due to the way he sets it up and for changing the dns in OMV.

Here is what I did:

First: create a macvlan on the hpst: 192.168.109.0/24 is my network, ens192 is the ethernet pot on my omv, gateway is 192.168.109.1 and I only want docker to use IPs 192.168.109.89 to 192.168.109.94 for internal network reasons.

Code

docker network create -d macvlan -o parent=ens192  --subnet 192.168.109.0/24  --gateway 192.168.109.1 --ip-range 192.168.109.89/29 macvlan0

This is the docker-compose.yml

Code

version: "3"
# More info at https://github.com/pi-hole/docker-pi-hole/ and https://docs.pi-hole.net/
services:
  pihole:
    container_name: pihole
    image: pihole/pihole:latest
    mac_address: de:ad:be:ef:ff:01         # can change or leave this
    hostname: pihole
    networks:
      macvlan0: # same as network specified below
        ipv4_address: 192.168.109.90       # the IP of the pihole container, ADJUST HERE
    ports:
      - "53:53/tcp"
      - "53:53/udp"
      - "67:67/udp"
      - "80:80/tcp"
      - "443:443/tcp"
    environment:
      TZ: 'Europe/Berlin'
      WEBPASSWORD: pihole
      ServerIP: 192.168.109.90              # must match ipv4_address above ADJUST HERE
      VIRTUAL_HOST: pihole.xxx.xxx.xyz      # Must be hostname + domainname from above AHJUST HERE
    # Volumes store your data between container upgrades
    volumes:
       - './etc-pihole/:/etc/pihole/'       # I have the data inside the same folder as docker-compose.yml ADJUST HERE
       - './etc-dnsmasq.d/:/etc/dnsmasq.d/' # I have the data inside the same folder as docker-compose.yml ADJUST HERE
    dns:
      - 127.0.0.1
      - 1.1.1.1
    # Recommended but not required (DHCP needs NET_ADMIN)
    #   https://github.com/pi-hole/docker-pi-hole#note-on-capabilities
    cap_add:
      - NET_ADMIN
    restart: unless-stopped


networks:
  macvlan0:   # macvlan network created above
    external: true

Alles anzeigen

If you use portainer, just kopy the docker-compose.yml file inside a portainer stack, make the adjustments and here you go.

Alles anzeigen

Thank you so much for this. I finally had a few minutes to give it a try and it is complaining when I try to create the macvlan.

Code

docker network create -d macvlan -o parent=enp6s0f1  --subnet 192.168.1.0/24  --gateway 192.168.1.1 --ip-range 192.168.1.89/29 macvlan0

Zitat

Error response from daemon: failed to allocate gateway (192.168.1.1): Address al ready in use

Could this be a result of already having a maclan? I have one from one of the tutorials.

muchgooder · 25. Januar 2022

Zitat von Zoki

I just set up the pihole myself on omv. Checked the tutorial, but did not like it due to the way he sets it up and for changing the dns in OMV.

Here is what I did:

First: create a macvlan on the hpst: 192.168.109.0/24 is my network, ens192 is the ethernet pot on my omv, gateway is 192.168.109.1 and I only want docker to use IPs 192.168.109.89 to 192.168.109.94 for internal network reasons.

Code

docker network create -d macvlan -o parent=ens192  --subnet 192.168.109.0/24  --gateway 192.168.109.1 --ip-range 192.168.109.89/29 macvlan0

This is the docker-compose.yml

Code

version: "3"
# More info at https://github.com/pi-hole/docker-pi-hole/ and https://docs.pi-hole.net/
services:
  pihole:
    container_name: pihole
    image: pihole/pihole:latest
    mac_address: de:ad:be:ef:ff:01         # can change or leave this
    hostname: pihole
    networks:
      macvlan0: # same as network specified below
        ipv4_address: 192.168.109.90       # the IP of the pihole container, ADJUST HERE
    ports:
      - "53:53/tcp"
      - "53:53/udp"
      - "67:67/udp"
      - "80:80/tcp"
      - "443:443/tcp"
    environment:
      TZ: 'Europe/Berlin'
      WEBPASSWORD: pihole
      ServerIP: 192.168.109.90              # must match ipv4_address above ADJUST HERE
      VIRTUAL_HOST: pihole.xxx.xxx.xyz      # Must be hostname + domainname from above AHJUST HERE
    # Volumes store your data between container upgrades
    volumes:
       - './etc-pihole/:/etc/pihole/'       # I have the data inside the same folder as docker-compose.yml ADJUST HERE
       - './etc-dnsmasq.d/:/etc/dnsmasq.d/' # I have the data inside the same folder as docker-compose.yml ADJUST HERE
    dns:
      - 127.0.0.1
      - 1.1.1.1
    # Recommended but not required (DHCP needs NET_ADMIN)
    #   https://github.com/pi-hole/docker-pi-hole#note-on-capabilities
    cap_add:
      - NET_ADMIN
    restart: unless-stopped


networks:
  macvlan0:   # macvlan network created above
    external: true

Alles anzeigen

If you use portainer, just kopy the docker-compose.yml file inside a portainer stack, make the adjustments and here you go.

Alles anzeigen

So I went ahead and used the same maclan that I already had (pihole_net on my side).

Code

version: "3"
# More info at https://github.com/pi-hole/docker-pi-hole/ and https://docs.pi-hole.net/
services:
pihole:
container_name: pihole
image: pihole/pihole:latest
mac_address: de:ad:be:ef:ff:01         # can change or leave this
hostname: pihole
networks:
pihole_net: # same as network specified below
ipv4_address: 192.168.1.56       # the IP of the pihole container, ADJUST HERE
ports:
- "53:53/tcp"
- "53:53/udp"
- "67:67/udp"
- "80:80/tcp"
- "443:443/tcp"
environment:
TZ: 'America/New_York'
WEBPASSWORD: pihole
ServerIP: 192.168.1.56           # must match ipv4_address above ADJUST HERE
VIRTUAL_HOST: pihole.xxx.xxx.xyz      # Must be hostname + domainname from above AHJUST HERE
# Volumes store your data between container upgrades
volumes:
- '/srv/dev-disk-by-label-Docker/AppData/Pi-hole3:/etc/pihole/'       # I have the data inside the same folder as docker-compose.yml ADJUST HERE
- '/srv/dev-disk-by-label-Docker/AppData/Pi-hole3/DNSMasq/:/etc/dnsmasq.d/' # I have the data inside the same folder as docker-compose.yml ADJUST HERE
dns:
- 192.168.1.1
- 1.1.1.1
# Recommended but not required (DHCP needs NET_ADMIN)
#   https://github.com/pi-hole/docker-pi-hole#note-on-capabilities
cap_add:
- NET_ADMIN
restart: unless-stopped




networks:
pihole_net:   # macvlan network created above
external: true

Alles anzeigen

Unfortunately a very similar error as my previous attempts

Code

2022-01-25T00:52:27.509278934Z  ::: Starting docker specific checks & setup for docker pihole/pihole
2022-01-25T00:52:27.538226792Z 
2022-01-25T00:52:27.538273816Z   [i] Installing configs from /etc/.pihole...
2022-01-25T00:52:27.553496395Z   [i] Existing dnsmasq.conf found... it is not a Pi-hole file, leaving alone!
2022-01-25T00:52:27.555884225Z   [i] Installing /etc/dnsmasq.d/01-pihole.conf...
  [✓] Installed /etc/dnsmasq.d/01-pihole.conf
2022-01-25T00:52:27.571756726Z   [i] Installing /etc/.pihole/advanced/06-rfc6761.conf...
  [✓] Installed /etc/dnsmasq.d/06-rfc6761.conf
2022-01-25T00:52:27.598965972Z chmod: cannot access '/etc/pihole/pihole-FTL.db': No such file or directory
2022-01-25T00:52:27.680270706Z Existing DNS servers detected in setupVars.conf. Leaving them alone
2022-01-25T00:52:27.682526076Z ::: Pre existing WEBPASSWORD found
2022-01-25T00:52:27.682899606Z DNSMasq binding to default interface: eth0
2022-01-25T00:52:27.758987781Z Added ENV to php:
2022-01-25T00:52:27.760730316Z             "PIHOLE_DOCKER_TAG" => "2022.01.1",
2022-01-25T00:52:27.760746030Z             "PHP_ERROR_LOG" => "/var/log/lighttpd/error.log",
2022-01-25T00:52:27.760754373Z             "ServerIP" => "192.168.1.56",
2022-01-25T00:52:27.760762218Z             "CORS_HOSTS" => "",
2022-01-25T00:52:27.760769664Z             "VIRTUAL_HOST" => "pihole.xxx.xxx.xyz",
2022-01-25T00:52:27.770021289Z Using IPv4 and IPv6
2022-01-25T00:52:27.771973700Z ::: Preexisting ad list /etc/pihole/adlists.list detected ((exiting setup_blocklists early))
2022-01-25T00:52:27.773045947Z https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
2022-01-25T00:52:27.776321676Z sudo: error in /etc/sudo.conf, line 0 while loading plugin "sudoers_policy"
2022-01-25T00:52:27.776360736Z sudo: /usr/lib/sudo/sudoers.so must be only be writable by owner
2022-01-25T00:52:27.776369100Z sudo: fatal error, unable to load plugins
2022-01-25T00:52:27.778310791Z ::: Testing pihole-FTL DNS: [cont-init.d] 20-start.sh: exited 1.
2022-01-25T00:52:27.791836932Z [cont-finish.d] executing container finish scripts...
2022-01-25T00:52:27.792927026Z [cont-finish.d] done.
2022-01-25T00:52:27.793529863Z [s6-finish] waiting for services.
2022-01-25T00:52:27.999728245Z [s6-finish] sending all processes the TERM signal.
2022-01-25T00:52:31.005021299Z [s6-finish] sending all processes the KILL signal and exiting.
2022-01-25T00:53:32.366560875Z [s6-init] making user provided files available at /var/run/s6/etc...exited 0.
2022-01-25T00:53:32.436241246Z [s6-init] ensuring user provided files have correct perms...exited 0.
2022-01-25T00:53:32.438452180Z [fix-attrs.d] applying ownership & permissions fixes...
2022-01-25T00:53:32.441161968Z [fix-attrs.d] 01-resolver-resolv: applying... 
2022-01-25T00:53:32.442988785Z [fix-attrs.d] 01-resolver-resolv: exited 1.
2022-01-25T00:53:32.444211007Z [fix-attrs.d] done.
2022-01-25T00:53:32.445861536Z [cont-init.d] executing container initialization scripts...
2022-01-25T00:53:32.448327846Z [cont-init.d] 20-start.sh: executing... 
2022-01-25T00:53:32.533028968Z  ::: Starting docker specific checks & setup for docker pihole/pihole
2022-01-25T00:53:32.561585539Z 
2022-01-25T00:53:32.561606073Z   [i] Installing configs from /etc/.pihole...
2022-01-25T00:53:32.565592774Z   [i] Existing dnsmasq.conf found... it is not a Pi-hole file, leaving alone!
2022-01-25T00:53:32.567887359Z   [i] Installing /etc/dnsmasq.d/01-pihole.conf...
  [✓] Installed /etc/dnsmasq.d/01-pihole.conf
2022-01-25T00:53:32.584504160Z   [i] Installing /etc/.pihole/advanced/06-rfc6761.conf...
  [✓] Installed /etc/dnsmasq.d/06-rfc6761.conf
2022-01-25T00:53:32.689650501Z chmod: cannot access '/etc/pihole/pihole-FTL.db': No such file or directory
2022-01-25T00:53:32.866170414Z Existing DNS servers detected in setupVars.conf. Leaving them alone
2022-01-25T00:53:32.868603842Z ::: Pre existing WEBPASSWORD found
2022-01-25T00:53:32.868851031Z DNSMasq binding to default interface: eth0
2022-01-25T00:53:32.927781815Z Added ENV to php:
2022-01-25T00:53:32.929491479Z             "PIHOLE_DOCKER_TAG" => "2022.01.1",
2022-01-25T00:53:32.929505798Z             "PHP_ERROR_LOG" => "/var/log/lighttpd/error.log",
2022-01-25T00:53:32.929514180Z             "ServerIP" => "192.168.1.56",
2022-01-25T00:53:32.929521899Z             "CORS_HOSTS" => "",
2022-01-25T00:53:32.929529414Z             "VIRTUAL_HOST" => "pihole.xxx.xxx.xyz",
2022-01-25T00:53:32.938824686Z Using IPv4 and IPv6
2022-01-25T00:53:32.940782073Z ::: Preexisting ad list /etc/pihole/adlists.list detected ((exiting setup_blocklists early))
2022-01-25T00:53:32.942058205Z https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
2022-01-25T00:53:32.945266050Z sudo: error in /etc/sudo.conf, line 0 while loading plugin "sudoers_policy"
2022-01-25T00:53:32.945280351Z sudo: /usr/lib/sudo/sudoers.so must be only be writable by owner
2022-01-25T00:53:32.945288238Z sudo: fatal error, unable to load plugins

Alles anzeigen

Zoki · 25. Januar 2022

Do the change as soma suggested (seperate the two folders on your /srv/ disk) and additionally give it a new folder for dnsmasq, so it can start clean. Mind the indent when replacing the lines on your docker-compose.yml

Code

- '/srv/dev-disk-by-label-Docker/AppData/Pi-hole3/etc-pihole:/etc/pihole/'       # I have the data inside the same folder as docker-compose.yml ADJUST HERE
- '/srv/dev-disk-by-label-Docker/AppData/Pi-hole3/etc-dnsmask:/etc/dnsmasq.d/' # I have the data inside the same folder as docker-compose.yml ADJUST HERE

If this does not help. give me the output of:

ls -la /srv/dev-disk-by-label-Docker/AppData
ls -la /srv/dev-disk-by-label-Docker/AppData/Pi-hole3

ls -la srv/dev-disk-by-label-Docker/AppData/Pi-hole3/etc-dnsmask

ls -la srv/dev-disk-by-label-Docker/AppData/Pi-hole3/etc-pihole

muchgooder · 25. Januar 2022

Thank you again for your suggestion. Unfortunately the result is the same:

Code

 -1 }">2022-01-25T22:37:01.994280616Z  ::: Starting docker specific checks & setup for docker pihole/pihole
 -1 }">2022-01-25T22:37:02.022188408Z  -1 }">2022-01-25T22:37:02.022213401Z   [i] Installing configs from /etc/.pihole...
 -1 }">2022-01-25T22:37:02.025643222Z   [i] Existing dnsmasq.conf found... it is not a Pi-hole file, leaving alone!
 -1 }">2022-01-25T22:37:02.027820825Z   [i] Installing /etc/dnsmasq.d/01-pihole.conf...  [✓] Installed /etc/dnsmasq.d/01-pihole.conf
 -1 }">2022-01-25T22:37:02.043320285Z   [i] Installing /etc/.pihole/advanced/06-rfc6761.conf...  [✓] Installed /etc/dnsmasq.d/06-rfc6761.conf
 -1 }">2022-01-25T22:37:02.069213880Z chmod: cannot access '/etc/pihole/pihole-FTL.db': No such file or directory
 -1 }">2022-01-25T22:37:02.128737225Z Existing DNS servers detected in setupVars.conf. Leaving them alone
 -1 }">2022-01-25T22:37:02.130762051Z ::: Pre existing WEBPASSWORD found
 -1 }">2022-01-25T22:37:02.131128250Z DNSMasq binding to default interface: eth0
 -1 }">2022-01-25T22:37:02.188529072Z Added ENV to php:
 -1 }">2022-01-25T22:37:02.190074363Z 			"PIHOLE_DOCKER_TAG" => "2022.01.1",
 -1 }">2022-01-25T22:37:02.190090437Z 			"PHP_ERROR_LOG" => "/var/log/lighttpd/error.log",
 -1 }">2022-01-25T22:37:02.190098960Z 			"ServerIP" => "192.168.1.56",
 -1 }">2022-01-25T22:37:02.190111911Z 			"CORS_HOSTS" => "",
 -1 }">2022-01-25T22:37:02.190119999Z 			"VIRTUAL_HOST" => "pihole.xxx.xxx.xyz",
 -1 }">2022-01-25T22:37:02.199747742Z Using IPv4 and IPv6
 -1 }">2022-01-25T22:37:02.201548152Z ::: Preexisting ad list /etc/pihole/adlists.list detected ((exiting setup_blocklists early))
 -1 }">2022-01-25T22:37:02.202771504Z https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
 -1 }">2022-01-25T22:37:02.205894436Z sudo: error in /etc/sudo.conf, line 0 while loading plugin "sudoers_policy"
 -1 }">2022-01-25T22:37:02.205908053Z sudo: /usr/lib/sudo/sudoers.so must be only be writable by owner
 -1 }">2022-01-25T22:37:02.205916003Z sudo: fatal error, unable to load plugins
 -1 }">2022-01-25T22:37:02.207945575Z ::: Testing pihole-FTL DNS: [cont-init.d] 20-start.sh: exited 1.
 -1 }">2022-01-25T22:37:02.221629854Z [cont-finish.d] executing container finish scripts...
 -1 }">2022-01-25T22:37:02.222738220Z [cont-finish.d] done.
 -1 }">2022-01-25T22:37:02.223355759Z [s6-finish] waiting for services.
 -1 }">2022-01-25T22:37:02.430005417Z [s6-finish] sending all processes the TERM signal.
 -1 }">2022-01-25T22:37:05.437151902Z [s6-finish] sending all processes the KILL signal and exiting.

Alles anzeigen

Code

root@HAL:/srv/dev-disk-by-label-Docker/Docker/containers# ls -la /srv/dev-disk-by-label-Docker/AppData
total 196
drwxrwsrwx+ 25 root                  users                 4096 Jan 25 14:41 .
drwxr-xr-x   6 root                  root                  4096 Nov  4  2019 ..
drwxrwsrwx+  3 root                  users                 4096 Apr 21  2019 Couchpotato
drwxrwsrwx+  2 root                  users                 4096 Dec 21  2019 Glances
drwxrwsrwx+ 11 root                  users                 4096 Nov 11  2019 LetsEncrypt
drwxrwsrwx+  4 root                  users                 4096 Nov 27  2019 LetsEncryptz
drwxrwsrwx+  5 root                  users                 4096 Aug  5  2019 Murmur
drwxrwsrwx+  4 root                  users                 4096 Jan  8 10:00 Nextclouddb
drwxrwsrwx+  4 root                  users                 4096 Dec 29  2019 NZBGet
drwxrwsrwx+  3 openmediavault-webgui openmediavault-config 4096 Jan 23 13:40 Pi-hole
drwxrwsrwx+  3 openmediavault-webgui openmediavault-config 4096 Jan 24 19:20 Pihole
drwxr-sr-x+  3 openmediavault-webgui openmediavault-config 4096 Jan 25 14:30 Pi-hole3
drwxr-sr-x+  2 openmediavault-webgui openmediavault-config 4096 Jan 25 17:41 Pi-holeTEST
drwxr-sr-x+  2 openmediavault-webgui openmediavault-config 4096 Jan 25 14:37 Pi-hole_TEST1
drwxr-sr-x+  3 root                  root                  4096 Jan 25 14:36 Pi-holeTEST2
drwxr-sr-x+  3 root                  root                  4096 Jan 25 14:41 Pi-holeTESTDNS
drwxrwxrwx+  5 root                  users                 4096 Aug 29 16:30 Plex
drwxrwxrwx+  3 root                  users                 4096 Jul  5  2021 Plex-z
drwxrwsrwx+  8 Adam                  users                 4096 Jan 25 17:40 Radarr
drwxrwsrwx+  3 root                  users                 4096 Apr 19  2019 SABNzbd
drwxrwsrwx+  3 root                  users                 4096 Apr 21  2019 Sickbeard
drwxrwsrwx+  9 root                  root                  4096 Jan 25 14:34 Sonarr
drwxr-xr-x+  2 Adam                  users                 4096 Jan 13 20:43 Transmission
drwxrwsrwx+  2 root                  users                 4096 Jan  9 14:43 unifi
drwxrwxrwx+  3 openmediavault-webgui openmediavault-config 4096 Jan 17 19:48 zPihole

Alles anzeigen

I adjusted the folders based on the structures that I used in this test

Code

root@HAL:/srv/dev-disk-by-label-Docker/Docker/containers# ls -la /srv/dev-disk-by-label-Docker/AppData/Pi-holeTEST
total 68
drwxr-sr-x+  2 openmediavault-webgui openmediavault-config 4096 Jan 25 17:44 .
drwxrwsrwx+ 25 root                  users                 4096 Jan 25 14:41 ..
-rw-rw-rw-+  1 root                  openmediavault-config   65 Jan 25 14:41 adlists.list
-rw-r--r--   1 root                  root                     0 Jan 25 14:41 custom.list
-rw-r--r--+  1 root                  root                   651 Jan 25 17:44 dns-servers.conf
-rw-r--r--+  1 root                  openmediavault-config   20 Jan 25 17:44 localbranches
-rw-r--r--+  1 root                  openmediavault-config   54 Jan 25 17:44 localversions
-rw-r--r--   1 openmediavault-webgui openmediavault-config  137 Jan 25 17:44 pihole-FTL.conf
-rw-rw-rw-+  1 root                  root                   192 Jan 25 17:44 setupVars.conf
-rw-rw-rw-+  1 root                  openmediavault-config  192 Jan 25 17:44 setupVars.conf.update.bak

Alles anzeigen

Code

root@HAL:/srv/dev-disk-by-label-Docker/Docker/containers# ls -la /srv/dev-disk-by-label-Docker/AppData/Pi-holeTESTDNS/DNSMasq
total 24
drwxr-sr-x+ 2 root root 4096 Jan 25 17:45 .
drwxr-sr-x+ 3 root root 4096 Jan 25 14:41 ..
-rw-r--r--  1 root root 1339 Jan 25 17:45 01-pihole.conf
-rw-r--r--  1 root root 2190 Jan 25 17:45 06-rfc6761.conf
root@HAL:/srv/dev-disk-by-label-Docker/Docker/containers#

raulfg3 · 26. Januar 2022

try adguard is much easier to deploy than pihole.

Zoki · 26. Januar 2022

I do not know if that is the reason, but to me the permissions on you folders in AppData look strange:

How did you create the directory: /srv/dev-disk-by-label-Docker/AppData?

Code

drwxrwsrwx+  3 openmediavault-webgui openmediavault-config 4096 Jan 23 13:40 Pi-hole
drwxrwsrwx+  3 openmediavault-webgui openmediavault-config 4096 Jan 24 19:20 Pihole
drwxr-sr-x+  3 openmediavault-webgui openmediavault-config 4096 Jan 25 14:30 Pi-hole3
drwxr-sr-x+  2 openmediavault-webgui openmediavault-config 4096 Jan 25 17:41 Pi-holeTEST
drwxr-sr-x+  2 openmediavault-webgui openmediavault-config 4096 Jan 25 14:37 Pi-hole_TEST1
drwxr-sr-x+  3 root                  root                  4096 Jan 25 14:36 Pi-holeTEST2
drwxr-sr-x+  3 root                  root                  4096 Jan 25 14:41 Pi-holeTESTDNS

These all have ACLs an SGID bit set.

Just create an ordinary directory owned by root and 755 permissions, no s, no + in the permissions.

as root:

Code

mkdir -p /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new/etc-pihole
mkdir -p /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new/etc-dnsmask
chmod -R 755 /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new
chmod -R g-s /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new
setfacl -R -b /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new

This tries to reset any permissions and ACLs back to normal

Post the outout of ls -la /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new

Adjust the stack to the new directories (section volumes, left side) and retry

If this does not help, follow @raulfg3's advice

Soma · 26. Januar 2022

For me, it still makes me confuse about all that macvlan stuff.

Haven't read exactly what it is for.

What I use with adguard (and I know that works with Pi-hole) is to set the port 53 with the LAN IP from the host:

Code

pi@adguard:~/adguard $ cat docker-compose.yml
version: '3.3'
services:
  adguardhome:
    image: adguard/adguardhome
    container_name: adguardhome
    volumes:
      - /home/pi/adguard/workdir:/opt/adguardhome/work
      - /home/pi/adguard/confdir:/opt/adguardhome/conf
    ports:
      - "192.168.1.86:53:53/tcp"
      - "192.168.1.86:53:53/udp"
      - 80:80/tcp
      - 3000:3000/tcp
    restart: unless-stopped

Alles anzeigen

Since the ports will be binded to the host IP:PORT, it won't spit any errors that it's already in use.

What happens is that instead of seeing hostnames on the GUI, it will show IPs.:

Maybe this can be changed to hostnames but didn't give too much importance to it.

Don't really care that it shows IPs since I know to whom they belong.

Only clients using the adguard as BLOCKER are the phone's and Laptops (configured on the network definitions to point the DNS to 192.168.1.86)

The OMV server(s) use the DNS from the router.

Just my 50cents...

muchgooder · 26. Januar 2022

Zitat von Zoki
I do not know if that is the reason, but to me the permissions on you folders in AppData look strange:
How did you create the directory: /srv/dev-disk-by-label-Docker/AppData?
Code
drwxrwsrwx+  3 openmediavault-webgui openmediavault-config 4096 Jan 23 13:40 Pi-hole
drwxrwsrwx+  3 openmediavault-webgui openmediavault-config 4096 Jan 24 19:20 Pihole
drwxr-sr-x+  3 openmediavault-webgui openmediavault-config 4096 Jan 25 14:30 Pi-hole3
drwxr-sr-x+  2 openmediavault-webgui openmediavault-config 4096 Jan 25 17:41 Pi-holeTEST
drwxr-sr-x+  2 openmediavault-webgui openmediavault-config 4096 Jan 25 14:37 Pi-hole_TEST1
drwxr-sr-x+  3 root                  root                  4096 Jan 25 14:36 Pi-holeTEST2
drwxr-sr-x+  3 root                  root                  4096 Jan 25 14:41 Pi-holeTESTDNS
These all have ACLs an SGID bit set.

Just create an ordinary directory owned by root and 755 permissions, no s, no + in the permissions.
as root:
Code
mkdir -p /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new/etc-pihole
mkdir -p /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new/etc-dnsmask
chmod -R 755 /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new
chmod -R g-s /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new
setfacl -R -b /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new
This tries to reset any permissions and ACLs back to normal

Post the outout of ls -la /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new

Adjust the stack to the new directories (section volumes, left side) and retry

If this does not help, follow @raulfg3's advice
Alles anzeigen

Thanks you again! Unless something jumps out I'll close this thread after this attempt. Last night I stood up a raspberry pi running pihole just so I have something. I was not aware of adguard - I'll give that a look next.

Ok, I followed your excellent directions and came up with one of my previous errors. I made AppData several years ago - it was probably made through windows as it was a shared folder.

Code

root@HAL:/srv/dev-disk-by-label-Docker/Docker/containers# ls -la /srv/dev-disk-by-label-Docker/AppData/Pi-hole-new
total 52
drwxr-xr-x   3 openmediavault-webgui openmediavault-config 4096 Jan 26 17:22 .
drwxrwsrwx+ 26 root                  users                 4096 Jan 26 17:11 ..
-rw-r--r--   1 root                  root                  1339 Jan 26 17:22 01-pihole.conf
-rw-r--r--   1 root                  root                  2190 Jan 26 17:22 06-rfc6761.conf
-rw-r--r--   1 root                  root                    65 Jan 26 17:21 adlists.list
-rw-r--r--   1 root                  root                     0 Jan 26 17:21 custom.list
-rw-r--r--   1 root                  root                   651 Jan 26 17:22 dns-servers.conf
drwxrwxrwx   2 root                  users                 4096 Jan 26 17:11 etc-pihole
-rw-r--r--   1 root                  root                    20 Jan 26 17:22 localbranches
-rw-r--r--   1 root                  root                    54 Jan 26 17:22 localversions
-rw-r--r--   1 openmediavault-webgui openmediavault-config  137 Jan 26 17:22 pihole-FTL.conf
-rw-r--r--   1 root                  root                   192 Jan 26 17:22 setupVars.conf
-rw-r--r--   1 root                  root                   192 Jan 26 17:22 setupVars.conf.update.bak

Alles anzeigen

Code

 -1 }">sudo: error in /etc/sudo.conf, line 0 while loading plugin "sudoers_policy"
 -1 }">sudo: /usr/lib/sudo/sudoers.so must be only be writable by owner
 -1 }">sudo: fatal error, unable to load plugins
 -1 }">::: Testing pihole-FTL DNS: [cont-init.d] 20-start.sh: exited 1.
 -1 }">[cont-finish.d] executing container finish scripts...
 -1 }">[cont-finish.d] done.
 -1 }">[s6-finish] waiting for services.
 -1 }">[s6-finish] sending all processes the TERM signal.
 -1 }">[s6-finish] sending all processes the KILL signal and exiting.

I saw that others had this issue with pihole. I pulled a new image - no luck. I then ran this from within the container's path (it was a solution in pihole's github):

Zitat

docker stop pihole3; docker start pihole3; docker exec -it pihole3 chown 0:0 /usr/lib/sudo/sudoers.so; docker exec -it pihole3 chmod 0644 /usr/lib/sudo/sudoers.so

So now I am back at this error

Code

 -1 }">2022-01-26T22:42:31.834799775Z sudo: /etc/sudoers is world writable
 -1 }">2022-01-26T22:42:31.834811730Z sudo: no valid sudoers sources found, quitting
 -1 }">2022-01-26T22:42:31.834819476Z sudo: unable to initialize policy plugin

So... I've revisited all of the errors from the past week.

Zoki · 27. Januar 2022

Only the path shold have been /etc/sudoers

Code

docker stop pihole3
docker start pihole3;
docker exec pihole -it ls -la /etc/sudoers
docker exec -it pihole3 chown 0:0 /etc/sudoers
docker exec -it pihole3 chmod 0644 /etc/sudoers
docker exec pihole -it ls -la /etc/sudoers

Looks like a broken image or etc/sudoers is a link to you volume.

Zoki · 27. Januar 2022

But I see, you are still not following the advice, to have two different folders mounted into pihole, you still insist on having one folder inside the other.

PiHole failure

Jetzt mitmachen!

Ähnliche Themen

omvextrasorg error after upgrade to 5

PiHole wont start after DNS broken is fixed

No Internet Connection in Docker Containers

docker not starting after OMV update

Building first homeserver. OMV5 installed. RAID6 running.

Tags