I was going off the changelog here
www.snbforums.com
That's what i had before and probably will go back. I switched due to the firmware update today for testing. My network is wild and controlling what goes out is ideal lol
Lol For some reason this container shows both piholes for the amount of blocked domains. It's only 5 million. It's really mostly malware, trackers, ads, and pron.
One comment about putting the Pi-Hole IP's in the Asus router's WAN DNS fields. This isn't a configuration that the Pi-Hole documentation recommends for Asus routers. Instead they recommend using the LAN DHCP Server DNS fields. As their documentation (link follows) indicates; when using the Pi-Hole IP addresses in the WAN fields and having Conditional Forwarding enabled on the PI-Hole, you can setup a potential feedback loop of requests that can flood/cripple the local network. Been there, accidentally done that (a long time ago when first using Pi-Hole).
true,192.168.2.0/24,192.168.2.1,lan
true,192.168.52.0/24,192.168.2.1,lan
true,192.168.53.0/24,192.168.2.1,lanYeah I have ran the pihole as the WAN dns since GT-AC5300 launch till last week. I have every client named and mac bound with no guest network. I knew it could cause issues, but the only issue i had was the router requesting too many queries too fast. I have noticed the asus router reaching out to some chinese site as well. This is one of my main concerns. I am not certain it truly is from the asus router but i can not track it down to a specific client either. This was before i turned on DNS Director as well. I have conditional forwarding setup similar with just one subnet as well.One comment about putting the Pi-Hole IP's in the Asus router's WAN DNS fields. This isn't a configuration that the Pi-Hole documentation recommends for Asus routers. Instead they recommend using the LAN DHCP Server DNS fields. As their documentation (link follows) indicates; when using the Pi-Hole IP addresses in the WAN fields and having Conditional Forwarding enabled on the PI-Hole, you can setup a potential feedback loop of requests that can flood/cripple the local network. Been there, accidentally done that (a long time ago when first using Pi-Hole).
ASUS router - Pi-hole documentation
docs.pi-hole.net
When Conditional Forwarding is enabled on the Pi-Hole and properly resolving client names; generally when looking at the Pi-Hole Query Logs, any Client entry with the router's name tends to be an indication of DNS Director performing a Redirection.
A note on Conditional Forwarding option in Pi-Hole. If using Guest Network Pro Profile with the Use same subnet as main network disabled (or on non 3006.102.x firmware, if using YazFi), be sure to input (if you haven't done so already) the Guest Network IP address subnet class into the Conditional Forwarding field to allow the router to process the Pi-Hole Conditional Forwarding name lookup requests for the Guest Network clients. For example, in my use case on the 3006.102.x firmware with two Guest Network Pro Profiles with Use same subnet as main network disabled for both profiles, I have the following in the Pi-Hole's DNS settings Conditional Forwarding field. It allows for correct name lookup and correct client name reporting in the Pi-Hole Query Log/reporting.
In the above example, 192.168.2.0/24 is the main LAN, 192.168.52.0/24 is the first Guest Network Pro Profile, 192.168.53.0/24 is the second Guest Network Pro Profile. 192.168.2.1 is the router IP address. And "lan" is the local domain name (set on the router's LAN > RT-AX86U Pro's Domain Name field).Code:true,192.168.2.0/24,192.168.2.1,lan true,192.168.52.0/24,192.168.2.1,lan true,192.168.53.0/24,192.168.2.1,lan
Why aren't you running keepalived on the systems then you'll only have to worry about 1 ip address?
Hi,One comment about putting the Pi-Hole IP's in the Asus router's WAN DNS fields. This isn't a configuration that the Pi-Hole documentation recommends for Asus routers. Instead they recommend using the LAN DHCP Server DNS fields. As their documentation (link follows) indicates; when using the Pi-Hole IP addresses in the WAN fields and having Conditional Forwarding enabled on the PI-Hole, you can setup a potential feedback loop of requests that can flood/cripple the local network. Been there, accidentally done that (a long time ago when first using Pi-Hole).
ASUS router - Pi-hole documentation
When Conditional Forwarding is enabled on the Pi-Hole and properly resolving client names; generally when looking at the Pi-Hole Query Logs, any Client entry with the router's name tends to be an indication of DNS Director performing a Redirection.
A note on Conditional Forwarding option in Pi-Hole. If using Guest Network Pro Profile with the Use same subnet as main network disabled (or on non 3006.102.x firmware, if using YazFi), be sure to input (if you haven't done so already) the Guest Network IP address subnet class into the Conditional Forwarding field to allow the router to process the Pi-Hole Conditional Forwarding name lookup requests for the Guest Network clients. For example, in my use case on the 3006.102.x firmware with two Guest Network Pro Profiles with Use same subnet as main network disabled for both profiles, I have the following in the Pi-Hole's DNS settings Conditional Forwarding field. It allows for correct name lookup and correct client name reporting in the Pi-Hole Query Log/reporting.
In the above example, 192.168.2.0/24 is the main LAN, 192.168.52.0/24 is the first Guest Network Pro Profile, 192.168.53.0/24 is the second Guest Network Pro Profile. 192.168.2.1 is the router IP address. And "lan" is the local domain name (set on the router's LAN > RT-AX86U Pro's Domain Name field).Code:true,192.168.2.0/24,192.168.2.1,lan true,192.168.52.0/24,192.168.2.1,lan true,192.168.53.0/24,192.168.2.1,lan
Yes, if you want the four IoT profiles DNS requests to be routed to the Pi-Hole. With DNS Director's Guest Network Pro Profiles routing to the Pi-Hole, and with the Pi-Hole's Conditional Forwarding enabled and properly configured, the Pi-Hole should correctly list the Guest Network Pro Profile client names in it's queries. Otherwise the Pi-Hole may simply list the DNS request as coming from the router rather than the Guest Network Pro client.
Are dns queries of those subnets still routed to Pi-Hole even without setting up DNS Director, but just not showing the client name?
In my very quick and dirty testing, with Guest Network Pro Profile in DNS Director set to No Redirection, and Global Redirection set to the Pi-Hole (User Defined DNS #1) it doesn't appear that the DNS requests of the Guest Network Pro clients are routed to the Pi-Hole. I've tested with the Guest Network Pro Profile DNS setting configured to Default and configured for Quad 9.
Thanks for the information, much appreciated.
yes, 192.168.50.33 is set up as User Defined DNS#1
lol just have not got around to it. and since i have not had any issues i have not even worried with it.
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!
