What's new

Noob DNS questions

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

jsn2233

Occasional Visitor
I use Asus Merlin and I have a Pihole running on a personal server that is added as DNS on my network that all my devices use on my LAN. Is there some other type of DNS that I need to also setup? I disable all DNS on all my devices so it doesn't interfere with the Pihole. Is this bad practice? Should I still enable secure DNS in browsers and on mobile devices?

I always kind of assumed Pihole good and anything else bad. I always thought anything else would not be good with Pihole.

I used the shields up website to check my network for vulnerabilities and I added the result as an attachment to this post. I understand there are settings to mitigate ping reply on Asus Merlin but what about "Solicited TCP Packets"?
 

Attachments

  • Screenshot_0_1.png
    Screenshot_0_1.png
    189.9 KB · Views: 26
I use Asus Merlin and I have a Pihole running on a personal server that is added as DNS on my network that all my devices use on my LAN. Is there some other type of DNS that I need to also setup? I disable all DNS on all my devices so it doesn't interfere with the Pihole. Is this bad practice? Should I still enable secure DNS in browsers and on mobile devices?

I always kind of assumed Pihole good and anything else bad. I always thought anything else would not be good with Pihole.

I used the shields up website to check my network for vulnerabilities and I added the result as an attachment to this post. I understand there are settings to mitigate ping reply on Asus Merlin but what about "Solicited TCP Packets"?

When I run the ShieldsUP! scan, the first port 0/nil sometimes 'fails', sometimes does not... I've been ignoring it.

1725052525476.png


OE
 
Don't use that website. It's broken and provide invalid recommendations.
 
I use Asus Merlin and I have a Pihole running on a personal server that is added as DNS on my network that all my devices use on my LAN. Is there some other type of DNS that I need to also setup? I disable all DNS on all my devices so it doesn't interfere with the Pihole.
A basic configuration on the router is to have the Pi-Hole configured as the LAN DNS server(s). One can choose different DNS servers for the WAN DNS server(s). When a LAN client contacts the router to obtain an IP address the router would provide the LAN client an IP address along with the LAN DNS server(s), in other words the Pi-Hole to the LAN client. Unless the LAN client is configured to use additional DNS servers they would use just the Pi-Hole as their DNS server(s).

One can further configure their router to route all DNS requests to the Pi-Hole by using DNS Filter.

One example of how to configure the Asus-Merlin firmware router to use Pi-Hole:
https://www.snbforums.com/threads/pihole-dns.74646/page-3#post-712319

Your router's internet facing firewall is what is tested when using sites like https://www.grc.com and their ShieldsUP port scanner. That site can (and does) sometimes report incorrect information on the port status. And the recommendations if provides is considered dubious by some.
 

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Top