Install the app
How to install the app on iOS

Follow along with the video below to see how to install our site as a web app on your home screen.

Note: This feature may not be available in some browsers.

DoH (DNS over HTTPS) w/ pihole in docker on DSM

As an Amazon Associate, we may earn commissions from qualifying purchases. Learn more...

@BobW ,

Thanks for this quick tutorial, it looks quite simple.
Do you think this can be done within the DSM UI instead of CLI ?
With DSM UI you cannot setup a macvlan network and you will get an error if you want to use port 53 an 67.
I don't use CLI so I could not say if it will work..sorry

Portainer is an option if you want to use a GUI
 
I don't use CLI so I could not say if it will work..sorry

I may not have been clear with the term CLI :) : I meant command line (SSH to your Syno box)
For the macvlan if it's not possible in DSM UI then yes SSH to the Syno box should be OK for me :)

as for :
Code:
 --network=macvlan_network \
 --ip=192.168.xx.xx \                  #your macvlan IP
Can these be set in the UI ?
 
I may not have been clear with the term CLI :) : I meant command line (SSH to your Syno box)
For the macvlan if it's not possible in DSM UI then yes SSH to the Syno box should be OK for me :)

Okay got it, Command line ;) yes

as for :
Code:
 --network=macvlan_network \
--ip=192.168.xx.xx \                  #your macvlan IP
Can these be set in the UI ?

No you need to set it through Command line (CLI;))
 
I get a error when i put the docker create adguard: "docker: Error response from daemon: failed to create the macvlan port: device or resource busy."
Code:
sudo docker network create -d macvlan 
--subnet=192.168.1.0/20 --ip-range=192.168.1.0/20 -o parent=eth0 secure_network

sudo docker run -d --name adguard -v /volume1/docker/adguard/work:/opt/adguardhome/work 
-v /volume1/docker/adguard/config:/opt/adguardhome/conf 
-v /volume1/docker/adguard/etc/hosts:/etc/hosts:rw -v /etc/localtime:/etc/localtime:ro 
-v /etc/TZ:/etc/timezone:ro --env TZ='Europe/Brussels' --network=secure_network --ip=192.168.2.200 --hostname='adguard' -p 53:53/tcp -p 53:53/udp -p 67:67/udp -p 68:68/tcp 
-p 68:68/udp -p 81:80/tcp -p 8443:443/tcp -p 853:853/tcp -p 3000:3000/tcp --restart always adguard/adguardhome:latest

Any idea what is wrong here?
 
Error gone by changing the "-o parent=eth0 into parent=ovs_eth0".
Now I have another error:
Code:
docker: Error response from daemon: OCI runtime create failed: container_linux.go:345:
starting container process caused "process_linux.go:430: container init
caused \"rootfs_linux.go:59: mounting \\\"/volume1/docker/adguard/etc/hosts\\\"
to rootfs \\\"/volume1/@docker/btrfs/subvolumes/cac0513f8dee6787ebd1c02076054eac2d5f4be60bdb01aac809dc186a5baadd\\\" at
\\\"/volume1/@docker/btrfs/subvolumes/cac0513f8dee6787ebd1c02076054eac2d5f4be60bdb01aac809dc186a5baadd/etc/hosts\\\" caused \\\"not a directory\\\"\"":
unknown: Are you trying to mount a directory onto a file (or vice-versa)? Check if the specified host path exists and is the expected type.
 
Error gone by changing the "-o parent=eth0 into parent=ovs_eth0".
Now I have another error:
Code:
docker: Error response from daemon: OCI runtime create failed: container_linux.go:345:
starting container process caused "process_linux.go:430: container init
caused \"rootfs_linux.go:59: mounting \\\"/volume1/docker/adguard/etc/hosts\\\"
to rootfs \\\"/volume1/@docker/btrfs/subvolumes/cac0513f8dee6787ebd1c02076054eac2d5f4be60bdb01aac809dc186a5baadd\\\" at
\\\"/volume1/@docker/btrfs/subvolumes/cac0513f8dee6787ebd1c02076054eac2d5f4be60bdb01aac809dc186a5baadd/etc/hosts\\\" caused \\\"not a directory\\\"\"":
unknown: Are you trying to mount a directory onto a file (or vice-versa)? Check if the specified host path exists and is the expected type.
Etc/host mount is wrong from syno side (left side)
 
etc/hosts is a file you need to create a file called hosts first and mount that as described. The host file is for clients friendly names. AdguardTeam/AdGuardHome

If you don’t need that you could leave it out of the config
 
Thank you for the answers. It is runninig now without that one line. Will look later if I really need this.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Similar threads

I just added two DNS A with both public IPs, main ip TTL - Auto, second DNS TTL-1 min and it works well...
Replies
2
Views
965

Thread Tags

Tags Tags
docker dsm

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Trending content in this forum

Back
Top