DoH (DNS over HTTPS) w/ pihole in docker on DSM

Currently reading
DoH (DNS over HTTPS) w/ pihole in docker on DSM

242
63
@BobW ,

Thanks for this quick tutorial, it looks quite simple.
Do you think this can be done within the DSM UI instead of CLI ?
With DSM UI you cannot setup a macvlan network and you will get an error if you want to use port 53 an 67.
I don't use CLI so I could not say if it will work..sorry

Portainer is an option if you want to use a GUI
 
162
45
NAS
DS918+ (8GB RAM, 4x WD RED 4TB SHR) ; EATON Ellipse PRO 1200FR
Operating system
  1. Windows
Mobile operating system
  1. Android
I don't use CLI so I could not say if it will work..sorry

I may not have been clear with the term CLI :) : I meant command line (SSH to your Syno box)
For the macvlan if it's not possible in DSM UI then yes SSH to the Syno box should be OK for me :)

as for :
Code:
 --network=macvlan_network \
 --ip=192.168.xx.xx \                  #your macvlan IP
Can these be set in the UI ?
 
242
63
I may not have been clear with the term CLI :) : I meant command line (SSH to your Syno box)
For the macvlan if it's not possible in DSM UI then yes SSH to the Syno box should be OK for me :)

Okay got it, Command line ;) yes

as for :
Code:
 --network=macvlan_network \
--ip=192.168.xx.xx \                  #your macvlan IP
Can these be set in the UI ?

No you need to set it through Command line (CLI;))
 
141
36
NAS
DS1815+
Operating system
  1. Linux
  2. macOS
Mobile operating system
  1. iOS
I get a error when i put the docker create adguard: "docker: Error response from daemon: failed to create the macvlan port: device or resource busy."
Code:
sudo docker network create -d macvlan 
--subnet=192.168.1.0/20 --ip-range=192.168.1.0/20 -o parent=eth0 secure_network

sudo docker run -d --name adguard -v /volume1/docker/adguard/work:/opt/adguardhome/work 
-v /volume1/docker/adguard/config:/opt/adguardhome/conf 
-v /volume1/docker/adguard/etc/hosts:/etc/hosts:rw -v /etc/localtime:/etc/localtime:ro 
-v /etc/TZ:/etc/timezone:ro --env TZ='Europe/Brussels' --network=secure_network --ip=192.168.2.200 --hostname='adguard' -p 53:53/tcp -p 53:53/udp -p 67:67/udp -p 68:68/tcp 
-p 68:68/udp -p 81:80/tcp -p 8443:443/tcp -p 853:853/tcp -p 3000:3000/tcp --restart always adguard/adguardhome:latest

Any idea what is wrong here?
 
141
36
NAS
DS1815+
Operating system
  1. Linux
  2. macOS
Mobile operating system
  1. iOS
Error gone by changing the "-o parent=eth0 into parent=ovs_eth0".
Now I have another error:
Code:
docker: Error response from daemon: OCI runtime create failed: container_linux.go:345:
starting container process caused "process_linux.go:430: container init
caused \"rootfs_linux.go:59: mounting \\\"/volume1/docker/adguard/etc/hosts\\\"
to rootfs \\\"/volume1/@docker/btrfs/subvolumes/cac0513f8dee6787ebd1c02076054eac2d5f4be60bdb01aac809dc186a5baadd\\\" at
\\\"/volume1/@docker/btrfs/subvolumes/cac0513f8dee6787ebd1c02076054eac2d5f4be60bdb01aac809dc186a5baadd/etc/hosts\\\" caused \\\"not a directory\\\"\"":
unknown: Are you trying to mount a directory onto a file (or vice-versa)? Check if the specified host path exists and is the expected type.
 

Rusty

Moderator
NAS Support
6,094
1,785
www.blackvoid.club
NAS
DS718+, DS918+, 2x RS3614RPxs+
Router
  1. RT1900ac
  2. RT2600ac
  3. MR2200ac
Operating system
  1. macOS
Mobile operating system
  1. iOS
Error gone by changing the "-o parent=eth0 into parent=ovs_eth0".
Now I have another error:
Code:
docker: Error response from daemon: OCI runtime create failed: container_linux.go:345:
starting container process caused "process_linux.go:430: container init
caused \"rootfs_linux.go:59: mounting \\\"/volume1/docker/adguard/etc/hosts\\\"
to rootfs \\\"/volume1/@docker/btrfs/subvolumes/cac0513f8dee6787ebd1c02076054eac2d5f4be60bdb01aac809dc186a5baadd\\\" at
\\\"/volume1/@docker/btrfs/subvolumes/cac0513f8dee6787ebd1c02076054eac2d5f4be60bdb01aac809dc186a5baadd/etc/hosts\\\" caused \\\"not a directory\\\"\"":
unknown: Are you trying to mount a directory onto a file (or vice-versa)? Check if the specified host path exists and is the expected type.
Etc/host mount is wrong from syno side (left side)
 
141
36
NAS
DS1815+
Operating system
  1. Linux
  2. macOS
Mobile operating system
  1. iOS
Thank you for the answers. It is runninig now without that one line. Will look later if I really need this.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Similar threads

6
oh tanks a lot, it would be nice for them to add a (!) with this information, it not clear we can do that...
Replies
2
Views
1,705
6
Replies
26
Views
1,431
I've configured the OpenVPN server in SRM (in vpn plus server), and I've checked the 'allow clients to...
Replies
0
Views
659
Yep, thats what I'm doing as wel. Would be nice if Synology would come up with something like Microsoft IPAM.
Replies
6
Views
1,541
Replies
2
Views
3,736
There was some changes to DNS and Safe Access, with people wanting to use their own internal pi-hole...
Replies
1
Views
1,303
I deleted a bit I was going to add about ISP's holding the account holder responsible for what happens...
Replies
22
Views
8,889

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Top