IPFire

Install  Setup  IPS  DHCP fixed leases  Hardening  OpenVPN Roadwarrior  Lynis  BackupRestore  ClamAntiVirus  Tor 

Raspberry Pi

Raspberry Pi  Pi-Hole  Flask  Lamp Control  LaserPointer  Real estates Mirabellengarten  Messenger  Magic Mirror²  NFS  Wikipedia  Immich  Wallos  TS3 Server  Valheim Server  Ubuntu  Kali Linux

Linux

Windows

Windows Power Shell TS3  Wikipedia

3D

Printing Tinkercad Copter Scanning Photogrammetry hackaday.io

RPG

Roll20 d20pfsrd Pathfinder Warhammer  Pathbuilder 2e Midgard

Bouldern

Boulderwall Self made escaladrome

Haus

Energie Features

Netz

Netz Security things NAS

Misc

Streaming

GamsGo Amazon Netflix Disneyplus Apple Paramount+ justwatch

Raspberry Pi-hole® Network-wide Ad Blocking

• Source: heise.de
  Documentation
• install with default settings

• curl -sSL https://install.pi-hole.net | bash

• Passwort kann neu gesetzt werden mit:

  sudo pihole -a -p

• Settings

  http://[IP]/admin/

  1. Settings >> DNS >> DNSSEC check checkbox and "save"
     
  2. Adlists >> Adlist

     https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/spy.txt
     https://v.firebog.net/hosts/lists.php?type=nocross

     Click "online" and "update"
  3. Domains >> Add a new domain

     b0.w.kicker.de
     chaturbate.com
     stripchat.com
     impactserving.com
     data.goasrv.com
     thumb-l3.flixcdn.com
     

Unbound DNS

• Quelle: Unbound

• sudo apt install unbound

• repeat all six month

  wget -O root.hints https://www.internic.net/domain/named.root
  
  sudo mv root.hints /var/lib/unbound/

• sudo nano /etc/unbound/unbound.conf.d/pi-hole.conf

  Content: pi-hole.conf

• sudo service unbound start
  dig pi-hole.net @127.0.0.1 -p 5335

• Test

  dig sigfail.verteiltesysteme.net @127.0.0.1 -p 5335

  dig sigok.verteiltesysteme.net @127.0.0.1 -p 5335

• Finally

  configure Pi-hole to use your recursive DNS server by specifying 127.0.0.1#5335 as the Custom DNS (IPv4):
  /admin/ >> Settings >> DNS
  • disable "Upstream DNS Servers"
  • enable Custom 1 (IPv4) with 127.0.0.1#5335
  • save
• Use DNSSEC
  /admin/ >> Settings >> DNS >> Use DNSSEC
• use your recursive DNS server

  sudo nano /etc/dhcpcd.conf

  change

  static domain_name_servers=127.0.0.1

  and clear content of

  sudo nano /etc/resolv.conf

  disable unbound-resolvconf.service

  sudo systemctl status unbound-resolvconf.service
  sudo systemctl disable unbound-resolvconf.service
  sudo systemctl stop unbound-resolvconf.service
  sudo systemctl restart dhcpcd

Hyperlocal

• Source: kuketz-blog

• sudo rm /etc/motd

• sudo nano /etc/update-motd.d/20-info

  add code:

  #!/bin/bash
  
  echo
  echo -e "\e[1mUptime:\e[m		$(uptime)"
  echo -e "\e[1mDate:\e[m		 $(date)"
  echo -e "\e[1mHyperlocal conf:\e[m $(cat /home/NUTZERNAME/.unbound/update.txt)"
  echo
  

  change NUTZERNAME to user name

• sudo chmod +x /etc/update-motd.d/20-info

• sudo nano /usr/local/bin/autoupdatelocalroot

  enter code from:

  autoupdatelocalroot.txt

• sudo chmod 755 /usr/local/bin/autoupdatelocalroot

• add to crontab:

  crontab -e

  add:

  20 4 * * 0 /usr/local/bin/autoupdatelocalroot

• sudo nano /usr/local/sbin/updateunboundconf

  updateunboundconf.txt

• sudo chmod 744 /usr/local/sbin/updateunboundconf

• Test

  autoupdatelocalroot
  sudo updateunboundconf

DNS over https