Hi guys,

actually I have the following setup:

ISP Router Fritzbox 7590 --> provides static IP for the Mikrotik Router RB3011 and has static routes to the VLANs of the RB3011
RB3011 makes 4 different VLANs (internal, guest, work, iot)
On the "internal" VLAN I have several servers up and running on Proxmox

Everything works fine at the moment. But now I come to the point "Pihole integration". I have created a Pihole LXC on Proxmox which is up and running on the "internal" VLAN. The question here is how the best practise looks like for the DNS entries on RB3011 and the Fritzbox 7590 I have tried different things, but without success. Therefor it is really appreciated to get some best practise advice / hints to get Pihole up and running on my network.

Thank you very much in advance for your help.

Best regards
Thorsten

The easiest way: Set the PiHole as only DNS server in the DHCP Network(s). Make sure the PiHole can be reached from all VLAN's.
Another consideration would be letting the MikroTik work as DNS server (set its IP address in the DHCP Network(s)). THe only disadvantge is that PiHole only is aware of the routers IP, client IPs aren't stored.

But...have you seen AdList:
https://help.mikrotik.com/docs/display/ ... DNS-Adlist

Personally, I got rid of my PiHole's (and AdGuards).

Hi,
thank you for your replay. I did not know Adlist on Mikrotik. I will check it out.

But for now, I will keep Pihole. I still want to ad some server domains in Pihole - I really cannot remeber all IPs for my different servers...

For my understanding, would you be so kind to explain me how the router cascade works with DNS?

A computer in VLAN 1 asks Mikrotik for an HP. Mikrotik asks then Pihole in the same or different VLAN and comes back with the IP adress. What happens with the DNS on the Fritzbox? Is it skipped? I am still a little bit confused about this.

How should the firewall look like, that every VLAN can access the Pihole?

Regards
Thorsten