This is an automated archive.

The original was posted on /r/pihole by /u/CrimsonThePowerful on 2023-08-16 02:27:47+00:00.


I am trying to set up a new PiHole for my DNS and am running into an issue where devices on different subnets are not being blocked like they should when using PiHole for the DNS and PiHole is not logging the traffic. If the device is on the same subnet, it is filtered and works just fine, but when it is on a different subnet the queries go through but nothing is blocked and no logs show up.

Each device is still getting DNS and are able reach the web, but I put a test block on amazon.com and any device in the same subnet is block, but if it is in another subnet, it can get to amazon just fine. Additionally, I have made every config change know to man to try and get this working. I have made sure to allow traffic from any source, just the specific ethernet interface, added the subnet it should be listening for, changed DNS hosts, made sure that my firewall is not blocking anything, etc.

I took a wireshark from one of my devices and I see the traffic hitting the PiHole VM and a return come back, but the devices is still able to reach amazon. The only DNS that shows up in the wireshark is the PiHole, but like I said the PiHole does not show the device in the query log nor is anything blocked.

I saw a post about the UDM pro hijacking DNS, but the setting in question no longer exists and the one that replaced it is turn off on all of my network (DNS filtering -> Content filtering).

The other weird issue I am having is with DNSSEC, if I enable it all of the the queries show BOGUS. I have made sure I am using an upstream DNS server that does use DNSEC, so that is not the issue and I am at a loss at this point as to what the problem could be. Any help on this would be greatly appreciated!!