I deployed Wireguard (using PiVPN) and Pi-hole on my Ubuntu Digital Ocean server. I can go to the Pi-hole settings with my IP address by adding ‘/admin’ after it, and it’s not secure (HTTP).
Is this unsafe since everyone can access the /admin page?
I have not added any custom firewall rules on DigitalOcean yet.
You must log in or # to comment.
It depends which interface(s) the port is listening on. There’s likely a default
eth0interface and another for WireGuard (let’s saywg0). You need to make sure that port is open only onwg0.In this example, you should configure HTTP to listen only on the IP address(es) belonging to
wg0.Dude i did the same thing. Trust me. I thought who would attack or care about my digital ocean droplet. But just after some time i was attacks happening. So many bots tried to use my DNS server to DDoS some websites they targeted. I can see the queries going from few thousands to hundreds of thousands. This also affected all the devices using the DNS because it became slow. Internet loaded slower. I tried changing a few settings and at last tried to allow only certain IP addresses i allowed. But just after a day, i cannot see any queries . I cannot see anything. It’s hijacked. This is entirely a bad idea. You must host your DNS over private network such as VPN