Thanks Jim, I have been watching your content for the last couple of weeks and I just wanted to say that it is absolutely brilliant!

Very useful and in depth. Exactly what I needed. I have struggled a lot setting it up the correct way and understanding the parameters. Great tutorial

Absolutely brilliant! I've been searching for this sort of content for the best part of 5 years! Definitely going to explore more of your videos!

Thanks, Finally someone who comes up with a detailled explanation why we are doing the things we are doing. Great video.

Great video! I ran pinhole years ago. I’m considering spinning up adGuard. I would love to see a comparison between the two

Great video! I'm a big fan of your work!!! Keep up the great work!!!

Thank you for the informative video. As with all your videos, you make a potentially complex topic very easy to understand and implement. I'm already utilising PiHole over a Cloudflare tunnel and I'm not too worried about the privacy concerns but the additional protection Unbound provides against DNS poisoning is interesting so I may look at switching.

Thank you James, Great video about hosting the recursive server.

I've tried to use your configuration from the video, but it's not working correctly. The problem is with unbound.conf file and interface - this should be left at default 53, as you're already mapping it to 5053 from the container :)

Also, you don’t need to specify load balancing for a single container in traefik labels if the server port is already configured on a standard web port. Only if it’s something else like 9000, 8080, etc.

A how-to on deploying this in a Docker Swarm setup would be great 😄

Nice now I can understand what I’ve been using for a while already 😂

Love your videos, but there are number of issues with your configuration. At least as it's shown on video. 1. `PIHOLE_DNS_: 172.23.0.8#5053` You're referencing the unbound IP with the Host Port 2. Your environment and volumes sections should have it's list items indented. Additionally you are mixing data classes. Either use `- SOME_VAR=true` or `SOME_VAR: true`. It will fail due to syntax otherwise. 3. You don't need to expose unbound ports unless you are going to use elsewhere. Since pihole and unbound are on the same network they will still be able to communicate internally. 4. You don't need a hostname for pihole unless you are going to reference that somewhere else. This is a friendly message. Just a few things I noticed. Love your content. Cheers

Tip for anyone using a fresh installation ubuntu server (22.04 in my case): Disable systemd-resolved before trying this, it conflicts on port 53 and causes an error when running docker-compose You can disable it by running these commands: sudo systemctl stop systemd-resolved sudo systemctl disable systemd-resolved sudo reboot

looks like you've moved onto to using vs code, i love using it. good stuff as always.

thanks for your help again got it to work !

Great video, thank for posting!

Hi Jim, thank you so much for this video... it was an entry into the rabbithole of pihole, unbound and docker for me. After following your guide, I decided to set up two pihole containers on the same raspberry pi 4, so that I could have a DNS for my children (i.e. more restricted internet use), and one for everyone else. I ended up with a user-defined bridge (for the communication between the pihole containers and the unbound one); and the two pihole containers also on an ipvlan. This way only pihole is exposed to the LAN and it can't be circumvented by using the Unbound port 5053. It also means that both pihole containers and the unbound container can listen on port 53 (i.e. no port mapping). I was wondering whether you'd considered this networking setup; and whether there are reasons not to use it? / The benefits of the port mappings on a bridge network that this video shows?

Thanks Jim!, could set this up in a Docker Swarm with replication and a way to still see all the individual clients? That would be (I think) the ultimate setup, in case one node fails the other one would pick it up or in case of upgrading one node.

Hello thanks for the great videos, my compose file is failing error "network proxy declared as external, but could not be found" I'm running this on a Synology NAS any hint?

Im trying to make all devices on my network use pihole as my dns, so i pointed my router’s dns resolver to the ip of the lxc running pihole (im using proxmox). This works well, and pihole is blocking sites as expected, however, pihole as well as the other docker containers on the same LXC have issues with dns resolution. Is there something im missing, or would i have to manually change the dns settings on each of my devices for it to work?

A thorough and clear explanation as always. Is this something you move to kubernetes cluster or keep it portainer forever?

Hi Jim, why not using unbound on OPNsense and configure DoT with Cloudflare?

Hey, I am very curious. If privacy is the goal with Unbound why not use DNS over HTTPS to encrypt your DNS? Are there specific reasons you may want to use Unbound instead?

Thanks Jim. Another supperb video. I am trying to implement in a QNAP NAS. As i have checked `prt :53 is used by service DNSMASQ.. I have disable it and use your installation .. All works, except some containers (crowdsec and others) that they haven't got dns service, so no internet inside dockers .. Anyone has tested in QNAP NAS ?

Thanks, Jim for sharing and am new to this space, so I have a question how can I do the same installation on CasaOS container, I have installed pi-hole, and other apps(home assistant) running on CasaOS. if you could provide guides I would greatly appreciate it.

Hello Jim for a beginner, on rpi 4, Rpi OS - if i want to use your setup for example i need to make 2 folders in for e.g. Documents copy files for each unbound and pihole for starting this containers, do i need any change in `volumes` section in .yml file?

This might be my next project. I’ve tried pi hole a handful of times over the years but inevitably after a few months, my Internet slows to a crawl. I’m gonna go back and watch your pole video and see if I can glean an answer as to why that is

Excellent video as always, thank you so much for all your content, I am learning a lot. In my case, I use the OPNsense unbound, and have the other settings as you in PiHole, except that I also check the "Use Conditional Forwarding" and refer to the DCHP server IP, just at the end of the settings page, in order to get the hostnames instead of simple IPs in the logs. Am I doing smth wrong in terms of security? Thanks again

How do you use vscode on windows to create and edit docker conatiners on Linux machine ?

Hi jim. Need your help. I tried to install on my raspi pi, but so far no luck. I did update the unbound image source like yoy suggested. Can you make compose with no traefik?

You don’t need to change or expose any ports for unbound. Because the end user does not access unbound directly and you are routing from PiHole to Unbound over a docker network with their own IPs, port 53 is not in conflict.

Thanks Jim. I have moved to all Kubernetes, no more docker compose! how to do this in Kubernetes?

if i put pi hole through a vpn with gluetun will that mean everything on network will be on a vpn if the dns is my server ip in router?

If you use opnsense skip the unbound part and just use the built in one. Does the same 😊

Hi Jim, thx for this playlist, 10 out of 10! I followed this guide, in the unbound log I got the messasge: "unbound[1:0] warning: unbound is already running as pid 1." Is that an issue?

Hi Jim, great video. Are you sure your docker-compose.yml is correct? I kept getting service.pihole.environment variable must be mapped error. I had to remove the `-` in front of the environment variables or put `" "` around the variable to get around the error. After `docker compose up -d` I get the message `error response from daemon: network proxy not found` any idea what that is about? I can see in portainer that the bridge was created but the container were not created.

How to install this using unraid community applications ? Both pinhole and unbound and make them communicate with each other

Thanks for the video! Just a question, what's the difference/benefits of using this over cloudflare tunnels?

Hi Jim - almost have this running, but as someone mentioned below a couple months ago, I'm getting the following error. Any ideas? "Error starting userland proxy: listen tcp4 0.0.0.0:53: bind: address already in use"

I have an error and as somebody who knows sweet FA about this stuff have no idea where to start. Network docker-compose_dns_net Created 0.2s Error response from daemon: network proxy not found This after running sudo docker compose up -d. Please help........

Why wouldn't you setup an LXC in Proxmox and just integrate Unbound with Pi-Hole?

Thanks very much!!

Nice, does unbound also works with adguard? I prefere it instead of pihole

How do you deploy Unbound with PiHole on CasaOS?

Can you stop saying Umbound, its UNBOUND, LIKE UN)DER

i get an error inside logs for unbound that says exec /unbound.sh format error. it wont assign the ip address of dnsnet. is there something ive done wrong

Hi I am new to docker world , After running the docker compose , I am getting below Error : ⠼ Network unbound_dns_net Created 0.3s Error response from daemon: network proxy not found Can someone help ?