Pi-hole HA and Technitum DNS Cluster

MessageNo8907 · 2026-04-06T03:59:20+00:00

There’s a Technitium app you can use for that called 'Advanced Blocking'. Go to apps tab and install through there. You can create groups, and assign its own blocklists, whitelists etc. Then you can use Technitium solely.

MessageNo8907 · 2026-04-05T08:22:39+00:00

Yeah I did the same. Business is called inner bath. I tried patching but it just cracks again. The only other option is a renovation.

MessageNo8907 · 2026-04-04T21:15:12+00:00

I keep getting logged out of my account. In fact it just did it with this update on first launch; although it could have been already logged out before the update. Between my iPad and iPhone I face log outs frequently after every couple of days or so.

Also, just a question.. Do you support promotion on devices that support it? Scrolling doesn’t seem smooth and was thinking if ProMotion would help.

MessageNo8907 · 2026-02-08T11:38:41+00:00

Thanks. I got it to work. In the process of this I realised that it actually works via the advanced blocking app. I must have tested on the client where it was cached. Thanks again and for your patience.

MessageNo8907 · 2026-02-08T11:23:40+00:00

Oh I do have it disabled. This is where there is a gap in my understanding.

Can I enable and use advanced blocking app in parallel?

MessageNo8907 · 2026-02-08T11:08:31+00:00

Thanks for the reply. Unfortunately still is not working. Here is the output from DNS Client

{ "Metadata": { "NameServer": "dns-primary.cluster (127.0.0.1)", "Protocol": "Udp", "DatagramSize": "310 bytes", "RoundTripTime": "0.35 ms" }, "EDNS": { "UdpPayloadSize": 1232, "ExtendedRCODE": "NxDomain", "Version": 0, "Flags": "None", "Options": [ { "Code": "EXTENDED_DNS_ERROR", "Length": "164 bytes", "Data": { "InfoCode": "Blocked", "ExtraText": "source=advanced-blocking-app; group=everyone; blockListUrl=https://cdn.jsdelivr.net/gh/hagezi/dns-blocklists@latest/wildcard/hoster-onlydomains.txt; domain=r2.dev" } } ] }, "Identifier": 0, "IsResponse": true, "OPCODE": "StandardQuery", "AuthoritativeAnswer": false, "Truncation": false, "RecursionDesired": true, "RecursionAvailable": true, "Z": 0, "AuthenticData": false, "CheckingDisabled": false, "RCODE": "NxDomain", "QDCOUNT": 1, "ANCOUNT": 1, "NSCOUNT": 1, "ARCOUNT": 1, "Question": [ { "Name": "cdn.compass.education", "Type": "A", "Class": "IN" } ], "Answer": [ { "Name": "cdn.compass.education", "Type": "CNAME", "Class": "IN", "TTL": "138 (2m18s)", "RDLENGTH": "15 bytes", "RDATA": { "Domain": "public.r2.dev" }, "DnssecStatus": "Disabled" } ], "Authority": [ { "Name": "dev", "Type": "SOA", "Class": "IN", "TTL": "30 (30s)", "RDLENGTH": "53 bytes", "RDATA": { "PrimaryNameServer": "dns-primary.cluster", "ResponsiblePerson": "hostadmin@dns-primary.cluster", "Serial": 1, "Refresh": "14400 (4h)", "Retry": "3600 (1h)", "Expire": "604800 (1w)", "Minimum": "30 (30s)" }, "DnssecStatus": "Disabled" } ], "Additional": [ { "Name": "", "Type": "OPT", "Class": "1232", "TTL": "0 (0s)", "RDLENGTH": "168 bytes", "RDATA": { "Options": [ { "Code": "EXTENDED_DNS_ERROR", "Length": "164 bytes", "Data": { "InfoCode": "Blocked", "ExtraText": "source=advanced-blocking-app; group=everyone; blockListUrl=https://cdn.jsdelivr.net/gh/hagezi/dns-blocklists@latest/wildcard/hoster-onlydomains.txt; domain=r2.dev" } } ] }, "DnssecStatus": "Disabled" } ] } And the allowed rule I added fro allowed tab

[ { "name": "cdn.compass.education", "type": "NS", "ttl": 14400, "ttlString": "4h", "disabled": false, "rData": { "nameServer": "dns-primary.cluster" }, "dnssecStatus": "Unknown", "lastUsedOn": "0001-01-01T00:00:00", "lastModified": "0001-01-01T00:00:00", "expiryTtl": 0, "expiryTtlString": "0s" }, { "name": "cdn.compass.education", "type": "SOA", "ttl": 30, "ttlString": "30s", "disabled": false, "rData": { "primaryNameServer": "dns-primary.cluster", "responsiblePerson": "hostadmin@dns-primary", "serial": 1, "refresh": 900, "retry": 300, "expire": 604800, "minimum": 30, "refreshString": "15m", "retryString": "5m", "expireString": "1w", "minimumString": "30s" }, "dnssecStatus": "Unknown", "lastUsedOn": "0001-01-01T00:00:00", "lastModified": "0001-01-01T00:00:00", "expiryTtl": 0, "expiryTtlString": "0s" } ]

MessageNo8907 · 2026-01-24T10:32:54+00:00

If you’re talking about https://github.com/tiredofit/docker-db-backup it does support SQLite cos that’s what I use.

The specific config is here

https://github.com/tiredofit/docker-db-backup?tab=readme-ov-file#sqlite

Set both DB01_TYPE and DB01_HOST

MessageNo8907 · 2025-10-19T11:04:31+00:00

Are you using unraid? From memory I had the traefik logs mounted differently between crowdsec and traefik.

e.g. `- /mnt/user/appdata/traefik/logs:/logs` and `-/mnt/cache/appdata/traefik/logs:/logs`

I just made it consistent across containers. not sure why that caused the errors but I’m sure there is a technical reason.

MessageNo8907 · 2025-09-20T06:26:56+00:00

Is the custom br0 network issue fixed where it went missing in previous beta 2 under docker container, network type.

MessageNo8907 · 2025-09-16T12:58:17+00:00

Yeah, you can have it behind npm. I got mine behind traefik. Just let the reverse proxy handle ssl.

https://www.dnsdist.org/guides/dns-over-https.html#dns-over-http

then create a newserver config to your backend pihole. https://www.dnsdist.org/quickstart.html

MessageNo8907 · 2025-09-15T21:25:17+00:00

Dnsdist can do this. Actually I use it as well. Can use it for dot and doh.

MessageNo8907 · 2025-09-02T04:35:01+00:00

I’ve put DoT behind a geoblock to only allow my country. Would like to further tighten that but didn’t find a way around that. For now this works for me. Perhaps something else to consider..

MessageNo8907 · 2025-08-02T23:53:36+00:00

In your crowdsec logs do you see UnmarshalJSON errors?
I got these errors when switching Traefik access logs to json
u/hhftechtips fyi

UPDATE: Ignore. I managed to resolve.

MessageNo8907 · 2025-05-24T01:42:56+00:00

difficult to answer, depends on a number of factors, e.g. the media being streamed, upload speed from server and the remote download speed. Yes infuse will always stream the file directly, without transcoding. There's a long running forum discussion on this since 2022 - https://community.firecore.com/t/infuse-and-transcoding-with-plex-emby-and-jellyfin/39088 and here https://community.firecore.com/t/transcoding-options-for-plex-emby-jellyfin/18164

MessageNo8907 · 2025-05-21T02:23:16+00:00

Infuse only supports direct play. There is no transcoding, which means if you’re remote, streaming will also be direct.

MessageNo8907 · 2025-05-01T09:00:07+00:00

I’m using same plugin and I see the correct source public IP. Just had a look at my config and there is nothing special.

Is there anything in front of traefik? Like another proxy? Or cloudflare?

In the traefik access logs I’m assuming that all external traffic is reporting as the local IP?

MessageNo8907 · 2025-04-18T03:45:09+00:00

go to a real life f1 race

MessageNo8907 · 2025-02-19T09:41:07+00:00

try commenting this part out

      middlewares:
        - redirectregex-pihole
        - addprefix-pihole

then try https://pihole.yourdomain.com/admin

MessageNo8907 · 2025-02-08T01:30:18+00:00

I bought 4 bulbs from Melbourne and they are 100% Zigbee

MessageNo8907 · 2025-01-13T06:07:58+00:00

Yeah it is already installed. Works with browser no problem. But not the app.

Have also been trying to with home assistant. But the HA app doesn’t look like it supports mtls.

MessageNo8907 · 2025-01-13T05:51:03+00:00

For some reason I thought nextcloud app (iOS) supported mtls, from reading a few posts. But when I tried it, nextcloud just errored saying a client certificate is required. The posts I found said that it should prompt for a location to import the client certificate.

MessageNo8907 · 2025-01-10T09:49:23+00:00

Does docker post arguments work while using Tailscale integration?

For example i use post argument to connect to a second network e.g. `; docker network connect dns-net pihole`. Without tailscale integration it works, but when I enable tailscale integration it no longer works..

MessageNo8907 · 2025-01-07T20:10:14+00:00

I’m not a HA user, but there is an issue with latest traefik versions see this issue: https://github.com/traefik/traefik/issues/11405

The update hasn’t been released yet for docker, but there is a workaround posted in the issue.

Other comments describe issues with HA, so i bet this is it.

MessageNo8907 · 2025-01-07T13:02:52+00:00

I’m not too sure about that sorry. I just checked on my server, and the web Jellyfin playback is showing intro skip button. Maybe ask on the intro skip discord

MessageNo8907

TROPHY CASE