Mark mvandermeulen
Route all traffic with a raspberry pi like a VPN.
- get raspbian up and running https://www.raspberrypi.org/downloads/raspbian/
- turn on ssh https://www.raspberrypi.org/documentation/remote-access/ssh/README.md
- maybe update your packages
Quick and dirty setup instructions to get Pi-hole running with DoH via Cloudflare on a headless Raspberry Pi.
I was originally using Pi-hole with Quad9 as my upstream DNS provider, but noticed that my ISP (Spectrum) was still intercepting and answering some DNS queries so I've switched to Cloudflare and their Argo Tunnel client for DNS over HTTPS.
Yes, I know there are other options out there like unbound, stubby, DNS over TLS, and DNSCrypt, but as of this writing the whole encrypted DNS thing still feels really runny so I went with cloudflared because it's a single package that's easy to configure, update, and remove. This combination gets me to a place where my network is using encrypted DNS + DNSSEC and should automagically support ESNI once Safari implements it, and I could easily back out of DNS over HTTPS if DoT or DNSCrypt becomes more fully-baked before DoH does. I'll also happily switch back to Quad9 if they provide a DoH pr
This script will check if external IP is changed or not and will update the external IP of A or AAAA record in Cloudflare DNS using API token/ global API key method.
Instructions using a physical Raspberry Pi (or compatible SBC). This guide was written for the CryptoAUSTRALIA Pi-hole workshop.
This is the version of the workshop if you're using a Raspberry Pi. If you want the VM version of these instructions, look here.
Author: Nick Kavadias (CryptoAUSTRALIA)
| _5 | |
| get mac address: | |
| put [/interface ethernet get [/interface ethernet find default-name=ether1] mac-address ] | |
| *********************************************************** | |
| add ip address: | |
| ip address> add address=10.10.10.1/24 interface=ether2-sw | |
| *********************************************************** | |
| route ip: | |
| ip route add dst-address=0.0.0.0/0 gateway=my.gate.way.ip | |
| *********************************************************** |
- Login to management console using admin:admin
enableconfigure terminalvlan ###### is the VLAN id, we use 198 and 199.- Then the terminal will enter VLAN configuration mode, we set name to vlan### with
name ### exitVLAN configuration mode- Configure connect ports. For switch with VLAN 199, ethernet ports 1/1, 1/3, 1/5, 1/7 are connected to each server's eth2. For switch with VLAN 198 ethernet ports 1/10, 1/12, 1/14, 1/16 are connected to each server's eth3.
For each connected port, do the following:
| FROM ros:indigo-ros-base | |
| # install ros tutorials packages | |
| RUN apt-get update && apt-get install -y \ | |
| ros-indigo-ros-tutorials \ | |
| ros-indigo-common-tutorials \ | |
| && rm -rf /var/lib/apt/lists/ |