one-container/README.md

@@ -18,7 +18,7 @@ First create a `.env` file to substitute variables for your deployment.
 | -------- | ------- | ----- | ---------- |
 | `TZ` | UTC | `<Timezone>` | Set your [timezone](https://en.wikipedia.org/wiki/List_of_tz_database_time_zones) to make sure logs rotate at local midnight instead of at UTC midnight.
 | `WEBPASSWORD` | random | `<Admin password>` | http://pi.hole/admin password. Run `docker logs pihole \| grep random` to find your random pass.
-| `FTLCONF_LOCAL_IPV4` | unset | `<Host's IP>` | Set to your server's LAN IP, used by web block modes and lighttpd bind address.
+| `FTLCONF_REPLY_ADDR4` | unset | `<Host's IP>` | Set to your server's LAN IP, used by web block modes and lighttpd bind address.
 | `REV_SERVER` | `false` | `<"true"\|"false">` | Enable DNS conditional forwarding for device name resolution |
 | `REV_SERVER_DOMAIN` | unset | Network Domain | If conditional forwarding is enabled, set the domain of the local network router |
 | `REV_SERVER_TARGET` | unset | Router's IP | If conditional forwarding is enabled, set the IP of the local network router |
@@ -28,7 +28,7 @@ First create a `.env` file to substitute variables for your deployment.
 Example `.env` file in the same directory as your `docker-compose.yaml` file:
 
 ```
-FTLCONF_LOCAL_IPV4=192.168.1.10
+FTLCONF_REPLY_ADDR4=192.168.1.10
 TZ=America/Los_Angeles
 WEBPASSWORD=QWERTY123456asdfASDF
 REV_SERVER=true
@@ -43,8 +43,6 @@ WEBTHEME=default-light
 
 ### Using Portainer stacks?
 
-> 2022-3-11: I'm being told that the advice below is no longer true in Portainer. If you're using Portainer, first try it without removing the volumes declaration and see if it works.
-
 Portainer stacks are a little weird and don't want you to declare your named volumes, so remove this block from the top of the `docker-compose.yaml` file before copy/pasting into Portainer's stack editor:
 
 ```yaml

one-container/docker-compose.yaml

@@ -1,4 +1,4 @@
-version: '3.0'
+version: '2'
 
 volumes:
   etc_pihole-unbound:
@@ -18,7 +18,7 @@ services:
       # - 5335:5335/tcp # Uncomment to enable unbound access on local server
       # - 22/tcp # Uncomment to enable SSH
     environment:
-      - FTLCONF_LOCAL_IPV4=${FTLCONF_LOCAL_IPV4}
+      - FTLCONF_REPLY_ADDR4=${FTLCONF_REPLY_ADDR4}
       - TZ=${TZ:-UTC}
       - WEBPASSWORD=${WEBPASSWORD}
       - WEBTHEME=${WEBTHEME:-default-light}

one-container/pihole-unbound/Dockerfile

@@ -1,12 +1,10 @@
-ARG PIHOLE_VERSION
+FROM pihole/pihole:2022.02.1
-FROM pihole/pihole:${PIHOLE_VERSION:-latest}
 RUN apt update && apt install -y unbound
 
 COPY lighttpd-external.conf /etc/lighttpd/external.conf 
 COPY unbound-pihole.conf /etc/unbound/unbound.conf.d/pi-hole.conf
 COPY 99-edns.conf /etc/dnsmasq.d/99-edns.conf
-RUN mkdir -p /etc/services.d/unbound
+COPY start_unbound_and_s6_init.sh start_unbound_and_s6_init.sh
-COPY unbound-run /etc/services.d/unbound/run
-
-ENTRYPOINT ./s6-init
 
+RUN chmod +x start_unbound_and_s6_init.sh
+ENTRYPOINT ./start_unbound_and_s6_init.sh

one-container/pihole-unbound/VERSION

@@ -1 +1 @@
-2023.05.2
+2022.02.1

one-container/pihole-unbound/build_and_push.sh

@@ -1,7 +1,6 @@
 #!/bin/bash
 # Run this once: docker buildx create --use --name build --node build --driver-opt network=host
-PIHOLE_VER=`cat VERSION`
+docker buildx build --platform linux/arm/v7,linux/arm64/v8,linux/amd64 -t cbcrowe/pihole-unbound:`cat VERSION` --push .
-docker buildx build --build-arg PIHOLE_VERSION=$PIHOLE_VER --platform linux/arm/v7,linux/arm64/v8,linux/amd64 -t cbcrowe/pihole-unbound:$PIHOLE_VER --push .
+docker buildx build --platform linux/arm/v7,linux/arm64/v8,linux/amd64 -t cbcrowe/pihole-unbound:latest --push .
-docker buildx build --build-arg PIHOLE_VERSION=$PIHOLE_VER --platform linux/arm/v7,linux/arm64/v8,linux/amd64 -t cbcrowe/pihole-unbound:latest --push .
 
 

one-container/pihole-unbound/start_unbound_and_s6_init.sh

@@ -0,0 +1,3 @@
+#!/bin/bash -e
+/etc/init.d/unbound start
+/s6-init

one-container/pihole-unbound/unbound-pihole.conf

@@ -44,8 +44,7 @@ server:
     num-threads: 1
 
     # Ensure kernel buffer is large enough to not lose messages in traffic spikes
-    # Be aware that if enabled (requires CAP_NET_ADMIN or privileged), the kernel buffer must have the defined amount of memory, if not, a warning will be raised.
+    so-rcvbuf: 1m
-    #so-rcvbuf: 1m
 
     # Ensure privacy of local IP ranges
     private-address: 192.168.0.0/16
@@ -53,4 +52,4 @@ server:
     private-address: 172.16.0.0/12
     private-address: 10.0.0.0/8
     private-address: fd00::/8
-    private-address: fe80::/10
+    private-address: fe80::/10

one-container/pihole-unbound/unbound-run

@@ -1,25 +0,0 @@
-#!/command/with-contenv bash
-
-s6-echo "Starting unbound"
-
-NAME="unbound"
-DESC="DNS server"
-DAEMON="/usr/sbin/unbound"
-PIDFILE="/run/unbound.pid"
-
-HELPER="/usr/lib/unbound/package-helper"
-
-test -x $DAEMON || exit 0
-
-# Override this variable by editing or creating /etc/default/unbound.
-DAEMON_OPTS=""
-
-if [ -f /etc/default/unbound ]; then
-    . /etc/default/unbound
-fi
-
-$HELPER chroot_setup
-$HELPER root_trust_anchor_update 2>&1 | logger -p daemon.info -t unbound-anchor
-
-$DAEMON -d $DAEMON_OPTS
-

two-container/docker-compose.yaml

@@ -16,9 +16,9 @@ services:
       - 80/tcp
       - 22/tcp
     environment:
-      - FTLCONF_LOCAL_IPV4=192.168.1.5
+      - FTLCONF_REPLY_ADDR4=192.168.1.5
       - WEBPASSWORD=${WEBPASSWORD}
-      - PIHOLE_DNS_=192.168.1.6;192.168.1.13
+      - PIHOLE_DNS_192.168.1.6;192.168.1.13
     volumes:
       - /volume1/docker/pihole-unbound/pihole/volume:/etc/pihole:rw
       - /volume1/docker/pihole-unbound/pihole/config/hosts:/etc/hosts:ro