[Solved] Route to Pihole from Guest Vlan

[s4rs]

I am trying to get hosts on my Guest vlan to use my Pihole server on my Home vlan. I have setup a rule on Guest

Protocol - IPV4 TCP/UDP
Source - Any
Port - Any
Destination - <PiHole Server>
Port - 53(DNS)
Gateway - Any

and it doesn't work

I turned on Rule logging and can see what I think packets going to Pihole but its not working. Any suggestions? Images of rule an log below

[iamperson347]

That rule looks right. What do you mean by "use my Pihole server on my Home vlan"? Are you trying to force the clients to use the pihole server? Or just set the DNS servers for your guest machines to point to the pihole? You could probably set source to Guest Network.

Mine looks pretty similar. (attached screenshot)

[s4rs]

I have 2 vlans, home and guest. The pihole server is on my home vlan. I would like guest dns requests to go through the home vlan pihole server.

[Greelan]

So at a minimum you should configure DHCP to hand out the IP of the Pi-hole as DNS. If you want to go the next step and force guest hosts to use the Pi-hole even if they have different DNS settings, then that requires more configuration (there are tutorials on that). I suggest getting the minimum working first

Is your Pi-hole seeing the requests from the guest hosts? What do the Pi-hole logs show?

[s4rs]

The DHCP server on the guest network points to the pihole server. I see entries in the pihole logs, but not sure what they mean.. I do a tcpdump tomorrow and see if there are requests from the guest vlan.

[Greelan]

You should be able to see DNS requests from the guest host IPs if they are getting through to the Pi-hole (the OPNsense fw logs suggest they are)

[s4rs]

Turns out my issue was with a pihole setting. I needed to enable - Listen on all interfaces, permit all origins.. Once I did this it worked as expected.

See image.