F5F Stay Refreshed Power Users Networks PIA and potential pi-hole issues

PIA and potential pi-hole issues

PIA and potential pi-hole issues

Pages (2): 1 2 Next
J
Jelly_the_boss
Junior Member
Find
6
07-06-2016, 06:32 AM
#1
Experiencing some odd issues. Recently, when PIA was configured to use PIA DNS, it worked for connecting but failed to resolve safelinking.net links in browsers or jdownloader. Switching PIA DNS to the pi-hole IP didn’t help either—just a connection attempt without an actual IP or link. I can only connect with a public DNS or PIA DNS. For comparison, other devices with DNS set to pi-hole function correctly, and my setup works when I disable the PIA VPN on my desktop. Pi-hole is already set up on my Raspberry Pi 4, and I have fail2ban installed. Any suggestions?
Reply
Reply
J
Jelly_the_boss
07-06-2016, 06:32 AM #1

Experiencing some odd issues. Recently, when PIA was configured to use PIA DNS, it worked for connecting but failed to resolve safelinking.net links in browsers or jdownloader. Switching PIA DNS to the pi-hole IP didn’t help either—just a connection attempt without an actual IP or link. I can only connect with a public DNS or PIA DNS. For comparison, other devices with DNS set to pi-hole function correctly, and my setup works when I disable the PIA VPN on my desktop. Pi-hole is already set up on my Raspberry Pi 4, and I have fail2ban installed. Any suggestions?

Reply
Reply
L
Lolcraft2004
Member
Find
66
07-20-2016, 12:47 AM
#2
It might work to disable DHCP on the router and have the Pi act as the DHCP server, which would help IoT devices connect through the Pi-hole. However, I'd still face issues with the desktop setup.
Reply
Reply
L
Lolcraft2004
07-20-2016, 12:47 AM #2

It might work to disable DHCP on the router and have the Pi act as the DHCP server, which would help IoT devices connect through the Pi-hole. However, I'd still face issues with the desktop setup.

Reply
Reply
K
KlayDog1
Senior Member
Find
685
07-20-2016, 08:40 AM
#3
The issue isn't clear about that specific domain, but switching your DNS to Pihole will enable the DNS leak protection.
Reply
Reply
K
KlayDog1
07-20-2016, 08:40 AM #3

The issue isn't clear about that specific domain, but switching your DNS to Pihole will enable the DNS leak protection.

Reply
Reply
B
blazingrift
Junior Member
Find
25
07-31-2016, 09:17 AM
#4
Certainly, I noticed you didn't include that detail earlier.
Reply
Reply
B
blazingrift
07-31-2016, 09:17 AM #4

Certainly, I noticed you didn't include that detail earlier.

Reply
Reply
K
kungoscar03
Junior Member
Find
6
07-31-2016, 09:47 AM
#5
Unless you've allowed ports for internet access, fail2ban isn't essential. Your Pi-hole shouldn't be exposed to the web. By default, VPN connections hide all traffic except those routed through them. You should have a way to whitelist your local network: https://www.privateinternetaccess.com/he...al-network. Without this, it's likely preventing DNS queries to devices on your local area (where the Pi-hole resides).
Reply
Reply
K
kungoscar03
07-31-2016, 09:47 AM #5

Unless you've allowed ports for internet access, fail2ban isn't essential. Your Pi-hole shouldn't be exposed to the web. By default, VPN connections hide all traffic except those routed through them. You should have a way to whitelist your local network: https://www.privateinternetaccess.com/he...al-network. Without this, it's likely preventing DNS queries to devices on your local area (where the Pi-hole resides).

Reply
Reply
K
Keuh20
Member
Find
54
07-31-2016, 11:42 AM
#6
I've confirmed "Allow LAN traffic" is enabled. No issues with other PIA tasks, just configuring it to point to the pi-holes address and fixing the safelinking.net domain. It seems they blocked it on PIA DNS servers, which I hadn't encountered before since I was able to connect until about two weeks ago. Ports remain open due to the VPN server setup, and the fail2ban configuration is in place. I've been using PIA for years now—local network access works fine, including servers, from my PC. The only limitation I noticed recently is switching pi-hole as the DNS while using PIA.
Reply
Reply
K
Keuh20
07-31-2016, 11:42 AM #6

I've confirmed "Allow LAN traffic" is enabled. No issues with other PIA tasks, just configuring it to point to the pi-holes address and fixing the safelinking.net domain. It seems they blocked it on PIA DNS servers, which I hadn't encountered before since I was able to connect until about two weeks ago. Ports remain open due to the VPN server setup, and the fail2ban configuration is in place. I've been using PIA for years now—local network access works fine, including servers, from my PC. The only limitation I noticed recently is switching pi-hole as the DNS while using PIA.

Reply
Reply
M
MarkiLFC
Junior Member
Find
41
08-01-2016, 04:50 PM
#7
Yeah, I should've remembered the PIA update a while back. That's when the Pi-hole DNS connection started acting up, which coincided with my router failing. I was trying to fix both issues at the same time. @Eigenvektor @2FA
Reply
Reply
M
MarkiLFC
08-01-2016, 04:50 PM #7

Yeah, I should've remembered the PIA update a while back. That's when the Pi-hole DNS connection started acting up, which coincided with my router failing. I was trying to fix both issues at the same time. @Eigenvektor @2FA

Reply
Reply
B
BitisPipi
Junior Member
Find
17
08-01-2016, 06:51 PM
#8
It seems the update might have caused an issue. I’d likely run nmap to check if port 53 is open while connected to PIA, and review the Pi logs to see if tools like fail2ban are blocking access.
Reply
Reply
B
BitisPipi
08-01-2016, 06:51 PM #8

It seems the update might have caused an issue. I’d likely run nmap to check if port 53 is open while connected to PIA, and review the Pi logs to see if tools like fail2ban are blocking access.

Reply
Reply
P
POKE_PRESLEY
Member
Find
177
08-01-2016, 11:42 PM
#9
You're not seeing any blocks from fail2ban, and your SSH access works through Putty. It seems nmap is likely running on the Pi rather than the PC. Let me know if you need further help.
Reply
Reply
P
POKE_PRESLEY
08-01-2016, 11:42 PM #9

You're not seeing any blocks from fail2ban, and your SSH access works through Putty. It seems nmap is likely running on the Pi rather than the PC. Let me know if you need further help.

Reply
Reply
J
jbswell
Junior Member
Find
13
08-02-2016, 12:38 AM
#10
It seems PIA might be interfering with DNS instead of blocking access directly. The recent update could have altered the DNS leak protection configuration, or the update itself might have disrupted it. You could run a test like "nmap -P0 -p 53 <ip>" to verify if the port appears open. There should be logs in PIA that indicate whether nmap attempts were blocked as a security measure.
Reply
Reply
J
jbswell
08-02-2016, 12:38 AM #10

It seems PIA might be interfering with DNS instead of blocking access directly. The recent update could have altered the DNS leak protection configuration, or the update itself might have disrupted it. You could run a test like "nmap -P0 -p 53 <ip>" to verify if the port appears open. There should be logs in PIA that indicate whether nmap attempts were blocked as a security measure.

Reply
Reply
Pages (2): 1 2 Next