diogomartino/docker-pihole-openvpn-raspberry-ipv6

A Docker configuration that have PiHole and OpenVPN in the same container with IPv6 support

What is this

A docker system that joins pihole and openvpn to run directly in your Raspberry Pi. It will probably work on other devices, but for different CPU architectures you may need to change the containers image. Also, this was created because I spent so much time trying to get IPv6 to work and couldn't find any good guides, so here is one. If you don't want OpenVPN, just remove the service from docker-composer.yml.

Clone this repository

git clone https://github.com/bruxo00/docker-pihole-openvpn-raspberry-ipv6.git

How to setup IPv6 on docker

Get your host IPv6 by running ifconfig. Locate your IPv6:

inet6 fe80::ba27:ebff:fee0:df97  prefixlen 64

Next, open sudo nano /etc/docker/daemon.json and type:

{
      "ipv6": true,
      "fixed-cidr-v6": "fe80::ba27:ebff:fee0:df97/64"
}

Enter your IPv6 and your prefix in front of it. Now you need to restart docker by doing sudo service docker restart. Make sure it restarted successfully by doing service docker status. Also, make sure you have your raspberry/device set to a static IP in your router.

Setup PiHole

Configure your .env file

sudo nano .env

It's explained in the file what each option does. Now open the docker compose file:

sudo nano docker-compose.yml

Here you can change all the ports as you wish. In my case, I don't want pihole to run lighttpd on port 80, so I changed it to 8080.

If PiHole somehow has trouble setting up your IP's on the first start, go to the root folder that you chose in the .env file and open the file. If you didn't change anything, it will be on:

sudo nano ./data/pihole/etc-pihole/setupVars.conf

And add/edit the following:

DHCP_IPv6=true
IPV4_ADDRESS=192.168.1.64 # Host IPv4
IPV6_ADDRESS=fe80::ba27:ebff:fee0:df97 # Host IPv6

And then restart the container.

Create the IPV6 network

docker network create --ipv6 --driver bridge --subnet "fd01::/64" ipv6

Setup OpenVPN

Open the docker-compose file:

sudo nano docker-compose.yml

Change the port if you want. In my case, I use 443 via UDP to avoid my university blocks on the most common ports. To generate certificates, follow the official documentation.

Start the containers

sudo docker-compose up -d

This fixes these common errors

RTNETLINK answers: Network is unreachable
ERROR: ServerIPv6 Environment variable doesn't appear to be a valid IPv6 address
TIP: If your server is not IPv6 enabled just remove '-e ServerIPv6' from your docker container

And the one where docker doesn't start after changing the IPv6 settings on /etc/docker/daemon.jsonwith the fixed-cidr-v6 parameter.

Based on this tutorial.

Enable DHCP on PiHole

Unfortunately I couldn't find a way to use PiHole as your DHCP server AND use IPv6 at the same time without using the host network mode. So, if you want to use DHCP and at the same time use IPv6, you will need to go to sudo nano docker-compose.ymland then on your pihole service comment or delete all the ports. Then add network-mode: hostand restart your container. If you want to try to configure DHCP + IPv6 + Bridge Networking for yourself, check out this thread.