Good morning everyone, I wanted to know if the nethsecurity development team intends to introduce pi-hole into the project in the future.
Thanks.
1 Like
I did it for ns8 if you are looking for something close you have known in NS7
1 Like
You can do almost the same with Threat shield IP and DNS: just select the ADs lists.
Sadly you are not going to have any report.
I’m not that one who has the final word, but I’m pretty sure that we are not going to integrate whole Pi-hole into NethSecurity (they are 2 different beasts)
1 Like
thanks for sharing
meaning too many differences as software?
PI-Hole delivers Unbound and a DHCP server, so could fit as role into NethSecurity, at least as network design and cpu-grunt requirements… You’re alreading delivering content filtering (DNS based too ).
There’s no way that pihole will fit into NethSec as it is now. If you want the feature of pihole you could just add additional lists to ThreatShield DNS and it will do the same work
However, you can still use PiHole. If you have an active installation of PiHole (with whatever you want, it’s available for NS8 too) you could just point the DNS of the firewall to that, then you can then leave all the DNS resolution to PiHole and NethSec just uses that as it’s primary DNS
2 Likes
exactly how it works
dhcp → ns8 or nethsec
dns → set in the dhcp the external ip of the server where pihole is running
2 Likes
@Tbaile thanks for the info about the (not) possibile integration of pi-hole in NethSec.
I can understand that maybe currently Nethesis is not feeling any advantage for the hassle, leaving this option only to sysadmin who wants to add the host for running that software.
In my opinion, ad and track blocking could be a value also in branch offices which do not have resident server installations to do the job, but probably it’s only my distorted perception that feels this a good selling point.
Data breach and data leak are current threats to companies; NethSec can do nothing to reduce phishing but could be a huge help to contain user information to be delivered to internet without filtering .
Let me be clear, my answer was based on the request: I want to run pihole.
And the answer it’s simple: you can’t, and probably, never will on this NethSec iteration.
PiHole would overwrite must of the stuff that OpenWRT does already, so there’s no point in even making the package (and upstream, they don’t), let alone us support that.
However, if the question becomes: “I want to block traffic with DNS blocks” (which is what PiHole basically does)
You can. ThreatShield DNS that does exactly that.
If you are not happy with the lists available through the UI, you can pay to receive yoroi blocklists that are way more fine tuned and with less false positives than the open source ones (they are, indeed, a service we provide)
Not satisfied with DNS blocking? You can even block IPs with ThreatShield IP.
It’s futile acting like what you are requesting is "a distorted perception”, you know it’s something a company will require. Tossing another bone, I really don’t care if you have it hard on me for whatever reason since it seems this way 
However, I really would like some respect for the job that we always try to improve, even if it’s not perfect.
This, however, needs to be a reminder that community feedback is always welcome, with the right tone and touch, I ain’t selling a product (never will, not my expertise), I really wish for you all to use the open source software I work on every day
Peace 
Tommaso out
1 Like