Replies: 3 comments
-
|
I changed the AGH docker container to use a MacVLAN network, so it was given a real IP on my LAN, because I figured I would need 443 anyway to update blocklists after reflecting a bit, and wanted to allow AGH that access but not the rest of my NAS for security reasons. Anyway, it should work with 443 blocked. |
Beta Was this translation helpful? Give feedback.
-
|
Try examining AdGuard Home logs to see what's wrong:
Note, that if you have "safe browsing" or "parental control" enabled, AGH will use DOH to do the lookups. |
Beta Was this translation helpful? Give feedback.
-
|
It works fine now-- my theory is this is because it works with a separate macVLAN IP but something with docker's internal bridge broke it. |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
AdGuard Home running in docker is unable to resolve addresses when I have my firewall set to block all outgoing connections to ports other than 53.
The "Test Upstreams" button says everything is working. Inside the docker container DNS lookups work fine too. My upstream DNS line just contains "1.1.1.1" to keep it simple for troubleshooting.
Running TCPdump on the host device shows zero outgoing packets to port 53 when querying through AdGuard Home from another host, and does show packets working when I run a nslookup inside the docker container.
Something is weird with AdGuard Home. If I disable that firewall rule it works. If I allow outgoing port 443, it works. But why would AGH need any ports other than 53? Any thoughts?
NSlookup inside the container:
My docker run line:
Beta Was this translation helpful? Give feedback.
All reactions