-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathsetup_pihole.yml
56 lines (51 loc) · 1.41 KB
/
setup_pihole.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
---
- name: Set up Pi-hole
hosts: nuc
become: yes
vars_files:
- secret.yml
tasks:
- name: Update resolv.conf symlink
file:
src: /run/systemd/resolve/resolv.conf
dest: /etc/resolv.conf
state: link
register: resolv_symlink
- name: Disable DNSStubListener in resolved.conf
lineinfile:
dest: /etc/systemd/resolved.conf
insertafter: '^#DNSStubListener='
line: 'DNSStubListener=no'
register: resolv_listener
- name: Restart systemd-resolved
systemd:
name: systemd-resolved
state: restarted
when: resolv_symlink.changed or resolv_listener.changed
- name: Create bind mounts
file:
path: "{{ item }}"
state: directory
loop:
- /home/rex/pihole
- /home/rex/pihole/etc-pihole
- /home/rex/pihole/etc-dnsmasq.d
become: no
- name: Start Pihole container
docker_container:
name: pihole
image: pihole/pihole:latest
ports:
- "53:53/tcp"
- "53:53/udp"
- "67:67/udp"
- "8888:80/tcp" # admin panel
env:
TZ: 'Asia/Taipei'
WEBPASSWORD: '{{ pihole_key }}'
volumes:
- '/home/rex/pihole/etc-pihole:/etc/pihole'
- '/home/rex/pihole/etc-dnsmasq.d:/etc/dnsmasq.d'
capabilities:
- NET_ADMIN
restart_policy: unless-stopped