Disclaimer: I am the Lead Dev. I thought this would be a very fitting community to share this with ;)

  • @racoon
    link
    44 years ago

    Can I use this together with Pihole unbound and protonVPN on a raspberry Pi Acting as gateway?

    Can I use this on a raspberry with NCP and published Ports?

    No GUI in any case. TYVM!

    • @dhaaviOP
      link
      2
      edit-2
      4 years ago

      I understand you mean to run the Portmaster as a network service (?). The Portmaster is not meant to run this way, as its strength comes from the ability to know exactly which process is communicating with which entity on the Internet.

      It tightly integrates with OS using iptables on Linux and a custom Kernel Extension on Windows. Portmaster being a software also means that you’re not bound to an extra piece of hardware and can take it along! Further, it can also regulate peer to peer communication, which is not possible with something like the Pi-Hole.

      While it would be possible to use the Portmaster in combination with a Pi-Hole, there are several caveats:

      • You won’t be using the integrated DNS-over-TLS resolver. (Afaik, Pi-Hole needs additional work for encrypted DNS.)
      • If you use the DNS Filter Lists in Portmaster, blocked queries will not even reach the Pi-Hole as they are already blocked on you device directly. This will skew the statistics and history of this device on the Pi-Hole.
      • While you can set fallback DNS servers for when you are on the go, the IP address of your Pi-Hole could be used by another DNS server and possibly open you up to attacks. This is not a problem if you always use the Pi-Hole. Edited to add: just remembered that this will be solved automatically in the future, as the Portmaster would detect you are in a foreign network and disable insecure DNS resolvers. 🎉

      When the Portmaster reaches beta or stable, it will cover most of the single-device functionality the Pi-Hole offers.