unbound-docker-rpi
traefik
unbound-docker-rpi | traefik | |
---|---|---|
6 | 189 | |
133 | 47,984 | |
- | 1.2% | |
5.4 | 9.4 | |
about 2 months ago | 4 days ago | |
Shell | Go | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
unbound-docker-rpi
- Pihole, unbound and WireGuard.
-
My Raspberry Pi 4 Dashboard
- Unbound
-
Pi-Hole with Unbound reporting Cloudflare DNS when checking for DNS leaks
In Pi-Hole, all the queries are sent to and answered by the Unbound docker container, as confirmed by the Pi-Hole logs. I am not seeing any query in Pi-Hole going outside my network for resolution, so I am stumped as to what the cause of this is. The best guess that I could come up with is that somehow Unbound got configured in forwarding mode instead of a recursive resolver. I am not an expert on networking or Unbound, so I am looking for anyone who has an idea as to how to solve this. If it helps, I used https://github.com/MatthewVance/unbound-docker-rpi as the docker image to set up unbound.
-
Starting Unbound in a Docker Container
If your using a pi, you need to use the pi image. Also I remember that I created these files before deploying the container: config files for unbound * a-records.conf ```
- How to install Unbound and Pi-hole in Docker using docker-compose
-
Best Docker image to use to install Pi-hole (along with PiVPN and Unbound)?
mvance/unbound-rpi is a image that is updated regularly and used by many. The code he uses to create the image is here.
traefik
-
Take a look at traefik, even if you don't use containers
apparently "traffic" https://github.com/traefik/traefik/issues/795
-
Release Radar · April 2024 Edition: Major updates from the open source community
Pronounced "traffic", Traefik is a modern HTTP reverse proxy and load balancer aimed at making deploying microservices easier. It integrates with your existing infrastructure components such as Docker, Kubernetes, and others, and configures itself automatically and dynamically. The latest version adds lots of new options and enhancements such as adding healthcheck options, support for custom headers, and more. Read the migration guide on how to update to the latest version which is now required due to breaking changes.
-
Ask HN: Are there any open source forks of nomad smd consul?
> I think etcd is basically a k8s only project now
I hate etcd with the best of them, but etcd is used in a lot more places than just kubernetes:
https://github.com/apache/apisix/blob/master/docs/en/latest/...
https://github.com/traefik/traefik#:~:text=Etcd,
https://github.com/zalando/patroni#patroni-a-template-for-po...
https://github.com/purpleidea/mgmt/tree/0.0.26/etcd (this one shows up on HN quite a bit)
https://github.com/sorintlab/stolon#features
It's actually one of the major reasons I wouldn't touch those projects
- Traefik Proxy v3.0.0 Released
-
How to securely reverse-proxy ASP.NET Core web apps
However, it's very unlikely that .NET developers will directly expose their Kestrel-based web apps to the internet. Typically, we use other popular web servers like Nginx, Traefik, and Caddy to act as a reverse-proxy in front of Kestrel for various reasons:
-
Deploying Web Apps with Caddy: A Beginner's Guide Caddy
Not as good though. Case in point: https://github.com/traefik/traefik/issues/5472#issuecomment-... (that's just from this morning)
I'm speak objectively here. Of course, any built-in auto HTTPS that works (more or less) is better than none. Traefik uses an ACME library that was originally written for Caddy. After the original author left that project, Traefik team started maintaining it. Caddy's users' requirements exceeded what the library was capable of, but unfortunately there was friction in getting it to achieve our requirements. So I ended up writing a new ACME client library in Go and, together with upgrades in CertMagic (Caddy's auto-TLS lib), Caddy has the more flexible, robust, and capable auto-HTTPS functionality.
That is to say, not all auto-HTTPS functionalities are the same.
-
Security Workshop Part 1 - Put up a gate
We'll use Traefik, an open source cloud native gateway that can plug into a Kubernetes cluster. It has the concept of "middleware" that can process API requests before passing them through to a backend. We can configuring a rate limit for all of our API endpoints by matching on the request path:
-
Install plugin in k8s cluster running in Kind
I did the same question here and here
- The Tailscale Universal Docker Mod
-
Set Default Config in traefik.toml and overwrite with specific container config
Sadly there is currently no way of doing so. https://github.com/traefik/traefik/issues/6999
What are some alternatives?
docker-pihole-unbound - Run Pi-Hole + Unbound on Docker
Nginx Proxy Manager - Docker container for managing Nginx proxy hosts with a simple, powerful interface
gravity-sync - 💫 The easy way to synchronize the DNS configuration of two Pi-hole 5.x instances.
Caddy - Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
unbound-docker - Unbound DNS Server Docker Image
ingress-nginx - Ingress-NGINX Controller for Kubernetes
Pi-hole - A black hole for Internet advertisements
Squid - Squid Web Proxy Cache
cloudblock - Cloudblock deploys secure ad-blocking and VPN for all devices. Text and video guides included! 6 supported cloud providers, plus Ubuntu and Raspberry Pi. Cloudblock deploys Wireguard VPN, Pi-Hole DNS Ad-blocking, and DNS over HTTPS in a cloud provider - or locally - using Terraform and Ansible.
envoy - Cloud-native high-performance edge/middle/service proxy
unbound-config - fragmented configuration files for unbound recursive dns resolver
socks5-proxy-server - SOCKS5 proxy server