rene/macbook-setup
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

WireGuard DNS-Fix: PiHole primaer, Stub-Resolver umgehen

Browse source 
- DNS in allen WireGuard-Configs: 10.47.11.20 (PiHole) + 10.47.11.1
  (Fritz!Box Fallback), redundantes PiHole auf .21 entfernt
- resolv.conf Symlink auf upstream statt stub (127.0.0.53), da
  systemd-resolved mit WireGuard DNS catch-all (~.) nicht funktioniert

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
rene 2026-03-12 17:43:26 +01:00
parent 4c2fa87209
commit 351a3d5ffe
8 changed files with 10 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

3
setup-base.sh
View file

@ -161,6 +161,9 @@ if [[ -n "$REPO_DIR" && -f "$REPO_DIR/wireguard/m${MODEL}.conf" ]]; then
cp "$REPO_DIR/wireguard/m${MODEL}.conf" /etc/wireguard/wg0.conf cp "$REPO_DIR/wireguard/m${MODEL}.conf" /etc/wireguard/wg0.conf
chmod 600 /etc/wireguard/wg0.conf chmod 600 /etc/wireguard/wg0.conf
systemctl enable wg-quick@wg0 2>/dev/null || true systemctl enable wg-quick@wg0 2>/dev/null || true
# systemd-resolved Stub funktioniert nicht mit WireGuard DNS catch-all (~.)
# → resolv.conf direkt auf die upstream-Server zeigen lassen
ln -sf /run/systemd/resolve/resolv.conf /etc/resolv.conf
ok "WireGuard m${MODEL}.conf → /etc/wireguard/wg0.conf" ok "WireGuard m${MODEL}.conf → /etc/wireguard/wg0.conf"
else else
warn "WireGuard: keine lokale Config gefunden — manuell einrichten" warn "WireGuard: keine lokale Config gefunden — manuell einrichten"

2
wireguard/iPadM.conf
View file

@ -2,7 +2,7 @@
PrivateKey = EHTtesjOBYQdhOnii54POY1XivkohZS/3VdZU8xRaUc= PrivateKey = EHTtesjOBYQdhOnii54POY1XivkohZS/3VdZU8xRaUc=
ListenPort = 51820 ListenPort = 51820
Address = 10.13.13.5/24 Address = 10.13.13.5/24
DNS = 10.47.11.21,10.47.11.20 DNS = 10.47.11.20,10.47.11.1
[Peer] [Peer]
PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30= PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30=

2
wireguard/iPadR.conf
View file

@ -2,7 +2,7 @@
PrivateKey = CHIzDLQ2Sla/aH591a+OlvG9bjyGDq/toh+NYE6wPFo= PrivateKey = CHIzDLQ2Sla/aH591a+OlvG9bjyGDq/toh+NYE6wPFo=
ListenPort = 51820 ListenPort = 51820
Address = 10.13.13.4/24 Address = 10.13.13.4/24
DNS = 10.47.11.21,10.47.11.20 DNS = 10.47.11.20,10.47.11.1
[Peer] [Peer]
PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30= PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30=

2
wireguard/iPhoneM.conf
View file

@ -2,7 +2,7 @@
PrivateKey = OL+CAPy9+HaHLxxqB3+N4ABn51v6xLk8gaGhRWlbG1s= PrivateKey = OL+CAPy9+HaHLxxqB3+N4ABn51v6xLk8gaGhRWlbG1s=
ListenPort = 51820 ListenPort = 51820
Address = 10.13.13.3/24 Address = 10.13.13.3/24
DNS = 10.47.11.21,10.47.11.20 DNS = 10.47.11.20,10.47.11.1
[Peer] [Peer]
PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30= PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30=

2
wireguard/iPhoneR.conf
View file

@ -2,7 +2,7 @@
PrivateKey = oIJYPKn7pmsRFMY5+PIDaXZxDCVug9KsR5ZMjSwdVWw= PrivateKey = oIJYPKn7pmsRFMY5+PIDaXZxDCVug9KsR5ZMjSwdVWw=
ListenPort = 51820 ListenPort = 51820
Address = 10.13.13.2/24 Address = 10.13.13.2/24
DNS = 10.47.11.21,10.47.11.20 DNS = 10.47.11.20,10.47.11.1
[Peer] [Peer]
PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30= PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30=

2
wireguard/m1.conf
View file

@ -2,7 +2,7 @@
PrivateKey = kEUk6gLdqXiPfOt9n639fshf0gMAhRhoRTRRXoz86Hc= PrivateKey = kEUk6gLdqXiPfOt9n639fshf0gMAhRhoRTRRXoz86Hc=
ListenPort = 51820 ListenPort = 51820
Address = 10.13.13.6/24 Address = 10.13.13.6/24
DNS = 10.47.11.21,10.47.11.20 DNS = 10.47.11.20,10.47.11.1
[Peer] [Peer]
PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30= PublicKey = mp0YKEjsUbnld3aTAnF6cSzTfixhZETQCoKiFHIcF30=

2
wireguard/m13.conf
View file

@ -2,7 +2,7 @@
PrivateKey = sIxh2D50+9bpWe6O6ezrfybW9Iy6QKcrwr9hmFpuGn0= PrivateKey = sIxh2D50+9bpWe6O6ezrfybW9Iy6QKcrwr9hmFpuGn0=
ListenPort = 51820 ListenPort = 51820
Address = 10.13.13.8/24 Address = 10.13.13.8/24
DNS = 10.47.11.21,10.47.11.20 DNS = 10.47.11.20,10.47.11.1
[Peer] [Peer]
PublicKey = 7WrqHPof31gcCYMjLWPoP1EIxPR2896/3KL1pQ3YZGs= PublicKey = 7WrqHPof31gcCYMjLWPoP1EIxPR2896/3KL1pQ3YZGs=

2
wireguard/m16.conf
View file

@ -2,7 +2,7 @@
PrivateKey = OA5IiSzPglSY8GdobOYMlaOaG+QqNjHIACBRe7MvK04= PrivateKey = OA5IiSzPglSY8GdobOYMlaOaG+QqNjHIACBRe7MvK04=
ListenPort = 51820 ListenPort = 51820
Address = 10.13.13.7/24 Address = 10.13.13.7/24
DNS = 10.47.11.21,10.47.11.20 DNS = 10.47.11.20,10.47.11.1
[Peer] [Peer]
PublicKey = J/dD1t3Bo9Zbcvxg6PvGP78kgMlL4s4yYfrUMpcoS2w= PublicKey = J/dD1t3Bo9Zbcvxg6PvGP78kgMlL4s4yYfrUMpcoS2w=