Proxmox Pi-hole Setup (LXC) – With Explanations¶

1. Download a Base LXC Template¶

Proxmox Web UI → pve1 → local → CT Templates → Templates → Download Debian 12 or Ubuntu 22.04

Why:
- Minimal, stable, widely supported. - Debian is Pi-hole recommended. - Needed to create containers.

In the Proxmox Web UI:

Unprivileged Container: ✅ Checked
Why: Improves security by isolating container root from host root.
Features > Nesting: ✅ Checked
Why: Needed for systemd and services like dnsmasq.
Disk Size: 4–8GB (ZFS-backed)
CPU / RAM: 1 vCPU, 512MB–1GB RAM
Network: DHCP (we'll set static IP later)
Container Name: pihole

Access console:

pct console 100  # Replace 100 with your CT ID

Edit interfaces (Debian example):

nano /etc/network/interfaces

auto eth0
iface eth0 inet static
  address 192.168.79.10
  netmask 255.255.255.0
  gateway 192.168.79.1
  dns-nameservers 1.1.1.1 8.8.8.8

reboot

Why:
Avoids DNS failure if Pi-hole’s IP changes.

SSH in or use pct exec:

apt update && apt upgrade -y
apt install curl -y
curl -sSL https://install.pi-hole.net | bash

Follow prompts: - Choose static IP - Choose DNS provider - Enable blocklists - Enable web interface and lighttpd

pihole -a -p

Visit:

http://<container-ip>/admin

Login with the password you set.

Why:
This routes all network DNS through Pi-hole.

apt install unattended-upgrades -y

Add blocklists, optionally: - Back up /etc/pihole/ - Consider PiVPN if remote access is needed

apt install fail2ban -y

nslookup google.com 192.168.79.10

Should reply from Pi-hole.