I deployed Wireguard (using PiVPN) and Pi-hole on my Ubuntu Digital Ocean server. I can go to the Pi-hole settings with my IP address by adding ‘/admin’ after it, and it’s not secure (HTTP).

Is this unsafe since everyone can access the /admin page?

I have not added any custom firewall rules on DigitalOcean yet.

  • railsdev@programming.dev
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    1 year ago

    It depends which interface(s) the port is listening on. There’s likely a default eth0 interface and another for WireGuard (let’s say wg0). You need to make sure that port is open only on wg0.

    In this example, you should configure HTTP to listen only on the IP address(es) belonging to wg0.